CC / RAR Rule Set Build

Similar Messages

• Mass RAR Rule Set Changes

  My integrator is telling me that there is no way to complete a mass update to the authorizations/restrictions in our RAR rule set (AC 5.3.)  That is, at the recommendation of our external auditor, we added additional transactions to existing rules but failed to activate the company code restrictions to ignore display only access and therefore, I am receiving a significant number of SODs which are false positives. 
  I find it hard to believe that there is no easy way to activate the company code authorization objects (and others) for the additional transactions in the rule set.  The integrator is telling me that this has to be done one by one.  Please tell me that there is an easier way.
  Apologies if this is a repeat; if this topic is out there, could someone point me in the right direction?Thank you in advance!
  Thank you in advance!

  Is there any easy way?  Depends on what you think is easy  
  For mass updates to function I will typically use the:  Configuration -> Rule Upload  feature.  To perform an update to an authorization object, you would use the 'Function Authorization' selection.
  To upload the function you'd want to use the file formats from the 9 upload files SAP provides for the ruleset.  If I recall correctly, function uploads will overwrite the existing function so it is important that your upload file contains all existing function data + the additional auth objects you want to activiate. 
  As with any text file manipulation and download/upload or export/import features into GRC you want to be particulary careful with formatting and attention to detail.  Probably a good idea to take a backup of the rules if this is your first time working with the ruleset files.

• Need information on the new RAR Rule Architect/Rule Set functions

  Does anyone have any information on the new 5.3 functions listed under Rule Architect/Rule Sets, specifically the Compare function?
  My 5.3 Config manual mentions this area but doesn't describe anything about it.  I have a request from our user group and need to determine if this can fit that request.
  What they are looking for is an easy way to compare our RAR Rule Set with the latest SAP version (Q2 2010 is the most recent I believe).  Just from the screen shots, it looks like we could maybe use the Rule Sets functions for that.  Load the new SAP one into RAR as a separate ruleset and then run this Compare function.  However I haven't been able to find any documentation on this function, so I don't know if it really does what we are looking for.
  Thanks.

  Hi,
  the error 'NullPointerException ' is very common error in GRC.
  kindly search, you will find lots of threads and notes on thi.
  check you permission TXT file. It contain null value some where.
  especially check SD01 & SD02 tcodes.
  Also open permission file in word and check all TAB's and ENTER's in technical view.
  Regards,
  Surpreet

• GRC-AC v5.3 SP11 -- RAR Rules for BI, GTS, SRM, XI, GRC-AC, SolMan

  Hi!
  Has SAP released RAR Rule sets for BI, GTS, SRM, XI, GRC-AC, or Solution Manager?
  Let me know if anyone else has found them.
  Thanks,
  -john

  Hi John,
     SRM rules have always been available. I have not seen rules for BI, GTS, XI, AC or SolMan. Would definitely want to see rules for XI, BI and SolMan.
  Alpesh

• CC / RAR 5.2 - Multiple Rule Set Question

  How does the system handle the use of multiple rule sets in CC / RAR 5.2?
  For example, letu2019s say I want to keep a standard SAP rule set in tact to use for testing and comparison in RAR, but I also want to load another one.
  I realize that only 1 can be the u201CDEFAULTu201D so what does that mean?  I know that a risk analysis is only run against the rule set you set as default.  I also know that you can select the rule set to use in processing when you manually run either through Informer or Configuration tab a risk analysis.  What I am really concerned with is what happens if you take the results to u201Cmanagement reportsu201D from 2 different rule sets?
  First, can you even do it?
  Second, if you can, then I think you must have to come up with a different RISKID configuration schema for each rule set otherwise, I do not see how you can differentiate from which rule set the violation is generated.  That said, you will also need to export the report information into Excel and make any u201Crule set sortu201D there as I donu2019t see a way to do it directly in RARu2026.maybe a future improvement?
  Can anyone confirm the impact of multiple rule sets and how you manage them?
  Regards,
  Greg

  Greg,
  You can maintain the different severity levels for different Rule Sets. For example, in one Rule Set you can keep the "Critical" Risks and in other you can keep "High", "Medium" & "Low". Run your analysis against first Rule Set if you want to know the "Critical" Risks and second Rule set you can use for rest of the severity levels. I hope this way you can manage your multiple Rule Sets in RAR.
  Thanks,
  Tavi
  SAP Security & GRC Consultant.

