Skip to content

Creating a Risk Analysis

If you are taking advantage of the Fiori-enabled capabilities within Access Risk Management, the risk analysis is generated slightly differently and it includes SOD and Sensitive Access analyses. You can use the risk analysis for reporting as well as What If functionality.

To run a risk analysis:

  1. Go to Schedule Jobs > Risk Analysis.
  2. Use the Repeat dropdown to indicate whether this is a one-time job or scheduled to reoccur. Options are Do not repeat, Monthly, Weekly, or Daily.

    • When you select Do not repeat, use the calendar selector to indicate the specific date range to include in the risk analysis. Use the Security Extract selector to choose which extract to apply.
    • When you select a recurring option, such as daily, weekly, or monthly, the utilization period is determined by your selection and a live security extract is used.

    Tip

    Schedule Utilization Extracts to run on the same schedule, ideally 30-60 minutes before the Risk Analysis.

  3. Use the Rulebook dropdown to select a rulebook to apply to your risk analysis.

    Note

    Risk Analysis only works with one of the new rulebooks, available under Risks > Rulebooks > Multi-System Rulebooks.

  4. In the Extract field, use the Edit icon to choose an extract. If you want to remove it, select Clear.

  5. Utilization Data Range defaults to one year. Select the calendar icons to customize your date range.

    Note

    Utilization data is pulled from the SAP Security Audit Log (SM20). If the data does not exist in SAP, it cannot be extracted.

    Make sure to use an Access Risk Management agent released in July 2024 or newer.

    Existing customers prior to July 2024 need to schedule utilization extracts in order to import data from the SAP Security Audit Log, since that is the new source for all utilization data.

    Here’s how:

    Once you’ve configured your agent, schedule utilization extracts for each of the prior months. After running those jobs and extracting the data you need from the new data source, your new risk analyses will include the appropriate data.

    If you need assistance, contact support.

  6. Select Submit.

Documentation Feedback

Feedback is provided as an informational resource only and does not form part of SailPoint’s official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.