Professional Documents
Culture Documents
Symptom
GRC 10.1 SP 22 (Initially introduced with SP 19) / GRC 12 SP 03, made it possible to include S4/HANA and Fiori applications
in the risk analysis. This KBA explains the steps required to be configured in the GRC system for running the risk analysis for
S4/HANA and Fiori system.
Environment
GRC 10.1
GRC 12
Resolution
In the customer landscape, the Fiori and S4/HANA system could be on the same box or they can be set up as separate
systems. The connector configuration is slightly different. Also, the customer might want to use the SAP delivered rules, or
use custom rules along with the SAP delivered rules OR just want to have custom rules only.
The rule creation and generation process is different, all the scenarios are covered in the Blog post Running risk analysis for
the SAP S/4HANA and SAP Fiori System.
See Also
2704494 - S4HANA & Fiori Risk Analysis does not show correct violations.
2639161 - S_SERVICE authorization causing huge risk violations results.
2652312 - Enhancement to S4HANA risk analysis to use same S4HANA ruleset even if Fiori Application is rendered from
different system
2655122 – Prefix / Abbreviation requires with Action for creating & running risk analysis
Keywords
Risk analysis, connector, S4, S4/HANA, S4HANA, FIORI, S_SERVICE, APP, Catalog, Remediation, SAP_S4A_LG.
Products
Products
2704494 GRC-SAC- S4HANA & Fiori Risk Analysis does not show correct violations
ARA
2655122 GRC-SAC- Prefix / Abbreviation requires with Action for creating & running risk analysis
ARA
Running risk analysis for the SAP S/4HANA and SAP Fiori System