Access Control Version 5.3 Data Structure for Reporting
The following data is provided to facilitate customer creation of reports for Access Control data. Entity Relationship Diagrams follow the structure information and may be used as a reference during query design. The data structure in Access Control is version specific and is subject to change. Any customer-created reports or programs using this information are not supported by SAP. The data presented here is organized by Access Control capability and does not include all tables. Requests for additional data may be submitted for consideration using CSS. Please note that (N’ ‘) in the ‘Default’ column indicates that the field default value will be based on the data type. For instance, if the field is a DATETIME field, then the default will be 1/1/1900. Compliant User Provisioning
VIRSA_AE_DLEGAPROV Delegation of Approval
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
APPRVID Original Approver's User ID NVARCHAR 40 TRUE TRUE
DELEGAPPRVID Delegated Approver's User ID NVARCHAR 40 TRUE TRUE
FRM_DT From Date DATETIME 8 FALSE FALSE
TO_DT To Date DATETIME 8 FALSE FALSE
REQ_DT Request Date DATETIME 8 FALSE FALSE
STATUS Status INT 4 FALSE FALSE (0)
VIRSA_AE_REQD_HDR Request Header
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
REQNO Request Number NVARCHAR 20 TRUE TRUE
REQDATE Request Date DATETIME 8 FALSE FALSE
REQAPPDATE Request Approval Date DATETIME 8 FALSE FALSE
REQTYPE Request Type NVARCHAR 30 FALSE FALSE
PRIORITY Priority NVARCHAR 8 FALSE FALSE
BUSSPROC Business Process NVARCHAR 40 FALSE FALSE
BUSSPROCOWNER Business Process Owner NVARCHAR 40 FALSE FALSE
BUSSPROCOWNEREMAIL Business Process Owner's Email Address NVARCHAR 100 FALSE FALSE
USERNAME User Name NVARCHAR 86 FALSE FALSE
USEREMAIL User Email Address NVARCHAR 100 FALSE FALSE
HDR_POSITION Header Position NVARCHAR 12 FALSE FALSE
ORGUNIT Organizational Unit NVARCHAR 12 FALSE FALSE
REQUESTOR Requester/Requestor NVARCHAR 101 FALSE FALSE
REQUESTOREMAIL Requestor Email Address NVARCHAR 155 FALSE FALSE
APPROVER Approver NVARCHAR 101 FALSE FALSE
APPROVEREMAIL Approver Email Address NVARCHAR 155 FALSE FALSE
JOB Job NVARCHAR 12 FALSE FALSE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 1 of 17
VIRSAg_AE_REQD_HDR CONTINUED
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
PERSONNELNO Personnel Number NVARCHAR 20 FALSE FALSE
PERSONNELAREA Personnel Area NVARCHAR 60 FALSE FALSE
LOCATION Location NVARCHAR 100 FALSE FALSE
TELEPHONE Telephone Number NVARCHAR 30 FALSE FALSE
COSTCENTER Cost Center NVARCHAR 40 FALSE FALSE
BUSSAREA Business Area NVARCHAR 4 FALSE FALSE
REQCATEGORY Request Category NVARCHAR 20 FALSE FALSE
REQREASON Request Reason NVARCHAR 20 FALSE FALSE
STATUS Status NVARCHAR 20 FALSE FALSE
COMMENTS Comment NVARCHAR 1330 FALSE FALSE
FUNCTIONALAREA Functional Area NVARCHAR 20 FALSE FALSE
PRINTER Printer NVARCHAR 200 FALSE FALSE
REQUESTJUSTIFICATN Request Justification NVARCHAR 300 FALSE FALSE
SECURETELEPHONE Secure Telephone NVARCHAR 30 FALSE FALSE
SAPUSERID SAP User ID NVARCHAR 40 FALSE FALSE
CREATORUSERID Creator User ID NVARCHAR 40 FALSE FALSE
CREATOREMAILID Creator's Email Address NVARCHAR 155 FALSE FALSE
EMPTYPE Employee Type NVARCHAR 200 FALSE FALSE
USERSTRTVALDT User Start Validity Date DATETIME 8 FALSE FALSE
USERENDVALDT User End Validity Date DATETIME 8 FALSE FALSE
ISDELETED Is Deleted Indicator NVARCHAR 1 FALSE FALSE
APPROVERID Approver User ID NVARCHAR 40 FALSE FALSE
REQUESTORID Requestor User ID NVARCHAR 40 FALSE FALSE
USERID User ID NVARCHAR 40 FALSE FALSE
COMPANY Company NVARCHAR 42 FALSE FALSE
WFTYPE Workflow Type NVARCHAR 10 FALSE TRUE ('AE')
DEPARTMENT Department NVARCHAR 100 FALSE FALSE (' ')
COMMENTSNEW Comments NTEXT 16 FALSE FALSE
COMPLETIONDATE Completion Date DATETIME 8 FALSE FALSE
BGJOBID Background Job ID NVARCHAR 50 FALSE FALSE
REQNO_NUM Request Number BIGINT 8 FALSE TRUE (0)
VIRSA_AE_RL_CRLVL Role Criticality Levels
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
CRITICAL_LEVEL Criticality Level NVARCHAR 15 TRUE TRUE
DESCRIPTION Description NVARCHAR 60 FALSE TRUE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 2 of 17
