Show TOC

Procedure documentationGenerating Roles Locate this document in the navigation structure

 

In the Generate Roles phase, you can submit roles for generation.

Procedure

  1. On the Generate Roles screen, choose the Generate button.

    The screen displays a summary of the following for the roles to be generated:

    • Default system

      The application pulls the default system information from the system landscape. You maintain the default system information in the Customizing activity Maintain Mapping for Actions and Connector Groups, under   Governance, Risk, and Compliance   Access Control  .

    • Other systems

      The application pulls the system information from the system landscape. You maintain the default system information in the Customizing activity Maintain Mapping for Actions and Connector Groups, under   Governance, Risk, and Compliance   Access Control  .

    • Derived roles

      The application displays: a list of the roles derived from this master role.

  2. Choose Next.

  3. Schedule the job for generating the roles, and choose Next.

  4. Analyze risks.

    The application performs risk analysis. If it does not detect any risk, it immediately goes to the Confirmation phase.

    Note Note

    You can configure whether or not the application performs risk analysis before it generates roles. Set the parameter ID 3011 in the Customizing Activity Maintain Configuration Settings, under   Governance, Risk, and Compliance   Access Control  .

    End of the note.

  5. Choose Submit to submit the job for generating roles.

    Note Note

    You can configure whether or not the application generates roles even with risks. Set the parameter IDs 3014 to 3018 in the Customizing Activity Maintain Configuration Settings, under   Governance, Risk, and Compliance   Access Control  .

    End of the note.