What is the difference between ECC security and RAR security
when GRC (RAR<SPM<CUP) is used, when similar functionality can
be performed SAP R3 level(ECC)?
Answers were Sorted based on User's Feedback
Answer / itsgaurav151
The things ECC security and RAR security are different. ECC
is a system whereas RAR is a tool. ECC security involves
securitg data, t-code access, report access and maintaining
the suthorizations. RAR(Risk analysis and Remediation) is a
tool that is used for analysis of risk analysis and its
remeduation as name suggests. Rhis tool determines all
potential risks that arises if a t-code/object/role/auth is
assigned to a user. Also this tool helps to remediate that
risk using mitigation technique.
|Is This Answer Correct ?||6 Yes||1 No|
Answer / rahman shaik
Simply we can say one thing like In Ecc system you cant find any risk while assigning the roles but in RAR tool it will check the RISK of that particular assignment and if risk is their then we can mitigate and simulate to that risk
I mean its purely for SOD(segregation of duties)
|Is This Answer Correct ?||3 Yes||0 No|
What is the difference between the table buffer and the user buffer?
What are su25 t-codes used for?
How we Assigning roles to users positions in HR, troubleshoot access issues
Can any one tell me briefly , what is the roles and responsibilities of SAP BASIS Security Administrator..
Q2) Can we ADD an organisational element in a role? If yes how??
i want to delete 1000 users of a particular client,hou can i do it ?
can u tell me some of the password related parameters ?
what is hypercare and go live support?
what are the issues you faced with UME?
what is the length of user buffer
How do we test security systems.
how to create new authorization object?