Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Showing results for 
Search instead for 
Did you mean: 

Understanding NOT Logic

Former Member
0 Kudos

I need help understanding NOT logic in Rules.

We have SoD's for risk B009 in SRM pertaining to t-code SE16.

The portion of the rule pertaining to our issue states

OBJECT S_TABU_DIS, ACTVT 1-2

OBJECT S_TABU_DIS, DICBERCLS FC22, NOT

OBJECT S_TABU_DIS, DICBERCLS Z030, NOT

OBJECT S_TCODE, TCD SE16

Does this rule mean it can only contain FC22 and Z030 to not create an SoD, or can it also include other auth groups as well?

Thanks,

Sandy

Edited by: Sandy Belz on Dec 21, 2007 4:40 PM

1 REPLY 1

Former Member
0 Kudos

if you had the rule id, it would help a bit ...

However, it looks like the check on field DICBERCLS is not enabled for FC22 and Z030. Thus, these 2 values should indeed not generate an SOD conflict.

It would be easy to simulate this as a matter of fact, especially if you have Risk Terminator connected and access to PFCG, which you can use to create a dummy user.