Validate segregation of duties (enhanced)

You can set up rules to separate tasks that must be performed by different users. This concept is named segregation of duties. Use Validate segregation of duties to verify whether existing roles comply with new rules for enhanced segregation of duties. So, it validates intra-role compliance.

If any existing roles violate the selected rule, a message is shown that contains the name of the role and the names of the conflicting securable objects. You must either indicate the mitigation for the security risk or modify the role so that it does not violate the rules for enhanced segregation of duties. If no roles violate the selected rule, a message indicates that all roles comply.

Standard procedure

1.	Click Integrated risk management.
2.	Click the Enhanced SoD rules tab.
3.	In the list, find and select the enhanced segregation of duties rule to be validated.
4.	Click Validate duties and roles.
	Note: Check the resulting messages. If violations are indicated, solve these violations.

Related to	Notes
Security and Compliance Studio - Doc
Manage security
Apply administrator view
Analyze access to menu items
Manage risks
Audit security
Manage shared files
Manage security compliance
Manage and audit sensitive data
Manage segregation of data
General setup
Set Security and compliance studio parameters
Set up areas
Set up email notification for sensitive data role assignments
Manage segregation of duties (enhanced)

Validate segregation of duties (enhanced) Application task

Standard procedure

Validate segregation of duties (enhanced)
Application task