GRC 10:Access Risk Analysis shows no results

Cause: Access Risk Analysis may not show any risks or the results screen might be empty due to various reasons. Follow the steps recommended below to resolve the same:

ara1

Resolution:

Check the Release: Firstly, I recommend to check the GRCFND_A Addon release. It was a bug in the previous release. Implement the SAP note no: 1675758. If this note was already implemented, or the system is on a later release, proceed with the next steps.

Ensure the BC Sets are activated: SAP_R3_LG, or SAP_BAS_LG or the relevant BC Sets should be activated. Use transaction code SCPR20 and activate the relevant BC sets. These BC Sets will get the ruleset data in the GRC system.

Add the right connectors: I recommend you make sure that all the connectors are correctly created and assigned to the correct connector group. Test all the connectors created.

ara2  ara3

 

Generate the ruleset: Ensure that the Ruleset is generated. Navigate to SPRO_ADMIN -> IMG -> GRC -> Access Control -> Access Risk Analysis -> SoD Rules -> Generate SoD Rules (or) Goto transaction code GRAC_GENERATE_RULES. Once the rules are generated, you can see a message “Rules generated successfully”.

To validate, you can check tables GRACACTRULE and GRACSYSRULE. They should contain good amount of records.

Incase if you don’t see any values in these tables, Please review SAP Notes 1655862, 1752956 & 1824956 notes.

Re-run the Jobs: Re-run the authorization (program GRAC_PFCG_AUTHORIZATION_SYNC) and repository (program GRAC_REPOSITORY_OBJECT_SYNC) jobs. For the first time, these jobs should be run in full sync and also should be scheduled to run every day (can be incremental sync).

Also, if you have blank fields in your search criteria, risk analysis will be looking for a value called blank and not a wild card (any) value as it used to do as per default. Ensure to delete the blank fields.

ara4

 

This will resolve the issue.

Raghu Boddu

Author - Raghu Boddu


Raghu Boddu is a SAP Certified Technology Professional (Security), Comptia Security+ , ITIL V3 Foundation, and PRINCE2 Certified. He is an SAP Security/GRC solution architect with rich expertise in implementation & redesigning of Security in SAP. He is also a master in SAP Forensic Security. He is a regular blogger on topics like Security, Governance & Compliance, Application Security, Technology and other trending topics. He is well known to the community with his easy to understand articles.

VN:F [1.9.22_1171]
Rating: 9.0/10 (4 votes cast)
GRC 10:Access Risk Analysis shows no results, 9.0 out of 10 based on 4 ratings

Share This Post

Recent Articles

Leave a Reply

© 2018 SAP Security Expert. All rights reserved. · Entries RSS · Comments RSS
Managed by 7n Domains