SoD Evaluation for Non - SAP Functions
POST/sodEvaluation
This API can be used to evaluate SODs for entitlements with the same name.
Mandatory Parameters:
* user - account name
* entitlement JSON
StartFragment
{
"user": "soduser971",
"entitlementJSON": {
"Data": [
{
"Endpoint": "SODendpoint2",
"EntitlementType": "NewPandC",
"ExistingEntitlementsKeys": [
"635216",
"635217",
"635218"
],
"NewEntitlementsKeys": [
"635215",
"635214"
]
},
{
"Endpoint": "SODendpoint2",
"EntitlementType": "NewPandC",
"ExistingEntitlementsKeys": [
"635216",
"635217",
"635218"
],
"NewEntitlementsKeys": [
"635215",
"635214"
]
}
]
}
}
EndFragment
HEADERS
EndFragment
The Authorization must have Bearer followed by Token.
Optional parameters:
Ruleset - ExistingEntitlementsKeys/NewEntitlementsKeys -These parameters are available from Release v2022.0.
The SODEvaluation API takes the input parameters in the following order:
* Key of the entitlement
* Name of the entitlement
The Key of the entitlement takes precedence to check SODs during access request to avoid the failure of duplicate entitlements so that the SOD risks are displayed if exists. If the entitlement key is not passed in the API, then the entitlement name is considered.
Request
- application/json
Body
Array [
]
entitlementJSON
object
Data
object[]
Endpointstring
Example:
SODendpoint2EntitlementTypestring
Example:
NewPandCExistingEntitlementsKeysstring[]
Example:
["635216","635217","635218"]NewEntitlementsKeysstring[]
Example:
["635215","635214"]userstring
Example:
soduser971Responses
- 200
SoD Evaluation for Non - SAP Functions / SoD Evaluation for Non - SAP Functions(riskSODEvaluationByUser) / SOD Evaluation for Non-SAP Duplicate Entitlements
Response Headers
Date
string
Set-Cookie
string
Strict-Transport-Security
string
Vary
string
X-Content-Type-Options
string
- application/json
- Schema
- Example (from schema)
- SOD Evaluation for Non-SAP Duplicate Entitlements
- SoD Evaluation for Non - SAP Functions
- SoD Evaluation for Non - SAP Functions(riskSODEvaluationByUser)
Schema
- MOD1
- MOD2
- MOD3
Array [
Array [
Array [
]
]
]
Array [
]
Array [
Array [
]
]
errorCodestring
Example:
0messagestring
Example:
SUCCESSresult
object
anyOf
SOD
object[]
Assigned_MitigatingControlsundefined[]
Example:
[]Available_MitigatingControlsundefined[]
Example:
[]Descriptionstring
Example:
Functions
object[]
Descriptionstring
Example:
Entitlements
object[]
Entitlementstring
Example:
[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]EntitlementDescriptionstring
Example:
EntitlementDisplayNamestring
Example:
ParentRolestring
Example:
[Accountant]Rolestring
Example:
AccountantFunctionNamestring
Example:
GL: Enter Journal EntryPrioritynumber
Example:
1Riskstring
Example:
GL: Enter Journal Entry conflicts with PTP: Create InvoicesRiskIdnumber
Example:
1762ACCOUNTnumber
Example:
2ENTLISTstring[]
Example:
["4351776###927###4359855###4359855###Accountant","4351775###890###4359855###4359855###Accountant","4351755###890###4359855###4359855###Accountant"]MCstring
RISKSnumber
Example:
1762SOD
object[]
Assigned_MitigatingControlsundefined[]
Example:
[]Available_MitigatingControlsundefined[]
Example:
[]Descriptionstring
Example:
RiskDepth2Functions
object[]
Descriptionstring
Example:
testEntitlementsundefined[]
Example:
[]FunctionNamestring
Example:
FunctionDepthLevel2Prioritynumber
Example:
2Riskstring
Example:
RiskDepth2RiskIdnumber
Example:
3215{
"errorCode": "0",
"message": "SUCCESS",
"result": {}
}
{
"errorCode": "0",
"message": "SUCCESS",
"result": {
"SOD": [
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "RiskDepth2",
"Functions": [
{
"Description": "test",
"Entitlements": [],
"FunctionName": "FunctionDepthLevel2"
}
],
"Priority": 2,
"Risk": "RiskDepth2",
"RiskId": 3215
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "RiskDepth3",
"Functions": [
{
"Description": "oiu",
"Entitlements": [],
"FunctionName": "FunctionDepthLevel3"
}
],
"Priority": 2,
"Risk": "RiskDepth3",
"RiskId": 3216
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "risk 971",
"Functions": [
{
"Description": "FA1",
"Entitlements": [],
"FunctionName": "Function971"
}
],
"Priority": 2,
"Risk": "Risk971",
"RiskId": 3224
}
]
}
}
{
"errorCode": "0",
"message": "SUCCESS",
"result": {
"SOD": [
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Enter Journal Entry"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "PTP: Create Invoices"
}
],
"Priority": 1,
"Risk": "GL: Enter Journal Entry conflicts with PTP: Create Invoices",
"RiskId": 1762
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Enter Journal Entry"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Post Journal Entry"
}
],
"Priority": 1,
"Risk": "GL: Enter Journal Entry conflicts with GL: Post Journal Entry",
"RiskId": 1763
