Chat now with support
Chat with Support

Identity Manager 8.0 - Administration Guide for the SAP R/3 Compliance Add-on

SAP Functions and Identity Audit Setting up a Synchronization Project for Synchronizing SAP Authorization Objects Base Data for SAP Functions Finding Non-compliant Authorizations Setting up SAP Functions Compliance Rules for SAP Functions Mitigating Controls Appendix: Configuration Parameters for SAP Functions Appendix: Default Project Templates for the SAP R/3 Compliance Add-on Module Appendix: Referenced SAP R/3 Tables and BAPI Calls

Mitigating Controls

Mitigating Controls

Table 29: Configuration Parameter for Risk Assessment
Configuration parameter Active Meaning
QER\CalculateRiskIndex Preprocessor relevant configuration parameter controlling system components for calculating an employee's risk index. Changes to the parameter require recompiling the database.

If the parameter is set, values can be entered and calculated for the risk index.

Violation of regulatory requirements can harbor different risks for companies. To evaluate these risks, you can apply risk indexes to compliance rules, and company policies. These risk indexes provide information about the risk involved for the company in violating the respective rule function. Once the risks have been identified and evaluated, mitigating controls can be implemented.

Mitigating controls are independent on One Identity Manager’s functionality. They are not monitored through One Identity Manager.

Mitigating controls describe controls that are implemented if a compliance SAP was violated. function is met. The next calculation should not find any invalid authorizations for this SAP function once the controls have been applied.

To edit mitigating controls

  • Set the configuration parameter "QER\CalculateRiskIndex" in the Designer and compile the database.
Detailed information about this topic
  • One Identity Manager Risk Assessment Administration Guide

General Master Data for a Mitigating Control

General Master Data for a Mitigating Control

To edit mitigating controls

  1. Select the category Risk index functions | Mitigating controls.
  2. Select a mitigating control in the result list. Select Change master data in the task view.

    - OR -

    Click in the result list toolbar.

  3. Edit the mitigating control master data.
  4. Save the changes.

Enter the following master data for mitigating controls.

Table 30: General Master Data for a Mitigating Control
Property Description
Measure Unique identifier for the mitigating control.
Significance reduction When the mitigating control is implemented, this value is used to reduce the risk of denied attestation cases. Enter a number between 0 and 1.
Description Detailed description of the mitigating control.
Functional area Functional area in which the mitigating control may be applied.
Department Department in which the mitigating control may be applied.

Additional Tasks for Mitigating Controls

After you have entered the master data, you can apply different tasks to it. The task view contains different forms with which you can run the following tasks.

The Mitigating Controls Overview

The Mitigating Controls Overview

You can see the most important information about a mitigating control on the overview form.

To obtain an overview of a mitigating control

  1. Select the category Risk Index Functions.
  2. Open Mitigating controls from the navigation view.
  3. Select the mitigating control in the result list.
  4. Select the task Mitigating control overview.
Related Documents