on 2021 Feb 05 5:12 PM
Hi
Our SAP GRC rule set has flagged few SRM risks within a non SRM role in a non SRM system. They are SOD risks and the conflicting tcodes are of web dynpro type. However when the role is explored in AGR_TCODES and AGR_HIER tables such web dynpro tcodes can be found. Any idea why the are coming in the Access Risk Analysis?
Here is the list in ARA report for the role but not in the role.
[WDY]POWL Personal Object Work List
[WDY]/SAPSRM/IBO_WDAC_INBOX Personal Object Work List
[WDY]/SAPSRM/WDAC_I_FPM_OIF_PO_PURCH Personal Object Work List
[WDY]/SAPSRM/WDAC_I_FPM_OIF_SC_PROF Personal Object Work List
[WDY]/SAPSRM/WDAC_FPM_GAF_SC Personal Object Work List
[WDY]/SAPSRM/WDAC_I_FPM_OVP_CONF Personal Object Work List
[WDY]/SAPSRM/WDA_POWL_SC Personal Object Work List
[WDY]IBO_WDA_INBOX Lean Workflow Inbox Application
[WDY]/SAPSRM/WDAC_I_FPM_OIF_SC_PROF Lean Workflow Inbox Application
[WDY]/SAPSRM/WDAC_I_FPM_OIF_PO_PURCH Lean Workflow Inbox Application
[WDY]POWL Personal Object Work List
[WDY]/SAPSRM/IBO_WDAC_INBOX Lean Workflow Inbox Application
[WDY]/SAPSRM/WDAC_FPM_GAF_SC Lean Workflow Inbox Application
[WDY]/SAPSRM/WDA_POWL_SC Lean Workflow Inbox Application
[WDY]/SAPSRM/WDAC_I_FPM_OVP_CONF Lean Workflow Inbox Application
Thanks
Reza Ahoui
Request clarification before answering.
Reza,
Please verify whether correct ruleset selected (global / custom) for risk analysis also check whether its shows as High / Critical as risk type. Same way check for standard and custom Risk / Function ID's. If above conditions are correct then you will need to get into Risk ID, Function, Rule id and finally get into roles and tcode / object level analysis to find the cause.
Regards,
Mahendran R
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
5 | |
2 | |
2 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.