• RAR: Global Rule set

  Hi,
  I am wondering if the latest global rule set contains the tcodes, authorization objects and values based on the latest version of SAP? If yes, can this global rule set be applicable for SAP version 4.7 ?
  Thanks,
  Debbie

  Hello Rajesh,
  Hope this information from SAP helps you.RAR Rule Update - Documentation
  It is not possible to programmatically send out updates to the default ruleset (i.e. via transports or STMS). 
  This is because rule uploads only overwrite and not append.  As every company should have made changes to their ruleset, SAP cannot send out rule updates as this would overwrite the customization done by each company
  Since the SAP acquisition of Virsa, there have been seven updates to the supplied ruleset which are described in detail in SAP notes below.
  1061380 u2013 Q2 2006
  1035070 u2013 Q1 2007
  1083611 u2013 Q3 2007
  1173980 u2013 Q2 2008
  1326497 u2013 Q2 2009
  1446680 u2013 Q2 2010
  1604722 u2013 Q3 2011
  These notes provide a company a detailed Word document that summarizes the changes made. 
  The company must go through these changes to evaluate if they agree with the SAP supplied change. 
  If they agree, the company will have to make the change manually via the Rule Architect.
  To get more details, please refer to note#986996
  Regards,
  Renuka

• Access to update the GRC rule set is limited

  Hello - What is the process (tcode) to see who has access to update the GRC rule set?
  Thanks!

  Hi Sam,
     What is the version of your RAR (CC)? If it is CC 4.0 then you enter the product via tcode and go to rule architect to make changes. If you have CC 5.X then you go through the web browser and go to Rule architect to make changes to the rule set.
  The process to change a rule set is as below:
  1) Creats Function
  2) Create risk
  3) Create Rule
  Regards,
  Alpesh

• Multiple GRC rule set update

  we are having a custom rule set A loaded in GRC. Now we want another rule set B, with new risks and definition to be loaded in GRC. If we try to upload rule set B risks and functions via Upload function in GRC, would it overwrite the rule set A, or not.Just wanted to confirm whether existing rule set A would be affected or not, due to upload of rule set B.

  Hey Alpesh,
  Sorry, I haven't understand it correct. This is a question that will always be asked in the train.
  You wrote:
  "If you have created different files (e.g. risks, ruleset, function action, function permission etc.) and upload them via configuration -> rule upload then RAR will not overwrite your ruleset A and will only insert new rule set files."
  Is this just possible, if all IDs (risk, function, function action, function permission) will be changed before and could not be equal like in the rule set A? correct?
  What's about with the ALL.txt files, do I have to change/upload them as well again?
  Thanks for feedback,
  alwaly a pleasure!
  Greets
  Martin

• RAR - Rules Upload

  Hi Experts,
  From the RAR, I can see the default "Global" ruleset. I went to the Configuration tab, navigated to Rule Upload > Generare Rules, and clicked on the Foreground button, and I see a list of Risk Description, conflicting conflicts etc etc.
  However, I did not want to use the Global ruleset, as I have a customized ruleset which addresses my client's SoD concerns very specifically. What I did first was to export the all components of the rules (as a backup) and then I navigated to the Rule Architect Tab, and manually deleted all the Risks, Functions, Rule Sets and Business Process (in that order).
  I then proceeded to the Configuration tab > Rule Upload and uploaded the Business process, Function, Function Authorisation, Rule Set and Risk. No error messages encountered as I followed the Rule File Templates as per the configuration guide. But it also does not tell me if I was successful in importing those files. (so I assumed no error message = import successful)
  However, when I navigated to Rule Upload > Generate Rules, and clicked on the Foreground button, I was unable to see any list generated this time. I tried to export all the components of the rules (based on what I imported) to troubleshoot, and I found that the "function_permission.txt" and the "Risk_desc.txt" portions were missing from the exported textfile. However, all the other information from other text files are in that exported text file.
  From initial analysis, this seems like the Function Authorisation and the Risk files may not have been imported successfully. Would like to know if anyone has encountered this problem and what actions should be taken to rectify it?
  Thanks!

