1. Using Risk and Security Snapshot Report
  2. Summary Worksheets

Summary Worksheets

Four worksheets provide summaries of the overall analysis and of access and transaction results. Click the following tabs to review them.

  • Summary Table is the initial worksheet in every report. It provides an analysis ID number, the submission date, the name of the user who ran the analysis, the business process it examines, and the analysis period. It also provides distinct lists of all the access models and all the transaction models used in the analysis.

    Each row in the access list contains the name of a model; typically, the name identifies actions that the model defines as conflicting. For example, one of the access models is named "Approve Payables Invoices and Create Payments." In the list of transaction models, each row provides both a model's name and a brief description of the risk it guards against.

    The application limits each model to a maximum of 5,000 result records. This both ensures a meaningful set of results for investigation and increases the likelihood that the analysis job will run within twenty-four hours. If a model would have generated more than 5,000 result records, its row displays the × symbol in a Model Results Limited column, indicating its results are incomplete. If the Model Results Limited cell is blank for a model, it has returned fewer than 5,000 result records and its results are complete.

  • Intrarole Access Risks is included if the analysis runs at least one access model. It identifies roles that can't be assigned to any user without some risk, because each role contains access issues on its own. Each row shows the name of a role, the number and names of the models it's violated, and the number of users assigned the role.

  • User Access Risks is also included if the analysis runs at least one access model. Each row gives the name of a user (and that user's position and manager), the number and names of the models violated by that user's role assignments, and the number of unique paths that lead from a job role the user is assigned to another role or privilege involved in a conflict defined by the model.

  • Transaction Risk Summary is included if the analysis runs at least one transaction model. Each row gives the name and a brief description of a transaction model, the number of result records the model has returned, and (if appropriate) the monetary value of the transactions that violate the model.