/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
Within SAP standard rule set, in functions AP01, and AR01, there is a rule for t-code FBZ0 where the ACTVT 12 and 13 are enabled for auth object F_REGU_BUK and field FBTCH
ACTVT 12 = Edit proposal
ACTVT 13 = Display proposal
This means, if a role has both ACTVT 12 and 13 for auth object F_REGU_BUK and field FBTCH, this role violates a risk.
If a user has ACTVT 12 to edit proposal, is it really a risk to have also the ACTVT 13 to display a proposal?
Read more...
Environment
SAP Access Control 12.0
Product
SAP Access Control 12.0
Keywords
GRAC_RA_RULESET_SAP_R3, BC, SCPR20, identical, differs, authorization object, transaction, risk, violates, has a risk, display , KBA , GRC-SAC-ARA , Access Risk Analysis , How To
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)