SAP Knowledge Base Article - Preview

1986264 - ARA: Rule set changes for FBZ0 object F_REGU_BUK

Symptom

Within SAP standard rule set, in functions AP01, and AR01, there is a rule for t-code FBZ0 where the ACTVT 12 and 13 are enabled for auth object F_REGU_BUK and field FBTCH

ACTVT 12 = Edit proposal

ACTVT 13 = Display proposal

This means, if a role has both ACTVT 12 and 13 for auth object F_REGU_BUK and field FBTCH, this role violates a risk.

If a user has ACTVT 12 to edit proposal, is it really a risk to have also the ACTVT 13 to display a proposal?


Read more...

Environment

Access Risk Management (ARA)

Product

SAP Access Control 10.0

Keywords

GRAC_RA_RULESET_SAP_R3, BC, SCPR20, identical, differs, authorization object, transaction, risk, violates, has a risk, display , KBA , GRC-SAC-ARA , Access Risk Analysis , How To

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.