VIRSA_AE_ROLDTLS Details of Roles and Profiles
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
ROLEPROFNAME Role/Profile Name NVARCHAR 40 TRUE TRUE
ROLEPROFDESC Role/Profile Description NVARCHAR 100 FALSE FALSE
BUSSPROC Business Process NVARCHAR 40 FALSE FALSE
SUBPROC Sub-business Process NVARCHAR 40 FALSE FALSE
REAFFIRM_PERIOD Reaffirm Period INT 4 FALSE FALSE (0)
LST_REAFF_DT Last Reaffirm Date DATETIME 8 FALSE FALSE
ROLEPROFINDICATOR Role/Profile Indicator NVARCHAR 1 FALSE FALSE
DETAIL_DESC Detailed Description NVARCHAR 600 FALSE FALSE
ROLEPROFTYPE Role/Profile Type NVARCHAR 10 FALSE FALSE
CRITICAL_LEVEL Criticality Level NVARCHAR 20 FALSE FALSE
PROF_GEN_URL Profile Generator URL NVARCHAR 600 FALSE FALSE
PROF_GEN_BAPI Profile Generator BAPI NVARCHAR 60 FALSE FALSE
ID FIELD IS OBSOLETE NVARCHAR 40 FALSE FALSE (' ')
RESP_ID FIELD IS OBSOLETE NTEXT 16 FALSE FALSE
RSPB_ID FIELD IS OBSOLETE INT 4 FALSE FALSE (0)
COMMENTS_MANDATORY Comments Mandatory Indicator NVARCHAR 4 FALSE FALSE (' ')
PARENTROLE_OWNER Owner of the Parent Role NVARCHAR 4 FALSE FALSE (' ')
ROLEPROFDISPNAME Role/Profile Display Name NVARCHAR 255 FALSE TRUE
ROLEPROFNAME_CS Role/Profile Character String for Searches NVARCHAR 255 FALSE TRUE
CONTYPE Connector Type NVARCHAR 20 FALSE TRUE
VIRSA_AE_ROLEAPRV Role Approver
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
ROLEPROFNAME Role/Profile Name NVARCHAR 40 TRUE TRUE
APPROVERID Approver's User ID NVARCHAR 40 TRUE TRUE
APPROVERTYPE Approver’s Type INT 4 TRUE TRUE (1)
ALTAPPROVERID Alternate Approver's User ID NVARCHAR 40 FALSE FALSE
ISLEAD Is Lead Indicator NVARCHAR 10 FALSE FALSE
ALTAPPROVERTYPE Alternate Approver’s Type INT 4 FALSE FALSE (1)
VIRSA_AE_RQD_APL Application of the request with status of provisioning
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
REQNO Request Number NVARCHAR 20 TRUE TRUE
APPLICATION Application NVARCHAR 60 TRUE TRUE
APPROVAL_STATUS Approval Status NVARCHAR 20 FALSE FALSE
VALID_FROM Valid From Date DATETIME 8 FALSE FALSE
VALID_TO Valid To Date DATETIME 8 FALSE FALSE
ISPROVISIONED Is Provisioned Indicator INT 4 FALSE TRUE (0)
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 3 of 17
VIRSA_AE_RQD_RLPRL Request Role/Profile Data
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
REQNO Request Number NVARCHAR 20 FALSE TRUE
SYSTEM System NVARCHAR 20 FALSE TRUE
ROLEPROFNAME Role/Profile Name NVARCHAR 40 FALSE TRUE
COMPANY Company NVARCHAR 42 FALSE FALSE
APPROVAL_STATUS Approval Status NVARCHAR 20 FALSE FALSE
DTVALIDFROM FIELD IS OBSOLETE N/A 8 N/A N/A
DTVALIDTO FIELD IS OBSOLETE N/A 8 N/A N/A
ACTIONFLAG Action Flag NVARCHAR 50 FALSE FALSE
RLPRL_PATH Path Identifier NVARCHAR 20 FALSE FALSE
ADDTNL_COMMENTS Approver’s Additional Comments NVARCHAR 1200 FALSE FALSE
ROLEINDEX Role Index INT 4 FALSE FALSE (0)
ISPROVISIONED Is Provisioned Indicator INT 4 FALSE FALSE (0)
TSDTVALIDFROM Date Valid From DATETIME 8 FALSE FALSE
TSDTVALIDTO Date Valid To DATETIME 8 FALSE FALSE
VIRSA_AE_RQD_USERS Request User Information
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
REQNO Request Number NVARCHAR 20 TRUE TRUE
USERID User ID NVARCHAR 40 TRUE TRUE (' ')
EMAILID Email Address NVARCHAR 255 FALSE TRUE (' ')
FNAME First Name NVARCHAR 50 FALSE FALSE
LNAME Last Name NVARCHAR 50 FALSE FALSE
TELEPHONE Telephone Number NVARCHAR 30 FALSE FALSE
SAPUSERID SAP User ID NVARCHAR 40 FALSE FALSE SNC_NAME SNC Name NVARCHAR 255 FALSE FALSE (' ')
UNSEC_SNC Unsecured Logon Allowed Indicator INT 4 FALSE FALSE (0)
VIRSA_AE_RQD_WPTRN Status detail for request stages
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
REQNO Request Number NVARCHAR 20 TRUE TRUE (' ')
REQPATHID Request Path NVARCHAR 20 TRUE TRUE (' ')
STAGE_NAME Stage Name NVARCHAR 15 TRUE TRUE (' ')
APPROVERID Approver's User ID NVARCHAR 40 TRUE TRUE
APPROVERTYPE Approver’s Type INT 4 TRUE TRUE (1)
STATUS Status NVARCHAR 20 FALSE TRUE
LASTUPDATE Last Update DATETIME 8 FALSE TRUE
ALTAPPROVER Alternate Approver's User ID NVARCHAR 40 FALSE FALSE (' ')
ALTAPPROVERTYPE Alternate Approver’s Type INT 4 FALSE FALSE (1)
LASTREMINDERDATE Date of Last Reminder DATETIME 8 FALSE FALSE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 4 of 17
