Answer / parixit

SoX is serbian & Oxley, it is an ACT in US, this ACT should
be liable for buisness.

SoD is Segeration of Duties, Division of power in different
position. it gives power as per the designation.

Answer / sakthi

SOD stands for Segregation of duties.

It helps us to identify frauds and Misstatements.

For example in virsa tool we have critical SOD conflict S017
for SD module where it identifies and checks for user who
could Perform credit approval function and modify cash
received for fraudulent purposes.

SOD conflict F017 for FICO module where it checks for users
who could Maintain a non bona-fide bank account and divert
incoming payments to it.

SOD conflict P001 for PP module where it checks for users
who could Maintain a fictitious vendor and enter a Vendor
invoice for automatic payment

As far my experience concerned we need to avoid critical SOD
conflicts as much as possible and these SOD conflicts are
the ones which the auditor checks and they ask for the
mitigation control that we have outside like trace.

Give one example of master data that is shared between AC, PC and RM? (grc 10)

1 Answers   TCS,

---

How to get the list of tcodes having by all users(EX-20 users)at a time?(through SUIM or TABLE) [we can get single user through SUIM->TRANSACTIONS- >EXECUTABLE USER....but same thing i want for multiple users at a time)

6 Answers   IBM, L&T,

---

How to create a custom T-code tell me the procedure How to add an authorization object for that custom t-code If any authorization object has been modified in SU24, how it will be effected in the system? If u has issue like add one AO in 50 roles what would u do? (If all 50 are single roles)? What is rule? What kind of reports does perform at the R3 level?

2 Answers   IBM, Tech Mahindra,

---

Q3) What is difference between R/3 security and HR security? Explain in detail or its importance?

2 Answers   HP,

---

When validity of role is over its profile get deleted from master record but corresponding role remains as it is, Why ? Can we delete it automatically ?

2 Answers   Patni,

---

in my production system there are some 20 roles created in the production system itself without following the standard procedure of creating in dev testing it qas and then moving it to prd.so how do you find out all the roles created in prd system?

5 Answers   iGate,

---

How we Educated client personnel in R/3 Security and general Basis knowledge

0 Answers   IBM,

---

The system raised a message that authorizations are missing but you have SAP-ALL. What would you do?

3 Answers  

---

What does user compare do?

0 Answers  

---

In SU53 screenshot , there are missing authorization. How you come to know that these are the relevant Roles in which we have to add these objects? Decision not SUIM

1 Answers   IBM,

---

Difference between Standard and Manual objects?

2 Answers   IBM,

---

(1)Difference between usobt_c and usobx_c?(2)What are usobt and usobx tables for?(3)Difference between usobt and usobt_c?(4)Se93.How u create custom t-codes?(5)Difference b/w customizing request and workbench request?(6)To trnsprt sU24 setting which is used is it customizing or workbench request?(7)If we add org level elements in a master role will it reflect in child role and how AGR_1252 will act as a barrier?(8)How to do mass user to role assignment using secatt, will u use su01 or su10?Explain why you will use SU10 not SU01?(9)Can SU10 can be used for mass password reset?Why not?(10)If you want to reset the password for say 100 users in Production how will you do?(11)Expalian Steps 2A and 2B in SU25?

6 Answers   HCL,

---