cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

GRC Fire Fighter Locking

former_member663337
Member

on ‎2023 Jul 24 11:20 PM

0 Kudos
1,640

Our auditors are asking us to lock Fire Fighter usernames if the review/approval of the logs by the Controllers has not been completed within a certain period of time. E.g., 28 days. Is it is possible to configure this or would it be manual?

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (0)

Answers (1)

Answers (1)

Mate
Product and Topic Expert
Product and Topic Expert
‎2023 Jul 25 7:28 AM
0 Kudos

Hello,

with GRC Access Control SP21, the Firefighter IDs are automatically locked after the logoff, and unlocked during the Logon process. So the FFIDs - when not in use - are locked by default. Any older version of GRC the explicit locking is not a feature, hence you can not do it automatically. If this is a requirement, I suggest to upgrade to SP 21.

On the other hand, I do not really understand the logic of locking the Firefighter ID if the controller are not approving the Reviews in time. What would be changed in a session which was happened in the past and already finished, if the FFID was locked? Also FFIDs are designed to be assignable for multiple Firefighters at the same time, hence if you lock an FFID (prior then SP21), then the other Firefighters are not able to use it when it is necessary.

Best regards, Mate

Show replies
Show replies
Ask a Question