Symptom
If a Risk is associated with two roles i.e. Role A and Role B and you create Mitigation control for the risk and mitigated "Role A".
Then the risks are getting mitigated when run risk analysis for Role A but the same risks are not mitigated when risk analysis is ran for Role B.
Also, Configuration Parameter 1033 "Include Role/Profile Mitigating Controls in Risk Analysis" is set to YES.
Read more...
Environment
GRC Access Control 12.0
GRC Access Control 10.1
Product
SAP Access Control 10.1 ; SAP Access Control 12.0
Keywords
- Mitigated Roles
- Risk Analysis
- Mitigation
- Parameter 1033
- Mitigation Control ID
- Partial Mitigation
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.