Ac Data Structure for Reporting

Access Control Version 5.3 Data Structure for Reporting

The following data is provided to facilitate customer creation of reports for Access Control data. Entity Relationship Diagrams follow the structure information and may be used as a reference during query design. The data structure in Access Control is version specific and is subject to change. Any customer-created reports or programs using this information are not supported by SAP. The data presented here is organized by Access Control capability and does not include all tables. Requests for additional data may be submitted for consideration using CSS. Please note that (N’ ‘) in the ‘Default’ column indicates that the field default value will be based on the data type. For instance, if the field is a DATETIME field, then the default will be 1/1/1900. Compliant User Provisioning

VIRSA_AE_DLEGAPROV Delegation of Approval

FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT

APPRVID Original Approver's User ID NVARCHAR 40 TRUE TRUE

DELEGAPPRVID Delegated Approver's User ID NVARCHAR 40 TRUE TRUE

FRM_DT From Date DATETIME 8 FALSE FALSE

TO_DT To Date DATETIME 8 FALSE FALSE

REQ_DT Request Date DATETIME 8 FALSE FALSE

STATUS Status INT 4 FALSE FALSE (0)

VIRSA_AE_REQD_HDR Request Header


REQNO Request Number NVARCHAR 20 TRUE TRUE

REQDATE Request Date DATETIME 8 FALSE FALSE

REQAPPDATE Request Approval Date DATETIME 8 FALSE FALSE

REQTYPE Request Type NVARCHAR 30 FALSE FALSE

PRIORITY Priority NVARCHAR 8 FALSE FALSE

BUSSPROC Business Process NVARCHAR 40 FALSE FALSE

BUSSPROCOWNER Business Process Owner NVARCHAR 40 FALSE FALSE

BUSSPROCOWNEREMAIL Business Process Owner's Email Address NVARCHAR 100 FALSE FALSE