VIRSA_AE_RQ_HST Request Workflow Stage History
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
REQNO Request Number NVARCHAR 20 FALSE TRUE
HST_ACTION Host Action NVARCHAR 40 FALSE TRUE (' ')
ACTIONDATE Action Date DATETIME 8 FALSE TRUE
USERID User ID NVARCHAR 100 FALSE TRUE
ACTION_VALUE Action Value NVARCHAR 200 FALSE FALSE (' ')
DESCRIPTION Description NVARCHAR 200 FALSE FALSE (' ')
PATHNAME Path Name NVARCHAR 100 FALSE FALSE (' ')
STAGE_NAME Stage Name NVARCHAR 100 FALSE FALSE (' ')
ID ID BIGINT 8 FALSE FALSE (0)
DEPENDENT_ID Dependent ID BIGINT 8 FALSE FALSE (0)
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 5 of 17
Risk Analysis and Remediation
VIRSA_CC_ACTVL Offline Analysis - Action Level SoD Violations (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
JOBID Job ID INT 4 TRUE TRUE
GENOBJID Generic Object ID (User, Role, Profile) NVARCHAR 50 TRUE TRUE
GENOBJTP Generic Object Type INT 4 TRUE TRUE
ACTRISK Action Level Rule ID NVARCHAR 7 TRUE TRUE (' ')
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
ACTIONS Actions NVARCHAR 50 TRUE TRUE (' ')
ROLES Roles NVARCHAR 49 TRUE TRUE
MITREFNO Mitigation Reference Number NVARCHAR 10 FALSE FALSE
MONITORID Monitor ID NVARCHAR 12 FALSE FALSE
RUNDATE Run Date DATETIME 8 FALSE FALSE
RUNTIME Run Time DATETIME 8 FALSE FALSE
RISKID Risk ID NVARCHAR 4 FALSE TRUE (' ')
XVSYSKEY System NVARCHAR 10 FALSE FALSE (' ')
VIRSA_CC_ADMIN Mitigation Administrators (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
USERID User ID NVARCHAR 12 TRUE TRUE
NAME Name NVARCHAR 80 FALSE FALSE
EMAILID Email Address NVARCHAR 100 FALSE FALSE (' ')
ROLEID Role ID NVARCHAR 1 FALSE TRUE
VIRSA_CC_BUAPPVR Mitigation Approvers per Business Unit (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
BUSID Business Unit ID NVARCHAR 4 TRUE TRUE
APPROVERID Approver’s User ID NVARCHAR 12 TRUE TRUE
VIRSA_CC_BUMONITOR Mitigation Monitors per Business Unit (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
BUSID Business Unit ID NVARCHAR 4 TRUE TRUE
MONITORID Monitor’s User ID NVARCHAR 12 TRUE TRUE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 6 of 17
VIRSA_CC_BUSPRCT Business Process Text (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
BZPRCID Business Process ID NVARCHAR 4 TRUE TRUE (' ')
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE FALSE
VIRSA_CC_BUSUNITT Business Unit Text (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
BUSID Business Unit ID NVARCHAR 4 TRUE TRUE
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE FALSE
VIRSA_CC_CRACT Critical Action Risk Definition (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
TCODE Transaction/Action NVARCHAR 50 TRUE TRUE (' ')
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
RISKLEVEL Risk Level INT 4 FALSE TRUE
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_CRACTT Critical Action Risk Definition Texts (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
TCODE Transaction/Action NVARCHAR 50 TRUE TRUE (' ')
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE TRUE
VIRSA_CC_CRACTVL Offline Analysis -Critical Action Violations (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
JOBID Job ID INT 4 TRUE TRUE
USERID User ID NVARCHAR 40 TRUE TRUE (' ')
CRACTION Critical Action NVARCHAR 50 TRUE TRUE (' ')
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
CRACTRISK Critical Action Risk NVARCHAR 4 TRUE TRUE
ROLES Roles NVARCHAR 50 TRUE TRUE
RUNDATE Run Date DATETIME 8 FALSE FALSE
RUNTIME Run Time DATETIME 8 FALSE FALSE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 7 of 17
VIRSA_CC_CRPRM Critical Permission Risk Definition (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
TCODE Transaction/Action NVARCHAR 50 TRUE TRUE (' ')
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
AUTHKEY Authorization Key INT 4 TRUE TRUE
AUTHSEQ Authorization Sequence INT 4 TRUE TRUE (0)
FROMVAL From Value NVARCHAR 50 TRUE TRUE
TOVAL To Value NVARCHAR 50 TRUE TRUE
SEARCHTYPE Search Type NVARCHAR 3 TRUE TRUE ('AND')
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_CRPRMVL Offline Analysis -Critical Permission Violations (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
