Dear experts.
I am confused about business role risk analysis.
We have functions defined for different systems, S1 and S2; we have generated rules for
both systems.
We run a risk analysis from Access Management tab -> Access risk analysis à Role level.
We select a business role with two derived roles in S1 system and none in S2 system.
We have defined a connector with type BUSINESS; the results shows correct risks for system S1, but it shows the same risks for system S2.
Is this correct? I think it isn`t because that business role doesn´t have roles in S2 system.
Someone canhelp me and clarifyif this is correct?
Many thanks in advance.