Sap Grc

Only available on StudyMode
  • Topic: SAP AG, SAP R/3, Password
  • Pages : 13 (5437 words )
  • Download(s) : 141
  • Published : April 18, 2013
Open Document
Text Preview
1. What are the components of GRC? 2. What are the upgrades happened in GRC 5.3 from GRC 5.2? 3. Is it possible to have a request type by which we can change the validity per iod of a user? If possible, then what are the actions? 4. What's the latest Support Pack for GRC 5.3? How it differs from the previous one? 5. What are the issues faced by you in ERM & CUP after golive? 6. Can we change Single roles, objects & Profile description through mass mainte nance of role? If yes, how? 7. What are the prerequisites for creating a workflow for user provisioning? 8. How will you control GRC system if you have multiple rulesets activated? 9. Can we view the changes of a role, happened in PFCG, through GRC? 10. How will you mitigate a user against an authorization object which is decide d as sensitive by Business? 11. Give an example of SOD with object level control & also decide the Risk impl ication from the Technical standpoint. 12. Is it possible to assign two roles with different validity period to a user in one shot through GRC? If yes, how? 13. What's the use of Detour path? How Fork path differs from Detour path? 14. How can you enable self password reset facility in GRC? 15. Can we have customized actions for creating request types in CUP? 16. Which SOX rules got inherited in SAP GRC? 17. How many types of Background job you are familiar with? Why Role/Profile & U ser Sync. job is required? 18. Where from can we change the default expiration time for mitigating controls ? What's the default value for the same? 19. How will you do the mass import of role in GRC? 20. Explain the total configuration & utility of SPM? 21. Can we create Logical systems in GRC? If yes, how & what can be the advantag es & disadvantages of the same? 22. Can we have different set of number ranges activated for request generation? 23. Explain, how can we create derived roles in ERM? What will be the significan t changes in methodology for creating composite roles? GRC is a tool that helps improve controls. From a security perspective it automa tes monitoring of SoD's, allows automated provisioning of emergency access and a utomation of the user provisioning process Security Q's: Explain the authorisation concept in detail Explain how config relates to security Explain why SU53 is not always accurate GRC Q's: Explain in detail how the different components of the Access Controls suite inte grate with each other Explain the key problem areas in implementation of RAR Explain the key problem areas in implementation of CUP Some GRC Questions: 1. What are the components of GRC? 2. What are the upgrades happened in GRC 5.3 from GRC 5.2? 3. Is it possible to have a request type by which we can change the validity per iod of a user? If possible, then what are the actions? 4. What's the latest Support Pack for GRC 5.3? How it differs from the previous one? 5. What are the issues faced by you in ERM & CUP after golive? 6. Can we change Single roles, objects & Profile description through mass mainte nance of role? If yes, how? 7. What are the prerequisites for creating a workflow for user provisioning?

8. How will you control GRC system if you have multiple rulesets activated? 9. Can we view the changes of a role, happened in PFCG, through GRC? 10. How will you mitigate a user against an authorization object which is decide d as sensitive by Business? 11. Give an example of SOD with object level control & also decide the Risk impl ication from the Technical standpoint. 12. Is it possible to assign two roles with different validity period to a user in one shot through GRC? If yes, how? 13. What's the use of Detour path? How Fork path differs from Detour path? 14. How can you enable self password reset facility in GRC? 15. Can we have customized actions for creating request types in CUP? 16. Which SOX rules got inherited in SAP GRC? 17. How many types of Background job you are familiar with? Why Role/Profile & U ser Sync. job is required? 18. Where from can we...
tracking img