USERNAME User Name NVARCHAR 86 FALSE FALSE

USEREMAIL User Email Address NVARCHAR 100 FALSE FALSE

HDR_POSITION Header Position NVARCHAR 12 FALSE FALSE

ORGUNIT Organizational Unit NVARCHAR 12 FALSE FALSE

REQUESTOR Requester/Requestor NVARCHAR 101 FALSE FALSE

REQUESTOREMAIL Requestor Email Address NVARCHAR 155 FALSE FALSE

APPROVER Approver NVARCHAR 101 FALSE FALSE

APPROVEREMAIL Approver Email Address NVARCHAR 155 FALSE FALSE

JOB Job NVARCHAR 12 FALSE FALSE

This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. of 17

VIRSAg_AE_REQD_HDR CONTINUED


PERSONNELNO Personnel Number NVARCHAR 20 FALSE FALSE

PERSONNELAREA Personnel Area NVARCHAR 60 FALSE FALSE

LOCATION Location NVARCHAR 100 FALSE FALSE

TELEPHONE Telephone Number NVARCHAR 30 FALSE FALSE

COSTCENTER Cost Center NVARCHAR 40 FALSE FALSE

BUSSAREA Business Area NVARCHAR 4 FALSE FALSE

REQCATEGORY Request Category NVARCHAR 20 FALSE FALSE

REQREASON Request Reason NVARCHAR 20 FALSE FALSE

STATUS Status NVARCHAR 20 FALSE FALSE

COMMENTS Comment NVARCHAR 1330 FALSE FALSE

FUNCTIONALAREA Functional Area NVARCHAR 20 FALSE FALSE

PRINTER Printer NVARCHAR 200 FALSE FALSE

REQUESTJUSTIFICATN Request Justification NVARCHAR 300 FALSE FALSE

SECURETELEPHONE Secure Telephone NVARCHAR 30 FALSE FALSE

SAPUSERID SAP User ID NVARCHAR 40 FALSE FALSE

CREATORUSERID Creator User ID NVARCHAR 40 FALSE FALSE

CREATOREMAILID Creator's Email Address NVARCHAR 155 FALSE FALSE

EMPTYPE Employee Type NVARCHAR 200 FALSE FALSE

USERSTRTVALDT User Start Validity Date DATETIME 8 FALSE FALSE

USERENDVALDT User End Validity Date DATETIME 8 FALSE FALSE

ISDELETED Is Deleted Indicator NVARCHAR 1 FALSE FALSE

APPROVERID Approver User ID NVARCHAR 40 FALSE FALSE

REQUESTORID Requestor User ID NVARCHAR 40 FALSE FALSE

USERID User ID NVARCHAR 40 FALSE FALSE

COMPANY Company NVARCHAR 42 FALSE FALSE

WFTYPE Workflow Type NVARCHAR 10 FALSE TRUE ('AE')

DEPARTMENT Department NVARCHAR 100 FALSE FALSE (' ')

COMMENTSNEW Comments NTEXT 16 FALSE FALSE

COMPLETIONDATE Completion Date DATETIME 8 FALSE FALSE

BGJOBID Background Job ID NVARCHAR 50 FALSE FALSE

REQNO_NUM Request Number BIGINT 8 FALSE TRUE (0)

VIRSA_AE_RL_CRLVL Role Criticality Levels


CRITICAL_LEVEL Criticality Level NVARCHAR 15 TRUE TRUE

DESCRIPTION Description NVARCHAR 60 FALSE TRUE


VIRSA_AE_ROLDTLS Details of Roles and Profiles


ROLEPROFNAME Role/Profile Name NVARCHAR 40 TRUE TRUE

ROLEPROFDESC Role/Profile Description NVARCHAR 100 FALSE FALSE

BUSSPROC Business Process NVARCHAR 40 FALSE FALSE

SUBPROC Sub-business Process NVARCHAR 40 FALSE FALSE

REAFFIRM_PERIOD Reaffirm Period INT 4 FALSE FALSE (0)

LST_REAFF_DT Last Reaffirm Date DATETIME 8 FALSE FALSE

ROLEPROFINDICATOR Role/Profile Indicator NVARCHAR 1 FALSE FALSE

DETAIL_DESC Detailed Description NVARCHAR 600 FALSE FALSE

ROLEPROFTYPE Role/Profile Type NVARCHAR 10 FALSE FALSE

CRITICAL_LEVEL Criticality Level NVARCHAR 20 FALSE FALSE

PROF_GEN_URL Profile Generator URL NVARCHAR 600 FALSE FALSE

PROF_GEN_BAPI Profile Generator BAPI NVARCHAR 60 FALSE FALSE

ID FIELD IS OBSOLETE NVARCHAR 40 FALSE FALSE (' ')

RESP_ID FIELD IS OBSOLETE NTEXT 16 FALSE FALSE

RSPB_ID FIELD IS OBSOLETE INT 4 FALSE FALSE (0)

COMMENTS_MANDATORY Comments Mandatory Indicator NVARCHAR 4 FALSE FALSE (' ')

PARENTROLE_OWNER Owner of the Parent Role NVARCHAR 4 FALSE FALSE (' ')

ROLEPROFDISPNAME Role/Profile Display Name NVARCHAR 255 FALSE TRUE

ROLEPROFNAME_CS Role/Profile Character String for Searches NVARCHAR 255 FALSE TRUE

CONTYPE Connector Type NVARCHAR 20 FALSE TRUE

VIRSA_AE_ROLEAPRV Role Approver


ROLEPROFNAME Role/Profile Name NVARCHAR 40 TRUE TRUE

APPROVERID Approver's User ID NVARCHAR 40 TRUE TRUE

APPROVERTYPE Approver’s Type INT 4 TRUE TRUE (1)

ALTAPPROVERID Alternate Approver's User ID NVARCHAR 40 FALSE FALSE

ISLEAD Is Lead Indicator NVARCHAR 10 FALSE FALSE

ALTAPPROVERTYPE Alternate Approver’s Type INT 4 FALSE FALSE (1)

