Page tree
Skip to end of metadata
Go to start of metadata

Purpose

This purpose of this page is to help you setup Risk Terminator to validate new roles and user assignments in GRC Access Control 10.0.

Overview 

With Access Control 5.3, the set up of Risk Terminator (RT) is done on the ABAP backend system by setting up the Configuration parameters using transaction /N/VIRSA/ZRTCNFG. By doing so, Risk Terminator is triggered when creating a Role with SOD conflict (PFCG) or adding Roles with conflict to Users (SU01, SU10 or PFCG). However in Access Control 10.0, the Risk Terminator Configuration consists of setting up the configuration in both the GRC System and the Plug-in. Please find below the detailed description of these two configuration settings,                          

Configuration Set Up of Risk Terminator in the GRC System

The GRC System is where the GRCFND_A Package is installed. The Risk Terminator Configuration parameters need to be configured here under the IMG.         
To enter this section in the IMG, execute Transaction Code SPRO > Governance, Risk and Compliance > Access Control > Maintain Configuration Settings.  Here the Param Group "Risk Analysis - Risk Terminator" Param Ids "1080 -1088", are the configuration parameters that need to be configured, as per your requirement.   
.

Configuration Set Up of Risk Terminator in the GRC Plug-in System

The GRC Plug-in System is where the GRCPINW/GRCPIERP Package is installed. The Risk Terminator Configuration parameters need to be configured here under the IMG.         
To enter this section in the IMG, execute Transaction Code SPRO > Governance, Risk and Compliance(Plug-in) > Access Control > Maintain Configuration and maintain the parameter values 1000, 1081, 1082, 1083, 1084, 1088 and other parameters as per your requirement.                 

Related KBAs

KBA Number: 1667167

Related Notes

SAP Note: 1562760

  • No labels