|Applies To||RSA Product Set: Archer|
RSA Product/Service Type: Packaging, Self-Assessment
RSA Version/Condition: 6.0
Risk Assessment Data updates via the Field Mappings should be strictly prohibited. We should never allow users to update the xrefs between the assessment application with the field mapping process.
Create Self-Assessments node in WP has 3 mapping attributes associated to the node. Fields that should be protected by the system, and no mapping updates into the target (BPAD, RAD, or CAD) should be allowed in the following fields:
*All calculated fields, IR fields, system Tracking IDs, etc. should also be removed from the Target dropdown list. Fields that cannot be updated via a similar action in Feeds or WebAPI calls, should be excluded from the target list availability.
|Resolution||Upgrade to RSA Archer 6.1 or higher.|