What is derived role in SAP GRC-SAC - SAP GRC Access Control?

Key Concepts: 
A derived role is a type of role in SAP GRC Access Control that is automatically generated based on the user’s existing roles and responsibilities. It is used to simplify the process of granting access to users by automatically assigning them the appropriate permissions based on their existing roles. 

How to use it: 
To use a derived role, first create a base role that contains all of the necessary permissions for the user. Then, create a derived role that is based on the base role. The derived role will automatically assign the user all of the permissions from the base role, as well as any additional permissions that are required for their specific job. 

Tips & Tricks: 
When creating a derived role, it is important to ensure that all of the necessary permissions are included in the base role. This will ensure that all users who are assigned the derived role will have access to all of the necessary functions and features. Additionally, it is important to regularly review and update the base role to ensure that it contains all of the necessary permissions. 

Related Information: 
For more information about derived roles in SAP GRC Access Control, please refer to SAP’s official documentation here: https://help.sap.com/viewer/product/SAP_GRC_ACCESS_CONTROL/10.0/en-US/f3d7f9a8b2e04c8a9f3d7f9a8b2e04c8.html