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Process: Allocations: Modify, Allocation Finalize Event: Finalize Allocation: Initiate, Revaluation Run Event: Run Revaluation: Initiate, Allocation Run Event: Run Allocation: Initiate, Period Close Notification Event: Period Close Notification: Initiate, Allocation Run Event: Schedule Allocation Run: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Mass Allocate Journal Entries"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Enter Journal Entry"
}
],
"Priority": 1,
"Risk": "GL: Mass Allocate Journal Entries conflicts with GL: Enter Journal Entry",
"RiskId": 1764
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Enter Journal Entry"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Process: Business Asset Accounting: Modify]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "AM: Assets Depreciation"
}
],
"Priority": 1,
"Risk": "GL: Enter Journal Entry conflicts with AM: Assets Depreciation",
"RiskId": 1769
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Enter Journal Entry"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Process: Allocations: Modify, Allocation Finalize Event: Finalize Allocation: Initiate, Revaluation Run Event: Run Revaluation: Initiate, Allocation Run Event: Run Allocation: Initiate, Period Close Notification Event: Period Close Notification: Initiate, Allocation Run Event: Schedule Allocation Run: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Mass Allocate Journal Entries"
}
],
"Priority": 1,
"Risk": "GL: Enter Journal Entry conflicts with GL: Mass Allocate Journal Entries",
"RiskId": 1773
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Post Journal Entry"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Process: Business Asset Accounting: Modify]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "AM: Assets Depreciation"
}
],
"Priority": 1,
"Risk": "GL: Post Journal Entry conflicts with AM: Assets Depreciation",
"RiskId": 1775
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Post Journal Entry"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Process: Allocations: Modify, Allocation Finalize Event: Finalize Allocation: Initiate, Revaluation Run Event: Run Revaluation: Initiate, Allocation Run Event: Run Allocation: Initiate, Period Close Notification Event: Period Close Notification: Initiate, Allocation Run Event: Schedule Allocation Run: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Mass Allocate Journal Entries"
}
],
"Priority": 1,
"Risk": "GL: Post Journal Entry conflicts with GL: Mass Allocate Journal Entries",
"RiskId": 1780
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Payment Printing Event: Create Positive Pay File: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Open Close Periods"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Accounting Journal Event: Create Journal: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Manual Journals: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Enter Journal Entry"
}
],
"Priority": 0,
"Risk": "GL: Open Close Periods conflicts with GL: Enter Journal Entry",
"RiskId": 1781
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Payment Printing Event: Create Positive Pay File: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Open Close Periods"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Post Journal Entry"
}
],
"Priority": 3,
"Risk": "GL: Open Close Periods conflicts with GL: Post Journal Entry",
"RiskId": 1782
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Process: Journals: Modify]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "OTC: Enter Journal Entry"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Record Intercompany Receipt Event: Record Intercompany Receipt: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "OTC: Enter Customer Receipts"
}
],
"Priority": 1,
"Risk": "OTC: Enter Journal Entry conflicts with OTC: Enter Customer Receipts",
"RiskId": 1821
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Prepaid Spend Amortization Event: Create Prepaid Spend Amortization: Initiate, Receipt Accrual Event: Create Receipt Accrual: Initiate, Accounting Journal Unpost Event: Unpost Journal: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "GL: Post Journal Entry"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Record Intercompany Receipt Event: Record Intercompany Receipt: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "OTC: Enter Customer Receipts"
}
],
"Priority": 1,
"Risk": "GL: Post Journal Entry conflicts with OTC: Enter Customer Receipts",
"RiskId": 1823
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "PTP: Create Invoices"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Process: Intercompany Payment/Settlement: Modify]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "PTP: Print Checks"
}
],
"Priority": 1,
