on 2015 Apr 01 4:54 PM
Hello,
I am facing one weird issue in SoD ruleset. Whenever I am generating the SoD rules, critical permission value is being inserted in to the function.
Lets say If I generate the SoD rules in system automatically under Permissions tab the permission group !^ZQF0RM is adding to GL01 function and
!^FEBA_BANK_DEPOSIT is adding to FI03 function which it causes to enable the risks in SoD report at user level. FEBA_BANK_DEPOSIT or ZQF0RM are not tcodes.
Please let me know if anyone is facing the same issue.
Regards,
Kesava
Help others by sharing your knowledge.
AnswerRequest clarification before answering.
Hi Kesava,
What procedure are you following for rule set modification.
at front end side. you first add permission group in action tab. it reflects all the permissions(auth. object) under permission tab. there you can make changes in the permission values or insert a new permission.
Direct insertion of permission under permission tab gives the ^!permission error. you need to delete the that permission from permission tab and follow the above process.
you can check the permission table in se16.(table GRAC*PERMISSION*)
For critical Z risk., create a Zfunction, assign critical permission group to that function. create a Z risk, assign the Z function. save it and generate the rule set.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.