JOBID Job ID INT 4 TRUE TRUE
GENOBJID Generic Object ID (User, Role, Profile) NVARCHAR 50 TRUE TRUE
GENOBJTP Generic Object Type INT 4 TRUE TRUE
PRMRISK Permission Risk NVARCHAR 9 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
PRMTYPE Permission Type NVARCHAR 3 TRUE TRUE
PERMISSION Permission NVARCHAR 100 TRUE TRUE
FROMVAL From Value NVARCHAR 50 TRUE TRUE
TOVAL To Value NVARCHAR 50 TRUE TRUE
ROLES Roles NVARCHAR 49 TRUE TRUE
MITREFNO Mitigation Reference Number NVARCHAR 10 FALSE FALSE
MONITORID Monitor ID NVARCHAR 12 FALSE FALSE
RUNDATE Run Date DATETIME 8 FALSE FALSE
RUNTIME Run Time DATETIME 8 FALSE FALSE
RISKID Risk ID NVARCHAR 4 FALSE TRUE (' ')
VIRSA_CC_CRPROF Critical Profile Risk Definition (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
PROFILE Profile NVARCHAR 50 TRUE TRUE
RULESETID Rule Set ID NVARCHAR 8 TRUE TRUE
RISKLEVEL Risk Level INT 4 FALSE TRUE
STATUS Status INT 4 FALSE TRUE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 8 of 17
VIRSA_CC_CRPROFT Critical Profile Text (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
PROFILE Profile NVARCHAR 50 TRUE TRUE
RULESETID Rule Set ID NVARCHAR 8 TRUE TRUE
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE FALSE
VIRSA_CC_CRROLE Critical Role Risk Definition (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
ROLES Roles NVARCHAR 49 TRUE TRUE
RULESETID Rule Set ID NVARCHAR 8 TRUE TRUE
RISKLEVEL Risk Level INT 4 FALSE TRUE
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_CRROLET Critical Role Text (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
ROLES Roles NVARCHAR 49 TRUE TRUE
RULESETID Rule Set ID NVARCHAR 8 TRUE TRUE
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE FALSE
VIRSA_CC_CRROLEVL Offline Analysis -Critical Role Violations (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
JOBID Job ID INT 4 TRUE TRUE
USERID User ID NVARCHAR 40 TRUE TRUE (' ')
CRROLE Critical Role NVARCHAR 49 TRUE TRUE
CROBJTP Critical Object Type INT 4 TRUE TRUE (0)
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
RUNDATE Run Date DATETIME 8 FALSE FALSE
RUNTIME Run Time DATETIME 8 FALSE FALSE
VIRSA_CC_DETDESC Detailed Descriptions (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
OBJECT_TYPE Object Type NVARCHAR 3 TRUE TRUE
OBJECT_ID Object ID NVARCHAR 80 TRUE TRUE
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DETAIL_DESCN Detailed Description NTEXT 16 FALSE FALSE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 9 of 17
VIRSA_CC_FUNC Function Definition (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
FUNCTID Function ID NVARCHAR 8 TRUE TRUE
SCOPE Scope of Function NVARCHAR 1 FALSE TRUE ('C')
VIRSA_CC_FUNCACT Function to Action Relationship (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
FUNCTID Function ID NVARCHAR 8 TRUE TRUE
ACTIONS Actions NVARCHAR 50 TRUE TRUE (' ')
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_FUNCBP Function to Business Process Assignment (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
FUNCTID Function ID NVARCHAR 8 TRUE TRUE
BZPRCID Business Process ID NVARCHAR 4 TRUE TRUE (' ')
VIRSA_CC_FUNCPRM Function to Permission Relationship (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
FUNCTID Function ID NVARCHAR 8 TRUE TRUE
ACTIONS Actions NVARCHAR 50 TRUE TRUE (' ')
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
AUTHTREE Authorization Tree/Permission NVARCHAR 100 TRUE TRUE
FROMVAL From Value NVARCHAR 50 TRUE TRUE
TOVAL To Value NVARCHAR 50 TRUE TRUE
SEARCHTYPE Search Type (Operator) NVARCHAR 3 TRUE TRUE ('AND')
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_FUNCT Function Description (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
FUNCTID Function ID NVARCHAR 8 TRUE TRUE
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE FALSE
VIRSA_CC_MGALERTS Management Reports – Alerts (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
YEARMONTH Year Month NVARCHAR 6 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
ALERTTYPE Alert Type NVARCHAR 1 TRUE TRUE
BZPRCID Business Process ID NVARCHAR 4 TRUE TRUE (' ')
ALERTCOUNT Alert Count INT 4 FALSE FALSE (0)
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 10 of 17