VIRSA_AE_RQD_APL Application of the request with status of provisioning



APPLICATION Application NVARCHAR 60 TRUE TRUE

APPROVAL_STATUS Approval Status NVARCHAR 20 FALSE FALSE

VALID_FROM Valid From Date DATETIME 8 FALSE FALSE

VALID_TO Valid To Date DATETIME 8 FALSE FALSE

ISPROVISIONED Is Provisioned Indicator INT 4 FALSE TRUE (0)


VIRSA_AE_RQD_RLPRL Request Role/Profile Data


REQNO Request Number NVARCHAR 20 FALSE TRUE

SYSTEM System NVARCHAR 20 FALSE TRUE

ROLEPROFNAME Role/Profile Name NVARCHAR 40 FALSE TRUE

COMPANY Company NVARCHAR 42 FALSE FALSE

APPROVAL_STATUS Approval Status NVARCHAR 20 FALSE FALSE

DTVALIDFROM FIELD IS OBSOLETE N/A 8 N/A N/A

DTVALIDTO FIELD IS OBSOLETE N/A 8 N/A N/A

ACTIONFLAG Action Flag NVARCHAR 50 FALSE FALSE

RLPRL_PATH Path Identifier NVARCHAR 20 FALSE FALSE

ADDTNL_COMMENTS Approver’s Additional Comments NVARCHAR 1200 FALSE FALSE

ROLEINDEX Role Index INT 4 FALSE FALSE (0)

ISPROVISIONED Is Provisioned Indicator INT 4 FALSE FALSE (0)

TSDTVALIDFROM Date Valid From DATETIME 8 FALSE FALSE

TSDTVALIDTO Date Valid To DATETIME 8 FALSE FALSE

VIRSA_AE_RQD_USERS Request User Information



USERID User ID NVARCHAR 40 TRUE TRUE (' ')

EMAILID Email Address NVARCHAR 255 FALSE TRUE (' ')

FNAME First Name NVARCHAR 50 FALSE FALSE

LNAME Last Name NVARCHAR 50 FALSE FALSE

TELEPHONE Telephone Number NVARCHAR 30 FALSE FALSE

SAPUSERID SAP User ID NVARCHAR 40 FALSE FALSE SNC_NAME SNC Name NVARCHAR 255 FALSE FALSE (' ')

UNSEC_SNC Unsecured Logon Allowed Indicator INT 4 FALSE FALSE (0)

VIRSA_AE_RQD_WPTRN Status detail for request stages


REQNO Request Number NVARCHAR 20 TRUE TRUE (' ')

REQPATHID Request Path NVARCHAR 20 TRUE TRUE (' ')

STAGE_NAME Stage Name NVARCHAR 15 TRUE TRUE (' ')

APPROVERID Approver's User ID NVARCHAR 40 TRUE TRUE

APPROVERTYPE Approver’s Type INT 4 TRUE TRUE (1)

STATUS Status NVARCHAR 20 FALSE TRUE

LASTUPDATE Last Update DATETIME 8 FALSE TRUE

ALTAPPROVER Alternate Approver's User ID NVARCHAR 40 FALSE FALSE (' ')

ALTAPPROVERTYPE Alternate Approver’s Type INT 4 FALSE FALSE (1)

LASTREMINDERDATE Date of Last Reminder DATETIME 8 FALSE FALSE


VIRSA_AE_RQ_HST Request Workflow Stage History


REQNO Request Number NVARCHAR 20 FALSE TRUE

HST_ACTION Host Action NVARCHAR 40 FALSE TRUE (' ')

ACTIONDATE Action Date DATETIME 8 FALSE TRUE

USERID User ID NVARCHAR 100 FALSE TRUE

ACTION_VALUE Action Value NVARCHAR 200 FALSE FALSE (' ')

DESCRIPTION Description NVARCHAR 200 FALSE FALSE (' ')

PATHNAME Path Name NVARCHAR 100 FALSE FALSE (' ')

STAGE_NAME Stage Name NVARCHAR 100 FALSE FALSE (' ')

ID ID BIGINT 8 FALSE FALSE (0)

DEPENDENT_ID Dependent ID BIGINT 8 FALSE FALSE (0)


Risk Analysis and Remediation

VIRSA_CC_ACTVL Offline Analysis - Action Level SoD Violations (Informer)


