- SAP Community
- Products and Technology
- Additional Q&A
- unmitigated SoD conflicts for the user
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
unmitigated SoD conflicts for the user
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 03-02-2015 2:55 PM
Hello Everyone,
I am working on SoD conflicts analysis and remediation on GRC 5.3. I have come across a very weird situation. I got two users with unmitigated SoD conflicts.When I pulled the RAR report on Org. Level, I found two org. values(Org. rule) as "NA".I cannot see any role modification as well.Can anyone tell why the unmitigated SoD conflicts is coming for the users?
1. I have checked the validity for the Mitigation control
2. I have checked whether mitigation is assigned to the risk or not
3. I have checked the role modification as well
Accepted Solutions (0)
Answers (2)
Answers (2)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hi Harinam and Alessandro,
I am having one risk analysis report for the user with unmitigated SoD conflicts. I just want to know why unmitigated SoD conflicts are coming for the user.
Please find the below example: The org rule is coming NA for the user. It mean the org values are not maintained in the GRC it seems. Can you please throw some light on it. I will proceed further once I am clear to you. Do you need more information?
| User | Risk | Risk | Risk Level | Business Process | Organization Rule | Mitigation Control | Comments |
| Vaibhav | M4_MB30 | O2C212 Sales Pricing Condition - O2C207 Customer MD | B (High) | Order to Cash | M4_NA | Not assigned | IT User, Mitigation not assigned |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Is "NA" an actual org value or something else like a error?
May be a good idea to share some screenshots.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Thanks for the Response Harinam
"NA" is the org value which is not maintained.
We got the reason for the unmitigated SoD conflicts for the user. Org values are not maintained for few org levels, that is why the unmitigated SoD conflicts are coming for the user.
But now there is a new challenge in it. We have to provide the org. values for the particular org levels.
This will resolve the issue. But we don't know how to find out the correct org values for the org levels.
Can you please help?
Regards,
Rahul
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
- Calculation View Features of 2024 QRC1 in Technology Blogs by SAP
- ROI of Web App & API Security: A Contemplation of Strategic Investment in Technology Blogs by Members
- Creation of an Action Project from Scratch, Customizing Actions and Generating Output from Responses in Technology Blogs by SAP
- Top 10 Technical Best Practices for Achieving 100% Customer Satisfaction in SAP Basis Services in Technology Blogs by Members
- Git workflows and SAP Cloud Integration in Technology Blogs by Members
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.