VIRSA_CC_MGCRTR Management Reports - Critical Actions (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
ANLTYPE Analysis Type INT 4 TRUE TRUE
USERGROUP User Group NVARCHAR 20 TRUE TRUE
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
CRCOUNT Critical Risk Count INT 4 TRUE TRUE (0)
USERID User ID NVARCHAR 50 TRUE TRUE
VIRSA_CC_MGMTBU Management Reports - Summary by Business Process (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
YEARMONTH Year Month NVARCHAR 6 TRUE TRUE
VIOLTYPE Violation Type NVARCHAR 15 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
ANLTYPE Analysis Type INT 4 TRUE TRUE
USERGROUP User Group NVARCHAR 20 TRUE TRUE
BZPRCID Business Process ID NVARCHAR 4 TRUE TRUE (' ')
RISKCOUNT Risk Count INT 4 FALSE FALSE (0)
VIRSA_CC_MGMTTOT Management Reports - Totals (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
YEARMONTH Year Month NVARCHAR 6 TRUE TRUE
VIOLTYPE Violation Type NVARCHAR 15 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
ANLTYPE Analysis Type INT 4 TRUE TRUE
USERGROUP User Group NVARCHAR 20 TRUE TRUE
TOTCOUNT Total Count of Violations BIGINT 8 FALSE FALSE (0)
TOTUSER Total Users Analyzed INT 4 FALSE FALSE (0)
RISKLOW Number of Risks - Low BIGINT 8 FALSE TRUE (0)
RISKMED Number of Risks - Medium BIGINT 8 FALSE TRUE (0)
RISKHIGH Number of Risks - High BIGINT 8 FALSE FALSE (0)
RISKCRT Number of Risks - Critical BIGINT 8 FALSE FALSE (0)
URNONE Users with No Risks BIGINT 8 FALSE FALSE (0)
URLOW Users with Low Risks BIGINT 8 FALSE FALSE (0)
URMED Users with Medium Risks BIGINT 8 FALSE FALSE (0)
URHIGH Users with High Risks BIGINT 8 FALSE FALSE (0)
URCRT Users with Critical Risks BIGINT 8 FALSE FALSE (0)
URMIT Users with Mitigated Risks BIGINT 8 FALSE FALSE (0)
TOTCRTCD Total Critical T-Codes/Actions BIGINT 8 FALSE FALSE (0)
CRTCD Users with Critical Actions BIGINT 8 FALSE FALSE
TOTCRROLE Total Critical Roles/Profiles BIGINT 8 FALSE FALSE (0)
CRROLE Users with Critical Roles/Profiles BIGINT 8 FALSE FALSE (0)
RUNDATE Run Date DATETIME 8 FALSE FALSE
RUNTIME Run Time DATETIME 8 FALSE FALSE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 11 of 17
VIRSA_CC_MGRISKD Management Reports - Detailed Risks (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
USERROLE User/Role NVARCHAR 50 TRUE TRUE
ANLTYPE Analysis Type INT 4 TRUE TRUE
USERGROUP User Group NVARCHAR 20 TRUE TRUE
RISKID Risk ID NVARCHAR 4 TRUE TRUE
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
MONITORID Monitor ID NVARCHAR 12 TRUE TRUE
RISKLEVEL Risk Level INT 4 FALSE TRUE
RISKCOUNT Risk Count INT 4 FALSE FALSE (0)
BZPRCID Business Process ID NVARCHAR 4 FALSE FALSE
VIRSA_CC_MGRISKS Management Reports - Violations by Risk (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
YEARMONTH Year Month NVARCHAR 6 TRUE TRUE
VIOLTYPE Violation Type NVARCHAR 15 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
ANLTYPE Analysis Type INT 4 TRUE TRUE
USERGROUP User Group NVARCHAR 20 TRUE TRUE
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
BZPRCID Business Process ID NVARCHAR 4 FALSE FALSE
RISKLEVEL Risk Level INT 4 FALSE TRUE
RISKCOUNT Risk Count INT 4 FALSE TRUE (0)
VIRSA_CC_MITHROBJ Mitigated HR Objects (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
RISKID Risk ID NVARCHAR 9 TRUE TRUE
HROBJ HR Object NVARCHAR 8 TRUE TRUE
HROBJTYP HR Object Type NVARCHAR 1 TRUE TRUE
VALIDFROM Valid From Date DATETIME 8 FALSE TRUE
VALIDTO Valid To Date DATETIME 8 FALSE TRUE
MONITORID Monitor ID NVARCHAR 12 FALSE TRUE
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_MITMON Mitigating Control Monitors (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
MONITORID Monitor ID NVARCHAR 12 TRUE TRUE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 12 of 17
VIRSA_CC_MITPROF Mitigated Profiles (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
RISKID Risk ID NVARCHAR 9 TRUE TRUE
PROFILE Profile NVARCHAR 50 TRUE TRUE
VALIDFROM Valid From Date DATETIME 8 FALSE TRUE
VALIDTO Valid To Date DATETIME 8 FALSE TRUE
MONITORID Monitor ID NVARCHAR 12 FALSE TRUE
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_MITREF Mitigating Control Definition - Header (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