JOBID Job ID INT 4 TRUE TRUE

GENOBJID Generic Object ID (User, Role, Profile) NVARCHAR 50 TRUE TRUE

GENOBJTP Generic Object Type INT 4 TRUE TRUE

ACTRISK Action Level Rule ID NVARCHAR 7 TRUE TRUE (' ')

VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')

ACTIONS Actions NVARCHAR 50 TRUE TRUE (' ')

ROLES Roles NVARCHAR 49 TRUE TRUE

MITREFNO Mitigation Reference Number NVARCHAR 10 FALSE FALSE

MONITORID Monitor ID NVARCHAR 12 FALSE FALSE

RUNDATE Run Date DATETIME 8 FALSE FALSE

RUNTIME Run Time DATETIME 8 FALSE FALSE

RISKID Risk ID NVARCHAR 4 FALSE TRUE (' ')

XVSYSKEY System NVARCHAR 10 FALSE FALSE (' ')

VIRSA_CC_ADMIN Mitigation Administrators (Mitigation)


USERID User ID NVARCHAR 12 TRUE TRUE

NAME Name NVARCHAR 80 FALSE FALSE

EMAILID Email Address NVARCHAR 100 FALSE FALSE (' ')

ROLEID Role ID NVARCHAR 1 FALSE TRUE

VIRSA_CC_BUAPPVR Mitigation Approvers per Business Unit (Rule Architect)


BUSID Business Unit ID NVARCHAR 4 TRUE TRUE

APPROVERID Approver’s User ID NVARCHAR 12 TRUE TRUE

VIRSA_CC_BUMONITOR Mitigation Monitors per Business Unit (Rule Architect)



MONITORID Monitor’s User ID NVARCHAR 12 TRUE TRUE


VIRSA_CC_BUSPRCT Business Process Text (Rule Architect)


BZPRCID Business Process ID NVARCHAR 4 TRUE TRUE (' ')

LANG Language NVARCHAR 2 TRUE TRUE (' ')

DESCN Description NVARCHAR 132 FALSE FALSE

VIRSA_CC_BUSUNITT Business Unit Text (Mitigation)





VIRSA_CC_CRACT Critical Action Risk Definition (Rule Architect)



TCODE Transaction/Action NVARCHAR 50 TRUE TRUE (' ')

RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')

RISKLEVEL Risk Level INT 4 FALSE TRUE

STATUS Status INT 4 FALSE TRUE

VIRSA_CC_CRACTT Critical Action Risk Definition Texts (Rule Architect)






DESCN Description NVARCHAR 132 FALSE TRUE

VIRSA_CC_CRACTVL Offline Analysis -Critical Action Violations (Informer)




CRACTION Critical Action NVARCHAR 50 TRUE TRUE (' ')


CRACTRISK Critical Action Risk NVARCHAR 4 TRUE TRUE





VIRSA_CC_CRPRM Critical Permission Risk Definition (Rule Architect)





AUTHKEY Authorization Key INT 4 TRUE TRUE

AUTHSEQ Authorization Sequence INT 4 TRUE TRUE (0)

FROMVAL From Value NVARCHAR 50 TRUE TRUE

TOVAL To Value NVARCHAR 50 TRUE TRUE

SEARCHTYPE Search Type NVARCHAR 3 TRUE TRUE ('AND')


VIRSA_CC_CRPRMVL Offline Analysis -Critical Permission Violations (Informer)





PRMRISK Permission Risk NVARCHAR 9 TRUE TRUE


PRMTYPE Permission Type NVARCHAR 3 TRUE TRUE

PERMISSION Permission NVARCHAR 100 TRUE TRUE









VIRSA_CC_CRPROF Critical Profile Risk Definition (Rule Architect)



PROFILE Profile NVARCHAR 50 TRUE TRUE

RULESETID Rule Set ID NVARCHAR 8 TRUE TRUE




VIRSA_CC_CRPROFT Critical Profile Text (Rule Architect)







VIRSA_CC_CRROLE Critical Role Risk Definition (Rule Architect)