  Hi Experts,
  Thanks for your response.
  I followed the Rule Set Template from the configuration guide to the letter.
  Upon closer inspection of the contents in what I exported, I discovered that for the "function_action.txt" portion, the Tcodes of some of the business process were not found, for e.g.
  Business Process FA may have tcodes under function action Tab, but business process IM seems to have no tcodes under the function action Tab. I suspect that during the import, certain business processes were not "picked up", whereas others were. It was a clean omission of tcodes from IM business process. Does the naming convention of business process follow some reserved words (i.e. financial accounting must be FA, procurement Must be PR etc to be same as the global ruleset)?
  In addition, for those business process which have tcodes reflected in the function action Tab, I tried to click on the "+" to expand and see the objects, fields and values under the function permission Tab, but it cannot be expanded (i.e. blank).

• SAP GRC RAR Rules Generation Job Error - SP13 application

  Hello,
  we applied SP 13 on GRC and RAR Rule Generation job is always in "error" status; below I list an example of job log:
  INFO: -
  Scheduling Job =>237----
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.bg.BgJob run
  INFO: --- Starting Job ID:237 (RULE_GENERATION) - generate f113
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.util.Lock lock
  FINEST: Lock:1007
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.bg.BgJob setStatus
  INFO: Job ID: 237 Status: Running
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.bg.BgJob updateJobHistory
  FINEST: --- @@@@@@@@@@@ Updating the Job History -
  1@@Msg is generate f113 started :threadid: 1
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.bg.dao.BgJobHistoryDAO insert
  INFO: -
  Background Job History: job id=237, status=1, message=generate f113 started :threadid: 1
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.util.Lock unlock
  FINEST: Unlock:1007
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.bg.BgJob ruleGeneration
  INFO: @@@--- Rule ruleGeneration Started ....237
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.bg.BgJob run
  WARNING: *** Job Exception: null
  java.lang.NullPointerException
       at com.virsa.cc.xsys.bg.BgJob.ruleGeneration(BgJob.java:1245)
       at com.virsa.cc.xsys.bg.BgJob.runJob(BgJob.java:609)
       at com.virsa.cc.xsys.bg.BgJob.run(BgJob.java:363)
       at com.virsa.cc.xsys.riskanalysis.AnalysisDaemonBgJob.scheduleJob(AnalysisDaemonBgJob.java:375)
       at com.virsa.cc.xsys.riskanalysis.AnalysisDaemonBgJob.start(AnalysisDaemonBgJob.java:92)
       at com.virsa.cc.comp.BgJobInvokerView.wdDoModifyView(BgJobInvokerView.java:444)
       at com.virsa.cc.comp.wdp.InternalBgJobInvokerView.wdDoModifyView(InternalBgJobInvokerView.java:1236)
       at com.sap.tc.webdynpro.progmodel.generation.DelegatingView.doModifyView(DelegatingView.java:78)
       at com.sap.tc.webdynpro.progmodel.view.View.modifyView(View.java:337)
       at com.sap.tc.webdynpro.clientserver.cal.ClientComponent.doModifyView(ClientComponent.java:481)
       at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.doModifyView(WindowPhaseModel.java:551)
       at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.processRequest(WindowPhaseModel.java:148)
       at com.sap.tc.webdynpro.clientserver.window.WebDynproWindow.processRequest(WebDynproWindow.java:335)
       at com.sap.tc.webdynpro.clientserver.cal.AbstractClient.executeTasks(AbstractClient.java:143)
       at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doProcessing(ApplicationSession.java:333)
       at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessingStandalone(ClientSession.java:741)
       at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessing(ClientSession.java:694)
       at com.sap.tc.webdynpro.clientserver.session.ClientSession.doProcessing(ClientSession.java:253)
       at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:149)
       at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doContent(DispatcherServlet.java:62)
       at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doGet(DispatcherServlet.java:46)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
       at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
       at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:386)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:364)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:1060)
       at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:265)
       at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
       at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175)
       at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
       at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
       at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:104)
       at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:176)
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.bg.BgJob setStatus
  INFO: Job ID: 237 Status: Error
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.bg.BgJob updateJobHistory
  FINEST: --- @@@@@@@@@@@ Updating the Job History -
  2@@Msg is Error while executing the Job:null
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.bg.dao.BgJobHistoryDAO insert
  INFO: -
  Background Job History: job id=237, status=2, message=Error while executing the Job:null
  Apr 4, 2011 1:36:12 PM com.virsa.cc.xsys.riskanalysis.AnalysisDaemonBgJob scheduleJob
  INFO: -
  Complted Job =>237----
  Apr 4, 2011 1:36:13 PM com.virsa.cc.xsys.util.Lock lock
  WARNING: It is used by the same owner: For current thread retrying to get lock : 1001
  Apr 4, 2011 1:36:13 PM com.virsa.cc.xsys.util.Lock lock
  FINEST: Lock:1001
  Apr 4, 2011 1:36:13 PM com.virsa.cc.xsys.util.Lock unlock
  FINEST: Unlock:1001
  Is there someone that can help me?
  I checked and it seems that "Use NetWeaver Logical Lock" in config tab has to be set to "No"...is it correct for you or have you got other tips?
  Thx to all