BUSID Business Process ID NVARCHAR 4 FALSE TRUE
APPROVERID Approver ID NVARCHAR 12 FALSE TRUE
VIRSA_CC_MITREFT Mitigating Control Definition - Description (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE FALSE
VIRSA_CC_MITRISK Mitigating Control Definition - Risks (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
RISKID Risk ID NVARCHAR 9 TRUE TRUE
VIRSA_CC_MITROLE Mitigated Roles (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
RISKID Risk ID NVARCHAR 9 TRUE TRUE
ROLEID Role ID NVARCHAR 50 TRUE TRUE
VALIDFROM Valid From Date DATETIME 8 FALSE TRUE
VALIDTO Valid To Date DATETIME 8 FALSE TRUE
MONITORID Monitor ID NVARCHAR 12 FALSE TRUE
STATUS Status INT 4 FALSE TRUE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 13 of 17
VIRSA_CC_MITRPT Mitigating Control Definition - Reports (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
ACTIONS Actions NVARCHAR 50 TRUE TRUE (' ')
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
MONITORID Monitor ID NVARCHAR 12 TRUE TRUE
FREQUENCY Frequency INT 4 FALSE TRUE
VIRSA_CC_MITUSER Mitigated Users (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
RISKID Risk ID NVARCHAR 9 TRUE TRUE
USERID User ID NVARCHAR 50 TRUE TRUE
VALIDFROM Valid From Date DATETIME 8 FALSE TRUE
VALIDTO Valid To Date DATETIME 8 FALSE TRUE
MONITORID Monitor ID NVARCHAR 12 FALSE TRUE
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_MITUSRORG Mitigated Users: Organizational Level (Mitigation)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MITREFNO Mitigation Reference Number NVARCHAR 10 TRUE TRUE
RISKID Risk ID NVARCHAR 9 TRUE TRUE
USERID User ID NVARCHAR 50 TRUE TRUE
ORGRULEID Organizational Rule ID NVARCHAR 10 TRUE TRUE
VALIDFROM Valid From Date DATETIME 8 FALSE TRUE
VALIDTO Valid To Date DATETIME 8 FALSE TRUE
MONITORID Monitor ID NVARCHAR 12 FALSE TRUE
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_PRMVL Offline Analysis - Permission Level Violations (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
JOBID Job ID INT 4 TRUE TRUE
GENOBJID Generic Object ID (User, Role, Profile) NVARCHAR 50 TRUE TRUE
GENOBJTP Generic Object Type INT 4 TRUE TRUE
PRMRISK Permission Risk NVARCHAR 9 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
PRMTYPE Permission Type NVARCHAR 3 TRUE TRUE
PERMISSION Permission NVARCHAR 100 TRUE TRUE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 14 of 17
VIRSA_CC_PRMVL Continued
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
FROMVAL From Value NVARCHAR 50 TRUE TRUE
TOVAL To Value NVARCHAR 50 TRUE TRUE
ROLES Roles NVARCHAR 49 TRUE TRUE
MITREFNO Mitigation Reference Number NVARCHAR 10 FALSE FALSE
MONITORID Monitor ID NVARCHAR 12 FALSE FALSE
RUNDATE Run Date DATETIME 8 FALSE FALSE
RUNTIME Run Time DATETIME 8 FALSE FALSE
RISKID Risk ID NVARCHAR 4 FALSE TRUE (' ')
XVSYSKEY System NVARCHAR 10 FALSE FALSE (' ')
ORGRULEID Organizational Rule ID NVARCHAR 10 FALSE FALSE (' ')
FUNCTID Function ID NVARCHAR 8 FALSE FALSE (' ')
VIRSA_CC_RISK Risk Definition (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
RISKLEVEL Risk Level INT 4 FALSE TRUE
STATUS Status INT 4 FALSE TRUE
BZPRCID Business Process ID NVARCHAR 4 FALSE TRUE (' ')
UPDDATE Updated Date DATETIME 8 FALSE TRUE
UPDTIME Updated Time DATETIME 8 FALSE TRUE
UPDUSER Updated User NVARCHAR 40 FALSE FALSE
ACTGEN Action Level Generation Indicator NVARCHAR 1 FALSE FALSE
PRMGEN Permission Level Generation Indicator NVARCHAR 1 FALSE FALSE
RISKTYPE Risk Type NVARCHAR 1 FALSE FALSE ('1')
FUNCRISK Function Level Risk Indicator NVARCHAR 1 FALSE FALSE
VIRSA_CC_RISKFUNC Risk to Function Relationship (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
FUNCTID Function ID NVARCHAR 8 TRUE TRUE
VIRSA_CC_RISKOWN Risk Owner (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
OWNUSER Own User NVARCHAR 40 TRUE TRUE (' ')
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 15 of 17
VIRSA_CC_RISKRS Risk to Rule Set Assignment (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
RULESETID Rule Set ID NVARCHAR 8 TRUE TRUE
VIRSA_CC_RISKT Risk Texts (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
RISKID Risk ID NVARCHAR 4 TRUE TRUE (' ')