VIRSA_CC_CRROLET Critical Role Text (Rule Architect)







VIRSA_CC_CRROLEVL Offline Analysis -Critical Role Violations (Informer)




CRROLE Critical Role NVARCHAR 49 TRUE TRUE

CROBJTP Critical Object Type INT 4 TRUE TRUE (0)




VIRSA_CC_DETDESC Detailed Descriptions (Rule Architect)


OBJECT_TYPE Object Type NVARCHAR 3 TRUE TRUE

OBJECT_ID Object ID NVARCHAR 80 TRUE TRUE


DETAIL_DESCN Detailed Description NTEXT 16 FALSE FALSE


VIRSA_CC_FUNC Function Definition (Rule Architect)


FUNCTID Function ID NVARCHAR 8 TRUE TRUE

SCOPE Scope of Function NVARCHAR 1 FALSE TRUE ('C')

VIRSA_CC_FUNCACT Function to Action Relationship (Rule Architect)






VIRSA_CC_FUNCBP Function to Business Process Assignment (Rule Architect)




VIRSA_CC_FUNCPRM Function to Permission Relationship (Rule Architect)





AUTHTREE Authorization Tree/Permission NVARCHAR 100 TRUE TRUE



SEARCHTYPE Search Type (Operator) NVARCHAR 3 TRUE TRUE ('AND')


VIRSA_CC_FUNCT Function Description (Rule Architect)





VIRSA_CC_MGALERTS Management Reports – Alerts (Informer)


YEARMONTH Year Month NVARCHAR 6 TRUE TRUE


ALERTTYPE Alert Type NVARCHAR 1 TRUE TRUE


ALERTCOUNT Alert Count INT 4 FALSE FALSE (0)


VIRSA_CC_MGCRTR Management Reports - Critical Actions (Informer)



ANLTYPE Analysis Type INT 4 TRUE TRUE

USERGROUP User Group NVARCHAR 20 TRUE TRUE


CRCOUNT Critical Risk Count INT 4 TRUE TRUE (0)


VIRSA_CC_MGMTBU Management Reports - Summary by Business Process (Informer)



VIOLTYPE Violation Type NVARCHAR 15 TRUE TRUE





RISKCOUNT Risk Count INT 4 FALSE FALSE (0)

VIRSA_CC_MGMTTOT Management Reports - Totals (Informer)







TOTCOUNT Total Count of Violations BIGINT 8 FALSE FALSE (0)

TOTUSER Total Users Analyzed INT 4 FALSE FALSE (0)

RISKLOW Number of Risks - Low BIGINT 8 FALSE TRUE (0)

RISKMED Number of Risks - Medium BIGINT 8 FALSE TRUE (0)

RISKHIGH Number of Risks - High BIGINT 8 FALSE FALSE (0)

RISKCRT Number of Risks - Critical BIGINT 8 FALSE FALSE (0)

URNONE Users with No Risks BIGINT 8 FALSE FALSE (0)

URLOW Users with Low Risks BIGINT 8 FALSE FALSE (0)

URMED Users with Medium Risks BIGINT 8 FALSE FALSE (0)

URHIGH Users with High Risks BIGINT 8 FALSE FALSE (0)

URCRT Users with Critical Risks BIGINT 8 FALSE FALSE (0)

URMIT Users with Mitigated Risks BIGINT 8 FALSE FALSE (0)

TOTCRTCD Total Critical T-Codes/Actions BIGINT 8 FALSE FALSE (0)

CRTCD Users with Critical Actions BIGINT 8 FALSE FALSE

TOTCRROLE Total Critical Roles/Profiles BIGINT 8 FALSE FALSE (0)

CRROLE Users with Critical Roles/Profiles BIGINT 8 FALSE FALSE (0)




VIRSA_CC_MGRISKD Management Reports - Detailed Risks (Informer)



USERROLE User/Role NVARCHAR 50 TRUE TRUE



RISKID Risk ID NVARCHAR 4 TRUE TRUE

MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE

MONITORID Monitor ID NVARCHAR 12 TRUE TRUE


RISKCOUNT Risk Count INT 4 FALSE FALSE (0)