  Hello,
  actuallt current values are:
  Row CNFGPARAM| CNFGSEQ| CNFGVALUE|
  35 250 0 NO
  36 251 0 YES
  Value for 250 is ok based on your feedback.
  Value for 251 is based on SNOTE 1508611, even if  SDN forum suggests "0" against the note.
  Have you got any tips?

• GRC AC Rule Sets

  Hi
  We have a requirement of building up a custom rule set for our organization. The current requirement is to have a central rule set across for all system and have subsequent system specific Risks identified in addition.
  Scenario: Letu2019s say we have identified around 100 risks across the enterprise, however only 50 risks out of 100 risks are applicable for one system. While for the second system there are around 70 risks applicable. Finally for the third one all 100 risks are applicable.
  Should we have system specific rule sets to address the above scenario or should we have a common rule set for the enterprise.
  Appreciate your inputs about the approach for building up of rule set for such scenarios.
  Question: With GRC 10.0, can we run risks for a system on multiple rule set IDs at one time.
  Thanks.
  Anjan Pandey

  Hi,
  Most of the clients will prefer to go with one rule set. However System can allow create/maintain multiple rule sets.
  Anyway your requirement is to have one central rule set across all systems u2013 For that, Create Logical system and maintains one Rule set is the right approach and it gives flexibility for future usage to add /remove required systems. You can maintain risks by system specific, not required to maintain multiple rule sets.
  Refer  GRC Access Control Effective Rule Set Design document,  it gives some good explanation of Rule Set Design&typical Scenarios, Logical & Physical systems approach..etc.
  Regards,
  Ram
  Edited by: ram komma on Apr 13, 2011 1:55 PM

• Rule set Version

  Hi ,
    How to find out , rules set version a particular RAR( CC) system have , If a logged into RAR( Or CC) of some one else system,
  To be specific I wanted to know which Rule Set Version?( Rules)  they are using (Like Q1 2007 , Q3 2007, Q2 2008 or Q2 2009 Rule Update etc) irrespective of application version they are using ( Like 5.1 ,5.2 or 5.3 ) .
  Thanks & Regards
  Uma Shankar T