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE FALSE
VIRSA_CC_ROLEVL Offline Analysis - Role Violations (Informer)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
JOBID Job ID INT 4 TRUE TRUE
ROLES Roles NVARCHAR 49 TRUE TRUE
PRMRISK Permission Risk NVARCHAR 9 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
PRMTYPE Permission Type NVARCHAR 3 TRUE TRUE
PERMISSION Permission NVARCHAR 30 TRUE TRUE
FROMVAL From Value NVARCHAR 50 TRUE TRUE
TOVAL To Value NVARCHAR 50 TRUE TRUE
MITREFNO Mitigation Reference Number NVARCHAR 10 FALSE FALSE
MONITORID Monitor ID NVARCHAR 12 FALSE FALSE
RUNDATE Run Date DATETIME 8 FALSE FALSE
RUNTIME Run Time DATETIME 8 FALSE FALSE
VIRSA_CC_RULESET Rule Set Definition (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
RULESETID Rule Set ID NVARCHAR 8 TRUE TRUE
VIRSA_CC_RULESETT Rule Set Text (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
RULESETID Rule Set ID NVARCHAR 8 TRUE TRUE
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE FALSE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 16 of 17
VIRSA_CC_SUPP_DET Supplementary Rule Details (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
FUNCTID Function ID NVARCHAR 8 TRUE TRUE
RULEID Rule ID NVARCHAR 9 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
TABNAME Table Name NVARCHAR 50 TRUE TRUE
FIELDNAME Field Name NVARCHAR 50 TRUE TRUE
FIELDVALUE Field Value NVARCHAR 132 TRUE TRUE
VIRSA_CC_SUPP_HDR Supplementary Rule Header (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
FUNCTID Function ID NVARCHAR 8 TRUE TRUE
RULEID Rule ID NVARCHAR 9 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
TABNAME Table Name NVARCHAR 50 TRUE TRUE
CHECKFIELD Check Field NVARCHAR 50 FALSE TRUE
EXCLUSION Exclusion Indicator NVARCHAR 1 FALSE FALSE
STATUS Status INT 4 FALSE TRUE
VIRSA_CC_SUPP_TEXT Supplementary Rule Text (Rule Architect)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
FUNCTID Function ID NVARCHAR 8 TRUE TRUE
RULEID Rule ID NVARCHAR 9 TRUE TRUE
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
TABNAME Table Name NVARCHAR 50 TRUE TRUE
LANG Language NVARCHAR 2 TRUE TRUE (' ')
DESCN Description NVARCHAR 132 FALSE FALSE
VIRSA_CC_USRMAP User Map (Configuration)
FIELD NAME DESCRIPTION TYPE LENGTH KEY REQUIRED DEFAULT
MASTERID Master ID NVARCHAR 40 TRUE TRUE (' ')
VSYSKEY System NVARCHAR 10 TRUE TRUE (' ')
SYSUID User ID in System NVARCHAR 40 FALSE FALSE
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP. Page 17 of 17
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP.
ACCESS CONTROL 5.1 / 5.2 COMPLIANCE CALIBRATOR 5.3 RISK ANALYSIS AND REMEDIATIONENTITY RELATIONSHIP DIAGRAM RULE ARCHITECT
VIRSA_CC_RISKOWN
Risk Owner
RISKIDPK
OWNUSERPK
VIRSA_CC_RISKRS
Risk to Rule SetAssignment
RISKIDPK
RULESETIDPK
VIRSA_CC_CRPROF
Critical ProfileRisk Definition
VSYSKEYPK
PROFILEPK
RULESETIDPK
…….
VIRSA_CC_CRROLE
Critical RoleRisk Definition
VSYSKEYPK
ROLESPK
RULESETIDPK
…….
VIRSA_CC_RULESET
Rule Set Definition
PK RULESETID
VIRSA_CC_RISK
Risk Definition
RISKID
……..
PK
VIRSA_CC_RISKFUNC
Risk to FunctionRelationship
RISKIDPK
FUNCTIDPK
VIRSA_CC_FUNCACT
Function to Action Relationship
FUNCTIDPK
ACTIONSPK
VSYSKEYPK
…….
VIRSA_CC_CRPRM
Critical PermissionRisk Definition
VSYSKEYPK
TCODEPK
RISKIDPK
…….more PKsPK
VIRSA_CC_CRACT
Critical Action Risk Definition
VSYSKEYPK
TCODEPK
RISKIDPK
…….
VIRSA_CC_FUNCPRM
Function to Permission Relationship
FUNCTIDPK
ACTIONSPK
VSYSKEYPK
PK …….more PKs
VIRSA_CC_FUNC
Function Definition
FUNCTIDPK
SCOPE
VIRSA_CC_FUNCBP
Function to Business Process Relationship
FUNCTIDPK
BZPRCIDPK
VIRSA_CC_BUSPRC
Business Process
PK BZPRCID
ACCESS CONTROL 5.2 / 5.3 COMPLIANCE CALIBRATOR / RISK ANALYSIS AND REMEDIATIONENTITY RELATIONSHIP DIAGRAM MITIGATION
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP.
VIRSA_CC_BUMONITOR
Mitigation Adminstrators
JOBIDPK
…….
Mitigation Adminstrators
JOBIDPK
…….
Mitigation Adminstrators
JOBIDPK
…….
Mitigation Monitors per Business Unit
BUSIDPK
MONITORIDPK
VIRSA_CC_ADMIN
Mitigation Adminstrators
JOBIDPK
…….
Mitigation Adminstrators
JOBIDPK
…….
Mitigation Adminstrators
JOBIDPK
…….
Mitigation Adminstrators
USERIDPK
…….
…….