BZPRCID Business Process ID NVARCHAR 4 FALSE FALSE

VIRSA_CC_MGRISKS Management Reports - Violations by Risk (Informer)








BZPRCID Business Process ID NVARCHAR 4 FALSE FALSE


RISKCOUNT Risk Count INT 4 FALSE TRUE (0)

VIRSA_CC_MITHROBJ Mitigated HR Objects (Mitigation)




HROBJ HR Object NVARCHAR 8 TRUE TRUE

HROBJTYP HR Object Type NVARCHAR 1 TRUE TRUE

VALIDFROM Valid From Date DATETIME 8 FALSE TRUE

VALIDTO Valid To Date DATETIME 8 FALSE TRUE

MONITORID Monitor ID NVARCHAR 12 FALSE TRUE


VIRSA_CC_MITMON Mitigating Control Monitors (Mitigation)





VIRSA_CC_MITPROF Mitigated Profiles (Mitigation)









VIRSA_CC_MITREF Mitigating Control Definition - Header (Mitigation)



BUSID Business Process ID NVARCHAR 4 FALSE TRUE

APPROVERID Approver ID NVARCHAR 12 FALSE TRUE

VIRSA_CC_MITREFT Mitigating Control Definition - Description (Mitigation)





VIRSA_CC_MITRISK Mitigating Control Definition - Risks (Mitigation)




VIRSA_CC_MITROLE Mitigated Roles (Mitigation)




ROLEID Role ID NVARCHAR 50 TRUE TRUE






VIRSA_CC_MITRPT Mitigating Control Definition - Reports (Mitigation)






FREQUENCY Frequency INT 4 FALSE TRUE

VIRSA_CC_MITUSER Mitigated Users (Mitigation)









VIRSA_CC_MITUSRORG Mitigated Users: Organizational Level (Mitigation)





ORGRULEID Organizational Rule ID NVARCHAR 10 TRUE TRUE





VIRSA_CC_PRMVL Offline Analysis - Permission Level Violations (Informer)










VIRSA_CC_PRMVL Continued










XVSYSKEY System NVARCHAR 10 FALSE FALSE (' ')

ORGRULEID Organizational Rule ID NVARCHAR 10 FALSE FALSE (' ')

FUNCTID Function ID NVARCHAR 8 FALSE FALSE (' ')

VIRSA_CC_RISK Risk Definition (Rule Architect)





BZPRCID Business Process ID NVARCHAR 4 FALSE TRUE (' ')

UPDDATE Updated Date DATETIME 8 FALSE TRUE

UPDTIME Updated Time DATETIME 8 FALSE TRUE

UPDUSER Updated User NVARCHAR 40 FALSE FALSE

ACTGEN Action Level Generation Indicator NVARCHAR 1 FALSE FALSE

PRMGEN Permission Level Generation Indicator NVARCHAR 1 FALSE FALSE

RISKTYPE Risk Type NVARCHAR 1 FALSE FALSE ('1')

FUNCRISK Function Level Risk Indicator NVARCHAR 1 FALSE FALSE

VIRSA_CC_RISKFUNC Risk to Function Relationship (Rule Architect)




VIRSA_CC_RISKOWN Risk Owner (Rule Architect)



OWNUSER Own User NVARCHAR 40 TRUE TRUE (' ')


VIRSA_CC_RISKRS Risk to Rule Set Assignment (Rule Architect)




VIRSA_CC_RISKT Risk Texts (Rule Architect)





VIRSA_CC_ROLEVL Offline Analysis - Role Violations (Informer)














VIRSA_CC_RULESET Rule Set Definition (Rule Architect)



VIRSA_CC_RULESETT Rule Set Text (Rule Architect)






VIRSA_CC_SUPP_DET Supplementary Rule Details (Rule Architect)



RULEID Rule ID NVARCHAR 9 TRUE TRUE


TABNAME Table Name NVARCHAR 50 TRUE TRUE

FIELDNAME Field Name NVARCHAR 50 TRUE TRUE

FIELDVALUE Field Value NVARCHAR 132 TRUE TRUE

VIRSA_CC_SUPP_HDR Supplementary Rule Header (Rule Architect)






