cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP GRC BRM: No Methodolgy Step "Generation" for business roles

Go to solution
Former Member

on ‎04-02-2015 1:03 PM

0 Kudos

Hi SAP,

we are on GRC 10.0 SP 15.


could you kindly tell me, if there is any way to activate the "generation" step for business roles in brm?
I am confronted with the follwing issue: the business rule can be created with conflicts, because I have only the methodology step access risk anaysis available.

I did the configuration for the Condition Group+BRF+ etc. but the Methodology phase"Generation" didn't appear.

Thanks for the information.

Regards,
Manuela

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

kevin_tucholke1
Contributor
‎04-02-2015 1:55 PM
0 Kudos

Manuela:

Role Generation is NOT valid for GRC Business Roles.  You must generate the single/derived technical roles individually.  This is a process issue and requires that you understand that in your process these Business Roles should not have any conflicts and the role then needs to be adjusted.

Show replies
Show replies
Former Member
‎04-02-2015 2:02 PM
0 Kudos


Thanks for the fast feedback.

former_member185447
Active Contributor
‎04-03-2015 3:21 PM
0 Kudos

Hello Manuela,

Business Role is an efficient way of managing roles in an organization and model them based on a job function. Each business role represents a Job role or function and is associated to one or more related Technical Roles.


So, Once these technical roles are generated, they are just added to business roles which acts like a container.


So, For business Roles we can't have generate as a step in methodology.


Regards,

Deepak M

Answers (2)

Answers (2)

former_member197694
Active Contributor
‎04-02-2015 1:35 PM
0 Kudos

Hello,

You need to select the Generation step in methodology which is created for business roles

Define methology process and Steps

check below documents for some more information

Business Roles concept and usability in GRC AC10 - Governance, Risk and Compliance - SCN Wiki

Regards

Baithi

Show replies
Show replies
Former Member
‎04-02-2015 1:43 PM
0 Kudos

Hi Baithi,

I know that documentation.

as I described before, I did the configuration for the Methodoolgy, but when I create a business role the steps aren't included.

I think, that SAP didn't programmed the generation step for business roles.

Or sombody of the community has this step active?

This methodology in the documentation "Business roles concept and usability" is in my eyes fake:

Maintain Authorization will never exist for a Business Role!!!

madhusap
Active Contributor
‎04-02-2015 1:34 PM
0 Kudos

Hi Manuela,

Business role is just container in which roles from different systems can be grouped in to one business role and these roles just exist in GRC system only.

Role generation is for the roles which need to be generated in backend systems.

Basically you need to define a process in your project with respect to creation/maintenance of business roles and how to mitigate the risks in case of risk violations with business roles.

In our environment all business roles creation/maintenance is done by GRC support team and its their responsibility to make sure all business roles are risk free and in case of violations need to discuss with Role owners and should amend the changes accordingly.

Let me know if you have any queries.

Regards,

Madhu.

Show replies
Show replies
Ask a Question