  Hi Uma,
  The ruleset versions are normally shipped as part of support packs.
  However, you would only normally implement the ruleset version when doing a clean implementation as uploading a completely new version could overwrite any changes which you have made for your own organisation.
  I do not know of any technical settings to identify exactly which version was uploaded into the system as the ruleset is shipped as a data file.
  You can track the released versions via the SAP Notes though.
  Simon

• RAR Rules - DEV and QA

  Hi,
  Our RAR Dev has two active connectors to SAP Dev as well as QA. We have uploaded a Rule Set for QA which is working fine. We can do a risk analysis and we get results. However we are struggling to get results for Dev. How do we go about uploading a test rule set for Dev?
  Please assist.
  Regards.

  Hi,
  Thank you to you all.  My problem is solved:)
  The Master User Source was pointing to Dev and the Function action did have Dev and QA. I however reran a full sync on user, role, profile as well as batch analysis and that did the trick.
  Thanks once again.
  Regards.

• Com.bea.p13n.rules.manager.RuleSetNotFoundException: The rule set with URI /segments/GlobalClassifications.rls could not be located by the class named com.bea.p13n.rules.manager.internal.RuleSetPersistenceManager

  Hi,
  I am getting below exceptions in weblogic portal 10.3.5 which is upgraded from 10.3.4 portal. I have a datasync project .when try to run from workshop(eclipse IDE) getting below error.
  com.bea.p13n.servlets.jsp.JspException: DivTag: The retrieved advice is incomplete. See the processing error list for more information.
  com.bea.p13n.advisor.internal.AdviceImpl@299d48
  Identifier: 1377808035572
  Complete: true
  Last Result: null
  ProcessingError List:
  (1) com.bea.p13n.advisor.internal.ProcessingErrorImpl@1504ee
  Description: Exception evaluating ruleset.
  Source: com.bea.p13n.rules.advislets.RulesAdvisletImpl@e6d518
  Advisor: com.bea.p13n.advisor.internal.AdvisorImpl@b04a4e
  Metadata: com.bea.p13n.common.internal.MetadataImpl@1de62ee
  Name: UnmappedRulesAdvislet
  Description: Advislet that can evalaute a ruleset and return the instantiated objects.
  Author: BEA Systems
  Version: com.bea.p13n.common.internal.VersionImpl@13130a2 Description: WLP 9.2 Number: 9.2, Build Number 1.
  Parameters: {ruleset-name=/segments/GlobalClassifications.rls, ignore-rule-name=false}
  User data: null
  Exception: com.bea.p13n.rules.manager.RuleSetNotFoundException: The rule set with URI /segments/GlobalClassifications.rls could not be located by the class named com.bea.p13n.rules.manager.internal.RuleSetPersistenceManager.
  at com.bea.p13n.rules.manager.internal.RuleSetPersistenceManager.getRuleSet(RuleSetPersistenceManager.java:408)
  at com.bea.p13n.rules.manager.internal.ContextPool.<init>(ContextPool.java:149)
  at com.bea.p13n.rules.manager.internal.ContextPoolFactory.getContextPool(ContextPoolFactory.java:214)
  at com.bea.p13n.rules.manager.internal.RulesManagerImpl.getContext(RulesManagerImpl.java:480)
  at com.bea.p13n.rules.manager.internal.RulesManagerImpl.evaluate(RulesManagerImpl.java:353)
  at com.bea.p13n.rules.manager.internal.RulesManagerImpl.evaluateRule(RulesManagerImpl.java:194)
  at com.bea.p13n.rules.manager.internal.RulesManager_jswjkk_EOImpl.__WL_invoke(Unknown Source)
  at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(SessionRemoteMethodInvoker.java:40)
  at com.bea.p13n.rules.manager.internal.RulesManager_jswjkk_EOImpl.evaluateRule(Unknown Source)
  at com.bea.p13n.rules.advislets.RulesAdvisletImpl.getAdvice(RulesAdvisletImpl.java:190)
  at com.bea.p13n.advisor.internal.AdvisorImpl.getAdvice(AdvisorImpl.java:74)
  at com.bea.p13n.advisor.internal.CompoundAdvisletImpl.getAdvice(CompoundAdvisletImpl.java:88)
  at com.bea.p13n.advisor.internal.AdvisorImpl.getAdvice(AdvisorImpl.java:74)
  at com.bea.p13n.advisor.internal.EjbAdvisorImpl.getAdvice(EjbAdvisorImpl.java:62)
  at com.bea.p13n.advisor.internal.EjbAdvisor_t707wa_EOImpl.__WL_invoke(Unknown Source)
  at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(SessionRemoteMethodInvoker.java:40)
  at com.bea.p13n.advisor.internal.EjbAdvisor_t707wa_EOImpl.getAdvice(Unknown Source)
  at com.bea.p13n.servlets.jsp.taglib.DivTag.includeBody(DivTag.java:103)
  at com.bea.p13n.servlets.jsp.taglib.DivTag.doStartTag(DivTag.java:169)
  at jsp_servlet._portlets._footerlinks.__footerlinks._jspService(__footerlinks.java:247)
  at weblogic.servlet.jsp.JspBase.service(JspBase.java:34)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
  at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:60)
  at org.apache.beehive.netui.pageflow.PageFlowPageFilter.continueChainNoWrapper(PageFlowPageFilter.java:455)
  at org.apache.beehive.netui.pageflow.PageFlowPageFilter.runPage(PageFlowPageFilter.java:432)
  at org.apache.beehive.netui.pageflow.PageFlowPageFilter.doFilter(PageFlowPageFilter.java:284)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:60)
  at com.bea.netuix.servlets.filters.IncludeSecurityFilter.doFilter(IncludeSecurityFilter.java:103)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:60)