CHECKFIELD Check Field NVARCHAR 50 FALSE TRUE

EXCLUSION Exclusion Indicator NVARCHAR 1 FALSE FALSE


VIRSA_CC_SUPP_TEXT Supplementary Rule Text (Rule Architect)








VIRSA_CC_USRMAP User Map (Configuration)


MASTERID Master ID NVARCHAR 40 TRUE TRUE (' ')


SYSUID User ID in System NVARCHAR 40 FALSE FALSE


This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP.

ACCESS CONTROL 5.1 / 5.2 COMPLIANCE CALIBRATOR 5.3 RISK ANALYSIS AND REMEDIATIONENTITY RELATIONSHIP DIAGRAM RULE ARCHITECT

VIRSA_CC_RISKOWN

Risk Owner

RISKIDPK

OWNUSERPK

VIRSA_CC_RISKRS

Risk to Rule SetAssignment

RISKIDPK

RULESETIDPK

VIRSA_CC_CRPROF

Critical ProfileRisk Definition

VSYSKEYPK

PROFILEPK

RULESETIDPK

…….

VIRSA_CC_CRROLE

Critical RoleRisk Definition

VSYSKEYPK

ROLESPK

RULESETIDPK

…….

VIRSA_CC_RULESET

Rule Set Definition

PK RULESETID

VIRSA_CC_RISK

Risk Definition

RISKID

……..

PK

VIRSA_CC_RISKFUNC

Risk to FunctionRelationship

RISKIDPK

FUNCTIDPK

VIRSA_CC_FUNCACT

Function to Action Relationship

FUNCTIDPK

ACTIONSPK

VSYSKEYPK

…….

VIRSA_CC_CRPRM

Critical PermissionRisk Definition

VSYSKEYPK

TCODEPK

RISKIDPK

…….more PKsPK

VIRSA_CC_CRACT

Critical Action Risk Definition

VSYSKEYPK

TCODEPK

RISKIDPK

…….

VIRSA_CC_FUNCPRM

Function to Permission Relationship

FUNCTIDPK

ACTIONSPK

VSYSKEYPK

PK …….more PKs

VIRSA_CC_FUNC

Function Definition

FUNCTIDPK

SCOPE

VIRSA_CC_FUNCBP

Function to Business Process Relationship

FUNCTIDPK

BZPRCIDPK

VIRSA_CC_BUSPRC

Business Process

PK BZPRCID

ACCESS CONTROL 5.2 / 5.3 COMPLIANCE CALIBRATOR / RISK ANALYSIS AND REMEDIATIONENTITY RELATIONSHIP DIAGRAM MITIGATION


VIRSA_CC_BUMONITOR

Mitigation Adminstrators

JOBIDPK

…….


JOBIDPK

…….


JOBIDPK

…….

Mitigation Monitors per Business Unit

BUSIDPK

MONITORIDPK

VIRSA_CC_ADMIN


JOBIDPK

…….


JOBIDPK

…….


JOBIDPK

…….


USERIDPK

…….

…….

ORGRULEIDPK

VIRSA_CC_MITUSRORG

Mitigated Users: Organizational Level

MITREFNOPK

RISKID

USERIDPK

MONITOR ID

PK

VIRSA_CC_MITHROBJ

PK

Mitigated HR Objects

PK

…….

PK

PK

RISKID

MITREFNO

HROBJTYP

HROBJ

MONITOR ID

DESCN

VIRSA_CC_MITREFT

Mitigating Control Definition - Description

PK

PK

MITREFNO

LANG

VIRSA_CC_MITRISK

Mitigating Control Definition - Risks

PK

PK

MITREFNO

RISKID

VIRSA_CC_BUAPPVR

Mitigation AdminstratorsMitigation AdminstratorsMitigation AdminstratorsMitigation ApproversPer Business Unit

PK

APPROVERIDPK

BUSIDVIRSA_CC_ADMIN


PK

VIRSA_CC_ADMIN


PK

VIRSA_CC_ADMIN


PKPK MITREFNO

VIRSA_CC_MITMON

Mitigating Control Monitors

MONITOR IDPK

PROFILEPK

VIRSA_CC_MITPROF

Mitigated Profiles

PK

PK

…….

