cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

After the risk analysis I am trying to mitigate the users with risk ID and I am getting an authorization error.

Go to solution
former_member399658
Participant

on ‎07-25-2014 12:54 PM

0 Kudos

Dear All,

I am trying to mitigate some users and after running risk analysis when I am trying to mitigate them I am getting an error saying I am not authorized to do so.

I have requird roles to do my activity-

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

former_member399658
Participant
‎07-28-2014 12:23 PM
0 Kudos

Dear All,

One more question I am trying to mitigate the risk from development system to productive system. Can you do it?

My question is can you mitigate the risk from development system for productive one.

Regards,

Abhishek

Show replies
Show replies
Former Member
‎07-28-2014 1:01 PM
0 Kudos

Hi,

Do you mean mitigation from GRC Development system for a risk coming of ECC/SAP production system?

You can mitigate the risk if you have configured so, system on its own will not stop you. But if you would like to know shall it be done, then probable answer is NO. You shall avoid connecting you development box to PLUGin production system.(only in exceptional cases for test purpose may be used)

Regards,

Nishant

Answers (4)

Answers (4)

Arif1
Active Participant
‎07-25-2014 9:09 PM
0 Kudos

Hi Abhisshek,

below roles is require. please try

SAP_GRAC_ACCESS_APPROVER

SAP_GRAC_BASE

SAP_GRAC_DISPLAY_ALL

SAP_GRAC_END_USER

SAP_GRAC_NWBC

SAP_GRAC_REPORTS

SAP_GRAC_SUPER_USER_MGMT_USER

SAP_GRC_FN_BASE

SAP_GRC_FN_BUSINESS_USER

SAP_GRAC_CONTROL_APPROVER

SAP_GRAC_CONTROL_MONITOR

Regards,

Arif

Show replies
Show replies
alessandr0
Active Contributor
‎07-25-2014 1:13 PM
0 Kudos

Hi Abhisshek,

you can check logs in SLG1 to see what authorization is missing. Basically it is required to have GRAC_MITC, GRAC_OWNER and GRAC_USER with ACTVT 78 (Assign). The two roles mentioned by Neeraj cover such authorization.

Regards,

Alessandro

Show replies
Show replies
former_member204204
Active Participant
‎07-25-2014 1:07 PM
0 Kudos

Hi,

Check if you have below roles assigned to your profile.

SAP_GRAC_CONTROL_APPROVER

SAP_GRAC_CONTROL_MONITOR

Regards,

Neeraj

Show replies
Show replies
former_member193066
Active Contributor
‎07-25-2014 1:03 PM
0 Kudos

CHeck User master record.

look for appropriate role for the same to be assigned.

if you want to test give yourself power user access.

Regards,

Prasant

Show replies
Show replies
former_member399658
Participant
‎07-25-2014 1:11 PM
0 Kudos

Dear Prasant,

I am getting above error.

I have required roles

 

GRC_CONTROL_APPROVER

GRC_RISK_OWNER

Regards,

Abhishek

Colleen
Advisor
Advisor
‎07-25-2014 1:13 PM
0 Kudos

have a look at SLG1 logs and you will find the exact authorisation that you are failing on

Regards

Colleen

former_member193066
Active Contributor
‎07-25-2014 1:18 PM
0 Kudos

you dont have appropriate roles assigned.

if you have standard roles assigned, please check if they are generated.

Colleen Lee & Alessandro Banzer (AB): has provided best approach to analyze.

Regards,

Prasant

Ask a Question