cancel
Showing results for 
Search instead for 
Did you mean: 

GRC 10 ARA: Issue while generating SoD rules

former_member193071
Participant
0 Kudos
428

Hello,

I am facing one weird issue in SoD ruleset. Whenever I am generating the SoD rules, critical permission value is being inserted in to the function.

Lets say If I generate the SoD rules in system automatically under Permissions tab the permission group !^ZQF0RM is adding to GL01 function and

!^FEBA_BANK_DEPOSIT is adding to FI03 function which it causes to enable the risks in SoD report at user level. FEBA_BANK_DEPOSIT or ZQF0RM are not tcodes.

Please let me know if anyone is facing the same issue.

Regards,

Kesava

View Entire Topic
pawan_amarnani
Participant
0 Kudos

Hi Kesava,

What procedure are you following for rule set modification.

at front end side. you first add permission group in action tab. it reflects all the permissions(auth. object)  under permission tab. there you can make changes in the permission values or insert a new permission.

Direct insertion of permission under permission tab gives the ^!permission error. you need to delete the that permission from permission tab and follow the above process.

you can check the permission table in se16.(table GRAC*PERMISSION*)

For critical  Z risk., create a Zfunction, assign critical permission group to that function. create a Z risk, assign the Z function. save it and generate the rule set.