MITREFNO

RISKID

MONITOR ID

…….

ROLEIDPK

VIRSA_CC_MITROLE

Mitigated Roles

PK

PK

MITREFNO

RISKID

MONITOR ID

PK

PK

PK

VIRSA_CC_MITUSER

Mitigated Users

MITREFNO

…….

RISKID

USERID

MONITOR ID

PK FREQUENCY


PK

GENOBJIDPK

ACTRISKPK

GENOBJTPPK


PK

GENOBJIDPK

ACTRISKPK

GENOBJTPPK


GENOBJIDPK

ACTRISKPK

GENOBJTPPK

Mitigating Control Definition- Reports

ACTIONSPK

MONITORIDPK

VSYSKEYPK

MITREFNO

VIRSA_CC_MITRPT

APPROVERID

PK

BUSID

MITREFNO

VIRSA_CC_MITREF

Mitigating Control Definition- Header

VIRSA_CC_BUSUNIT


JOBIDPK


JOBIDPK


JOBIDPK

Business Unit

BUSIDPK


ACCESS CONTROL 5.1 / 5.2 COMPLIANCE CALIBRATOR 5.3 RISK ANALYSIS AND REMEDIATIONENTITY RELATIONSHIP DIAGRAM DESCRIPTIVE TEXT

* Table VIRSA_CC_DETDESC contains the detailed descriptions for multiple objects in RAR. The OBJECT_TYPE field distinguishes the different objects.

TEXT/DESCRIPTION TABLE

VIRSA_CC_BUSPRCT

VIRSA_CC_BUSUNITT

VIRSA_CC_CRACTT

VIRSA_CC_CRPROFT

DATA TABLE

VIRSA_CC_BUSPRC

VIRSA_CC_BUSUNIT

VIRSA_CC_CRACT

VIRSA_CC_CRPROF

VIRSA_CC_CRROLET

VIRSA_CC_DETDESC

VIRSA_CC_FUNCT

VIRSA_CC_RISKT

VIRSA_CC_RULESETT

VIRSA_CC_CRROLE

Multiple objects, all detailed or long descriptions for RAR *VIRSA_CC_FUNC

VIRSA_CC_RISK

VIRSA_CC_RULESET

Request Workflow Stage History

VIRSA_AE_RQ_HST

…….

Request Header

REQNO

VIRSA_AE_REQD_HDR

VIRSA_AE_RQD_RLPRL

Requested Roles and Profiles

ROLEPROFNAME

SYSTEM

VIRSA_AE_RQD_APL

APPLICATION

Requested Applications and Provisioning Status

PK

PK

REQNOPK REQNO

CRITICAL_LEVEL

VIRSA_AE_RQD_USERS

Request User Information

REQNOPK

USERIDPK

…….

REQNO

…….

…….

REQNOPK

VIRSA_AE_RQD_WPTRN

Status Detail for Request Stages

…….

APPROVERIDPK

STAGE_NAMEPK

REQPATHIDPK

…….

VIRSA_AE_ROLDTLS

Details of Roles and Profiles

ROLEPROFNAMEPK

ROLEPROFDESC

VIRSA_AE_ROLEAPRV

Role Approver

ROLEPROFNAME

APPROVERIDPK

PK

…….

…….

VIRSA_AE_RL_CRLVL

Role Criticality Levels

CRITICAL LEVELPK

DESCRIPTION

VIRSA_AE_DLEGAPROV

Delegation of Approval

…….

APPRVIDPK

DELEGAPPRVIDPK

ACCESS CONTROL 5.2 / 5.3ACCESS ENFORCER / COMPLIANT USER PROVISIONING

ENTITY RELATIONSHIP DIAGRAM


Ac Data Structure for Reporting

Documents

Transcript of Ac Data Structure for Reporting