"Risk": "PTP: Create Invoices conflicts with PTP: Print Checks",
"RiskId": 1848
},
{
"Assigned_MitigatingControls": [],
"Available_MitigatingControls": [],
"Description": "",
"Functions": [
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "PTP: Create Invoices"
},
{
"Description": "",
"Entitlements": [
{
"Entitlement": "[Procurement Mass Close Event: Mass Close Procurement Documents: Initiate, Procurement Roll Forward: Roll Forward Procurement Documents: Initiate, Verify Capital Project Expense: Review Capital Project Transactions - Supplier Invoices: Initiate]",
"EntitlementDescription": "",
"EntitlementDisplayName": "",
"ParentRole": "[Accountant]",
"Role": "Accountant"
}
],
"FunctionName": "PTP: Payables Transactions"
}
],
"Priority": 1,
"Risk": "PTP: Create Invoices conflicts with PTP: Payables Transactions",
"RiskId": 1866
}
]
}
}
{
"errorCode": "0",
"message": "SUCCESS",
"result": [
{
"ACCOUNT": 2,
"ENTLIST": [
"4351776###927###4359855###4359855###Accountant",
"4351775###890###4359855###4359855###Accountant",
"4351755###890###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1762
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351768###892###4359855###4359855###Accountant",
"4351758###892###4359855###4359855###Accountant",
"4351775###890###4359855###4359855###Accountant",
"4351755###890###4359855###4359855###Accountant",
"4351766###892###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1763
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351760###891###4359855###4359855###Accountant",
"4351759###891###4359855###4359855###Accountant",
"4351775###890###4359855###4359855###Accountant",
"4351755###890###4359855###4359855###Accountant",
"4352569###891###4359855###4359855###Accountant",
"4351763###891###4359855###4359855###Accountant",
"4351761###891###4359855###4359855###Accountant",
"4351762###891###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1764
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351775###890###4359855###4359855###Accountant",
"4351755###890###4359855###4359855###Accountant",
"4352568###942###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1769
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351760###891###4359855###4359855###Accountant",
"4351759###891###4359855###4359855###Accountant",
"4351775###890###4359855###4359855###Accountant",
"4351755###890###4359855###4359855###Accountant",
"4352569###891###4359855###4359855###Accountant",
"4351763###891###4359855###4359855###Accountant",
"4351761###891###4359855###4359855###Accountant",
"4351762###891###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1773
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351768###892###4359855###4359855###Accountant",
"4351758###892###4359855###4359855###Accountant",
"4352568###942###4359855###4359855###Accountant",
"4351766###892###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1775
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351760###891###4359855###4359855###Accountant",
"4351759###891###4359855###4359855###Accountant",
"4351768###892###4359855###4359855###Accountant",
"4351758###892###4359855###4359855###Accountant",
"4352569###891###4359855###4359855###Accountant",
"4351763###891###4359855###4359855###Accountant",
"4351761###891###4359855###4359855###Accountant",
"4351762###891###4359855###4359855###Accountant",
"4351766###892###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1780
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351775###890###4359855###4359855###Accountant",
"4351755###890###4359855###4359855###Accountant",
"4351764###894###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1781
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351768###892###4359855###4359855###Accountant",
"4351758###892###4359855###4359855###Accountant",
"4351764###894###4359855###4359855###Accountant",
"4351766###892###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1782
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351765###907###4359855###4359855###Accountant",
"4352572###916###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1821
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351768###892###4359855###4359855###Accountant",
"4351758###892###4359855###4359855###Accountant",
"4351765###907###4359855###4359855###Accountant",
"4351766###892###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1823
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351776###927###4359855###4359855###Accountant",
"4352571###956###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1848
},
{
"ACCOUNT": 2,
"ENTLIST": [
"4351776###960###4359855###4359855###Accountant",
"4351771###960###4359855###4359855###Accountant",
"4351776###927###4359855###4359855###Accountant",
"4351769###960###4359855###4359855###Accountant"
],
"MC": null,
"RISKS": 1866
}
]
}