Figure 24 shows the screenshot of the Segregation Rules webpage. The first action a user must undertake is the creation of Segregation of Duty (SoD) rules. The SoD rules used are built using all the imported application attributes which are grouped into business roles, where particular attributes for that business role cannot go together. These are known as the toxic lists.
Figure 24 - Segregation Rules Screenshot
Screen Interactions
To create a grouping the user must first setup 'Business Roles'. Please see section 4.2.3.
Once the business roles are in place the user selects the application, this changes the view in the centre of the screen to display the chosen applications attributes.
The user then selects the 'Business Role' to create a toxic list for. This updates the centre of the screen to show any attributes in the right hand table that the business role should not be assigned.
The user can then add and remove attributes using the centre buttons. Once all changes have been made the toxic list can be saved by clicking on the 'Save' button.