1730045 - User can perform the risk analysis for the users/roles for which he is not authorized.

Symptom

In risk analysis, user is able to perform the risk analysis of all the users/roles even though the user is restricted to perform the risk analysis for only specific users/roles. User authorizations are restricted with GRAC_USER authorization object.

Environment

GRC 10.0
GRC 10.1

Product

SAP Access Control 10.0 ; SAP Access Control 10.1

Keywords

Risk analysis
No authotrization
Role Level
User Level
GRAC_SYS
GRAC_RA

, KBA , best practices , GRC-SAC-ARA , Access Risk Analysis , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.