cancel
Showing results for 
Search instead for 
Did you mean: 

Firefighter IT audit review

cesccase
Member
0 Kudos

Hi,

I trying to understand and performing a SAP GRC Firefighter review from an IT Audit perspective doing data analytics with the full population. Is any of you that have already done that or can give me some guidance?

Basically, critical aspects from my point of view is being able to:

1. Track usage time from each of the Firefigher sessions

2. Track the approved timing. From my understanding, approvals can be for a period of time ej. 1 month. This means that once a Firefighter has been approved for a month, it can log in in sessions as many times as the user wants (of course with a log recording and revision afterwards by one of the log reviewers). Please let me know if I am wrong 🙂

3. What is the timing between the usage of the firefighter sessions until there is a reviewer that reviews the activity. Is there any table that allows to see the timing of when the revision of the logs from the firefighter activities are performed by the log reviewer?

4. Where could we see which users can request each firefighter accounts?

I would like to do everything (or most of the control testing) with backend SAP tables such as (or others):

- GRFNMWRTAPPR

- GRFNMWRTINST

- GRACFFLOG

- GRACFFREPMAPP

- GRACACTUSAGE

I would highly appreciate your help here.

Best regards,

moshenaveh
Community Manager
Community Manager
0 Kudos

Welcome to the SAP Community! Thank you for visiting us to get answers to your questions.

Since you're asking a question here for the first time, I'd like to offer some friendly advice on how to get the most out of your community membership and experience.

First, please see https://community.sap.com/resources/questions-and-answers, as this resource page provides tips for preparing questions that draw responses from our members. Secondly, feel free to take our Q&A tutorial at https://developers.sap.com/tutorials/community-qa.html as well, as that will help you when submitting questions to the community.

Finally, I recommend that you include a profile picture. By personalizing your profile, you encourage readers to respond: https://developers.sap.com/tutorials/community-profile.html.

I hope you find this advice useful, and we're happy to have you as part of SAP Community!

Accepted Solutions (0)

Answers (0)