Configure your organization in F&O - Plant and Implement Security (Section 3) Flashcards
Types of Securities?
Role
Duty
Privilege
Permission
Role based security?
Aligned with the structure of business. Users are assigned to security roles based on their responsibilities.
Where can you assign roles to users?
System Admin -> Security
-> Assign users to roles
Duties?
Correspond to parts of a business process
Privileges?
Can be assigned directly to roles.
Specifies the level of access that is required to perform a job, solve a problem, or complete an assignment.
Permissions?
Represent access to individual securable objects, such as menu items and tables.
Segregation of duties?
Set up rules to separate tasks that must be performed by different users,
What does Segregation of Duties do?
Helps reduce the risk of fraud, helps detect errors or irregularities
Regulatory requirements list?
Sarbanes-Oxley (SOX)
International Financial Reporting Standards (IFRS)
United States Food and Drug Administration (FDA)
Where to find and resolve conflicts in segregation of rules?
System administration -> Security -> Segregation of duties -> Verify compliance of user-role assignments
Where to find and run security reports?
System Administration -> Inquiries -> Security
XDS?
Extensible Data Security policies
What does XDS do?
Allows developers to supplement role-based security by restraining access to table records based on security policies.
Data Security policy components?
Constrained tables Primary table Policy Query Context Role Context Application Context
Constrained Tables?
Table(s) from which data is filtered or secured.