  at weblogic.servlet.internal.RequestDispatcherImpl.invokeServlet(RequestDispatcherImpl.java:524)
  at weblogic.servlet.internal.RequestDispatcherImpl.include(RequestDispatcherImpl.java:444)
  at com.bea.netuix.servlets.controls.content.JspContent.beginRender(JspContent.java:558)
  at com.bea.netuix.nf.ControlLifecycle$7.visit(ControlLifecycle.java:485)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:518)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:220)
  at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:399)
  at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:361)
  at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:352)
  at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:326)
  at com.bea.netuix.nf.UIControl.render(UIControl.java:582)
  at com.bea.netuix.servlets.controls.PresentationContext.render(PresentationContext.java:488)
  at com.bea.netuix.servlets.util.RenderToolkit.renderChild(RenderToolkit.java:152)
  at com.bea.netuix.servlets.jsp.taglib.RenderChild.doStartTag(RenderChild.java:62)
  at jsp_servlet._framework._skeletons._ceoportal.__flowlayout._jspService(__flowlayout.java:139)
  at weblogic.servlet.jsp.JspBase.service(JspBase.java:34)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:183)
  at weblogic.servlet.internal.RequestDispatcherImpl.invokeServlet(RequestDispatcherImpl.java:526)
  at weblogic.servlet.internal.RequestDispatcherImpl.include(RequestDispatcherImpl.java:444)
  at com.bea.netuix.servlets.controls.application.laf.JspTools.renderJsp(JspTools.java:148)
  at com.bea.netuix.servlets.controls.application.laf.JspControlRenderer.beginRender(JspControlRenderer.java:72)
  at com.bea.netuix.servlets.controls.application.laf.PresentationControlRenderer.beginRender(PresentationControlRenderer.java:65)
  at com.bea.netuix.nf.ControlLifecycle$7.visit(ControlLifecycle.java:481)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:518)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:220)
  at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:399)
  at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:361)
  at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:352)
  at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:326)
  at com.bea.netuix.nf.UIControl.render(UIControl.java:582)
  at com.bea.netuix.servlets.controls.PresentationContext.render(PresentationContext.java:488)
  at com.bea.netuix.servlets.util.RenderToolkit.renderChild(RenderToolkit.java:152)
  at com.bea.netuix.servlets.jsp.taglib.RenderChild.doStartTag(RenderChild.java:62)
  at jsp_servlet._framework._skeletons._ceoportal.__gridlayout._jspService(__gridlayout.java:357)
  at weblogic.servlet.jsp.JspBase.service(JspBase.java:34)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:183)
  at weblogic.servlet.internal.RequestDispatcherImpl.invokeServlet(RequestDispatcherImpl.java:526)
  at weblogic.servlet.internal.RequestDispatcherImpl.include(RequestDispatcherImpl.java:444)
  at com.bea.netuix.servlets.controls.application.laf.JspTools.renderJsp(JspTools.java:148)
  at com.bea.netuix.servlets.controls.application.laf.JspControlRenderer.beginRender(JspControlRenderer.java:72)
  at com.bea.netuix.servlets.controls.application.laf.PresentationControlRenderer.beginRender(PresentationControlRenderer.java:65)
  at com.bea.netuix.nf.ControlLifecycle$7.visit(ControlLifecycle.java:481)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:518)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walkRecursiveRender(ControlTreeWalker.java:529)
  at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:220)
  at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:399)
  at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:361)
  at com.bea.netuix.nf.Lifecycle.runOutbound(Lifecycle.java:208)
  at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:162)
  at com.bea.netuix.servlets.manager.UIServlet.runLifecycle(UIServlet.java:465)
  at com.bea.netuix.servlets.manager.UIServlet.processControlTree(UIServlet.java:373)
  at com.bea.netuix.servlets.manager.PortalServlet.service(PortalServlet.java:993)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
  at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:60)
  at com.bea.content.manager.servlets.ContentServletFilter.doFilter(ContentServletFilter.java:178)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:60)
  at com.bea.p13n.servlets.PortalServletFilter.doFilter(PortalServletFilter.java:336)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:60)
  at com.bea.portal.tools.servlet.http.HttpContextFilter.doFilter(HttpContextFilter.java:60)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:60)
  at com.bea.p13n.servlets.PortalServletFilter.doFilter(PortalServletFilter.java:336)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:60)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3729)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3695)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
  at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2285)
  at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2184)
  at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1459)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)