ORGRULEIDPK
VIRSA_CC_MITUSRORG
Mitigated Users: Organizational Level
MITREFNOPK
RISKID
USERIDPK
MONITOR ID
PK
VIRSA_CC_MITHROBJ
PK
Mitigated HR Objects
PK
…….
PK
PK
RISKID
MITREFNO
HROBJTYP
HROBJ
MONITOR ID
DESCN
VIRSA_CC_MITREFT
Mitigating Control Definition - Description
PK
PK
MITREFNO
LANG
VIRSA_CC_MITRISK
Mitigating Control Definition - Risks
PK
PK
MITREFNO
RISKID
VIRSA_CC_BUAPPVR
Mitigation AdminstratorsMitigation AdminstratorsMitigation AdminstratorsMitigation ApproversPer Business Unit
PK
APPROVERIDPK
BUSIDVIRSA_CC_ADMIN
Mitigation Adminstrators
PK
VIRSA_CC_ADMIN
Mitigation Adminstrators
PK
VIRSA_CC_ADMIN
Mitigation Adminstrators
PKPK MITREFNO
VIRSA_CC_MITMON
Mitigating Control Monitors
MONITOR IDPK
PROFILEPK
VIRSA_CC_MITPROF
Mitigated Profiles
PK
PK
…….
MITREFNO
RISKID
MONITOR ID
…….
ROLEIDPK
VIRSA_CC_MITROLE
Mitigated Roles
PK
PK
MITREFNO
RISKID
MONITOR ID
PK
PK
PK
VIRSA_CC_MITUSER
Mitigated Users
MITREFNO
…….
RISKID
USERID
MONITOR ID
PK FREQUENCY
Mitigation Adminstrators
PK
GENOBJIDPK
ACTRISKPK
GENOBJTPPK
Mitigation Adminstrators
PK
GENOBJIDPK
ACTRISKPK
GENOBJTPPK
Mitigation Adminstrators
GENOBJIDPK
ACTRISKPK
GENOBJTPPK
Mitigating Control Definition- Reports
ACTIONSPK
MONITORIDPK
VSYSKEYPK
MITREFNO
VIRSA_CC_MITRPT
APPROVERID
PK
BUSID
MITREFNO
VIRSA_CC_MITREF
Mitigating Control Definition- Header
VIRSA_CC_BUSUNIT
Mitigation Adminstrators
JOBIDPK
Mitigation Adminstrators
JOBIDPK
Mitigation Adminstrators
JOBIDPK
Business Unit
BUSIDPK
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP.
ACCESS CONTROL 5.1 / 5.2 COMPLIANCE CALIBRATOR 5.3 RISK ANALYSIS AND REMEDIATIONENTITY RELATIONSHIP DIAGRAM DESCRIPTIVE TEXT
* Table VIRSA_CC_DETDESC contains the detailed descriptions for multiple objects in RAR. The OBJECT_TYPE field distinguishes the different objects.
TEXT/DESCRIPTION TABLE
VIRSA_CC_BUSPRCT
VIRSA_CC_BUSUNITT
VIRSA_CC_CRACTT
VIRSA_CC_CRPROFT
DATA TABLE
VIRSA_CC_BUSPRC
VIRSA_CC_BUSUNIT
VIRSA_CC_CRACT
VIRSA_CC_CRPROF
VIRSA_CC_CRROLET
VIRSA_CC_DETDESC
VIRSA_CC_FUNCT
VIRSA_CC_RISKT
VIRSA_CC_RULESETT
VIRSA_CC_CRROLE
Multiple objects, all detailed or long descriptions for RAR *VIRSA_CC_FUNC
VIRSA_CC_RISK
VIRSA_CC_RULESET
Request Workflow Stage History
VIRSA_AE_RQ_HST
…….
Request Header
REQNO
VIRSA_AE_REQD_HDR
VIRSA_AE_RQD_RLPRL
Requested Roles and Profiles
ROLEPROFNAME
SYSTEM
VIRSA_AE_RQD_APL
APPLICATION
Requested Applications and Provisioning Status
PK
PK
REQNOPK REQNO
CRITICAL_LEVEL
VIRSA_AE_RQD_USERS
Request User Information
REQNOPK
USERIDPK
…….
REQNO
…….
…….
REQNOPK
VIRSA_AE_RQD_WPTRN
Status Detail for Request Stages
…….
APPROVERIDPK
STAGE_NAMEPK
REQPATHIDPK
…….
VIRSA_AE_ROLDTLS
Details of Roles and Profiles
ROLEPROFNAMEPK
ROLEPROFDESC
VIRSA_AE_ROLEAPRV
Role Approver
ROLEPROFNAME
APPROVERIDPK
PK
…….
…….
VIRSA_AE_RL_CRLVL
Role Criticality Levels
CRITICAL LEVELPK
DESCRIPTION
VIRSA_AE_DLEGAPROV
Delegation of Approval
…….
APPRVIDPK
DELEGAPPRVIDPK
ACCESS CONTROL 5.2 / 5.3ACCESS ENFORCER / COMPLIANT USER PROVISIONING
ENTITY RELATIONSHIP DIAGRAM
This document contains SAP Confidential Information and is being provided to you for the sole and exclusive purpose of enabling you to create your own reports from data generated by your use of SAP’s Access Control software. Your use of this SAP Confidential Information is governed by the terms and conditions contained in the software license agreement between you and SAP.