You can analyze the setup of rules to separate tasks that must be performed by different users. This concept is named segregation of duties. For example, you might not want the same person both to acknowledge the receipt of goods and to process payment to the vendor. Segregation of duties helps you reduce the risk of fraud, and it also helps you detect errors or irregularities. You can also use segregation of duties to enforce internal control policies.
|1.||Click Security audit.|
|2.||Sub-task: Analyze rules and conflicts.|
|2.1||Click the Segregation of duties rules tab.|
|2.2||In the list, find and select the desired record.|
|2.3||On the Conflicts pane, you can review the segregation of duties conflicts for the selected rule. You can, for example, review if a conflict is already solved or what resolution is chosen.|
|3.||Sub-task: Analyze charts.|
|4.||Click the Charts tab.|
Note: The SOD rules and conflicts (Resolved/Unresolved) chart shows the total number of:
|5.||Click the Compliant versus incompliant roles and users tab.|
Note: This chart shows the number of users and roles that are compliant or incompliant with the segregation of duties rules.
Audit segregation of duties