and more in a single search tool across platforms. Read the announcement here. |
03/15/2024 06:09 AM
Hi Team,
We have a tcode in the SOD ruleset for which SOD violation os defined. This is defined, using function, risks and defining it in the "object" sheet of the sample ruleset template attached
This tcode is mapped to 2 different SAP role - say Role - "ABC" and "DEF".
ABC role is mapped to company A and DEF role is mapped to company B. Company is simply a custom property mapped to the roles in Saviynt
The usecase is whenever role ABC is requested - SOD violation should be detected and whenever DEF is requested - SOD violation should not be detected as it belongs to company 'B' even though both have the same tcode.
Just wanted to understand if this can be done using the organization column in the object and how this can be achieved
03/17/2024 06:36 PM
SOD works on entitlement and not on role level custom properties