Answer Posted / gaurav.s

Guys you were wrong..a single role without a profile can
also be assigned to a composite role.Basavaraj, i was
looking for a technical reason for this behaviour. Well i
have explore it myself and the correct answer is :

What prevents you from adding a composite into a composite
is that within PFCG is a validation provided through
Function Module PGRN_CHECK_COLLECTIVE_AGR. That FM checks a
few things, one of which being that for the inserted role,
it is not a collective (composite) role defined
via table AGR_FLAGS field COLL_AGR=X.

Join SAP Security Group on Facebook :
https://www.facebook.com/groups/sapsecindia/

Give an example of SOD with object level control & also decide the Risk implication from the Technical standpoint.

4773

---

Attributes in SE01?

2607

---

how we Completely designed and implemented methodology for controlling end user access to plants, cost centers, etc. and how we Applied to both R/3 and BW environments.

2211

---

what is the different b/w su10 and su12

3031

---

What is t code?

1174

---

how we Restrict the auth groups for table maintain, creating Auth group using SE54 to built new Auth groups to restrict tables via auth object S_TABU_DIS

2389

---

Userdone tasks with ffid n system send log reports to controller in his work inbox but whenever its open its showing blank screen, why?

2219

---

Which tables will you use for making customizing setting for security administration?

1233

---

What are some ap security t codes?

1223

---

What are the upgrades happened in GRC 5.3 from GRC 5.2?

4260

---

How to update risk id in rule set?

1228

---

What is the difference between role and a profile?

1383

---

Hi I' m Len  Am looking for sap grc training in bangalore . Let know any  institute or any who teach

2141

---

Giving fire call access and extending fire call access by using VIRSA’s VFAT tool.can any one brief this

3754

---

How can I do a mass delete of the roles without deleting the new roles?

1526

---