and more in a single search tool across platforms. Read the announcement here. |
02/08/2023 08:42 PM
Hi Team,
I am looking forward for the information around below parameters :
Show Basic Insights
Risk Level
Criticality Level
SoD Level
which is listed here
Do note the documentation provided does not detail out how this parameters works.
Please share your inputs.
Thanks
Manish
02/08/2023 09:25 PM
This shows information on request approval about SOD
02/08/2023 09:31 PM
We have configured an Endpoint : ABC
It has following entitlements with Risk categorized as:
Mac --Medium
PC --High
Printer -- Very High
Phone - Low
We have defined Risk Level/Criticality Level/SoD Level as all Medium
Issue Identified :
We are not sure how EIC is calculating the Risky Items details?
Inspite we have requested all above 4 entitlements its showing 4 anyhow no SOD is configured and only 3 entitlements satisfy Risk category condition.
Also, the data displayed in UI is gibberish when we click on Risky Item. Please add more inputs
02/08/2023 09:33 PM
This is all about SOD Risk not Entitlement Risk
02/08/2023 09:36 PM
As per https://docs.saviyntcloud.com/bundle/EIC-Admin-v2020x/page/Content/Chapter06-EIC-Configurations/Conf... | Use this setting to select the risk level to calculate and display the number of such risky items in the requested items.
Also, inspite there is no SOD violation in request still we see Risky Item as 4
02/23/2023 12:23 AM
@Sivagami @rushikeshvartak @Darshanjain Can you help here please?
We are not able to understand the logic behind calling out items as Risky.
We are still seeing the items marked as Risky inspite no SOD violation is detected or even the ruleset is even configured.
02/28/2023 11:00 AM - edited 02/28/2023 11:01 AM
If Medium is selected in the config for Risk, then all the items (entitlements, roles) in the request, which have a Risk of Medium, High and Very High should contribute towards the count of Risky items
Criticality should be a combination of SOC Criticality and System Criticality, i.e. if the minimum level for criticality in config. is set to High and the SOX criticality for the item is Medium but the System criticality is Very High then also the entitlement will be considered as Critical and included in critical count since the System Criticality is above the minimum set in the config.
02/28/2023 09:09 PM
@ParitaSavla Many thanks for explanation.
Let me verify and respond.
02/28/2023 09:39 PM
@ParitaSavla Can you also let me know how does SoD Level has an impact on Risky Item?
I have 4 entitlements which does not fall under the category of any threshold for Risk and Criticality anyhow they do cause SOD with High State.
Due to this I see that now all 4 entitlements are displayed as Risky to me.
Is there any ready reference matrix
03/01/2023 08:05 AM
For SoD, count of SoD violations in the request should be displayed
03/01/2023 08:22 PM
@ParitaSavla SOD count we are able to see.
What I am talking about is does SoD Level has an impact on Risky Item.
As I mentioned earlier :
I have 4 entitlements which does not fall under the category of any threshold for Risk and Criticality anyhow they do cause SOD with High State.
Due to this I see that now all 4 entitlements are displayed as Risky to me.
Is there any ready reference matrix
05/04/2023 12:41 PM
@Manu269 No the SOD level does not have any impact on the Risky items. Risk Level is only based on the access the user has in the request. SOD Level is used to show the SODs in the request. The score is again based on the settings in the global configs.
Hope this answered your question.
05/04/2023 10:14 PM
@sai_sp I believe this has to be rechecked.
Reason :
I have 4 entitlements which does not fall under the category of any threshold for Risk and Criticality score anyhow they do cause SOD with High State.
Due to this I see that now all 4 entitlements are displayed as Risky to me.