  The following document describes about how datasync data is deployed in various scenarios.
  http://download.oracle.com/docs/cd/E13218_01/wlp/docs100/prodOps/preparing.html#wp1029497
  Assuming you are making use of workshop for creating the user segment and deploying to a single server which is in development mode, I would recommend you check if you have hit any OOM issues on the server or not, and try restarting the server, and redeploying your app. Generally this should resolve the issue.
  If the server to which you are deploying is running in production mode / deploying as an EAR then the above referred doc will guide you on the next steps.

• GRC - Rule Set Library

  Hello,
  Does the GRC deliver rule set library for compliance calibrator? If yes, how it delivers this package, is it includes in the installation of the package itself or separate one. What are the factors do we need to consider when customizing or modifying the standard library to accommodate to any client requirement?
  I appreciate any help on this.
  Thanks in advance!
  Eric

  Each customer is unique therefore their ruleset should be unique.
  Afterall how can the out of the box ruleset meet all of the Internal Control requirements for all different industries in all countries for all legislations for all versions of SAP, it can't!
  Your next question is how long does it take to build your own ruleset, I have clients that have take 2 weeks and others that are still working on it after 15 years!!
  The most important people to include in your ruleset review process are:
  External audit
  Internal audit/Compliance
  Business Process Experts
  without these people on board you will design a ruleset and remediate/mitigate issues that are not actually considered to be issues!!