Hi experts,
Looking for solution on how to implement PSS in GRC AC10 with the following option:
Steps are
1. User wants to reset his/her password.
2. Goes to NWBC Link
3. Put the user id
4. Clicks on < Forgot Password >
5. Security question is asked
6. User gets a mail in his/her mail box with a link to reset the password
Regards,
Sudha M
Hi All ,
I need advice if we can both have both pre-approved and approval required EAM Access in SAP .The EAM access which my organization should be combination above. I have went through the documentation on EAM - Provisioning Strategies which gave a good idea on EAM .
http://scn.sap.com/docs/DOC-57322
The problem which I am having after I have configured the EAM Access in NWBC
I was able to login using Firefighter IDs without approval even though the owner rejected the request .
Checked the parameter 4007 and 4008 both was set to Yes,
Would that mean we can only have either pre-approved and approval required EAM Access . Much help advice on this .
Regards
Kumar
Hi GRC gurus
Our client requires approval of access requests to be done based on combination of company and functional area. So I have used BRF+ rules to create Initiator and Agent rules and then activated the rule IDs. Then I have added the Initiator and Agent rule IDs to the MSMP workflw, created the approval agents by assigning them to the Agent rule ID, created paths and assigned the rule result values to the paths. Then generated a new version of the MSMP workflow configuration.
But when I am submitting an access request , I am getting an error mesage"Item '0001' resulted to ''; cannot resolve path; check routing mapping. Request submit failed; error in MSMP submit method.
I checked the route mapping. It seems to be correct.I had assigned the rule result values to the Path IDs(same name as the rule results value).
If you have any suggestions please reply at the earliest.
Thanks in advance.
Hello everyone!
Customer is requesting a customized NWBC screen. He wants us to remove unused links for specific users, some will see them others don´t.
I was able to find some content related to the object CA_POWL and Launch Pads but I wasn´t able to do the trick. Can please someone tell me the best way to customize this screen and how?
Best Regards,
SAP Legend
Hello,
Is it possible for an approver to manually select ruleset for risk analysis is access request. Parameter 1025 is configured to include multiple rulesets. In access request risk analysis field is greyed out and approver is unable to select desired ruleset.
Thanks in advance.
Can anyone point me to the SAP GRC User Guide. I have been unable to locate in help.sap.com. I am having an issue and would like to check the documentation before I post my issue here.
thanks
MK
Hi All,
I have configured the EAM general setting. Now I want to setup the workflow .Is there any step by step guide to fire fighter provisioning through workflow.
We have generated standard MSMP workflow for FF logs but can you suggest how to proceed with BRF+ Settings and configurations required for the same.
Thanks,
Shivani
Hello Experts,
I am working on GRC 10 EAM configuration at SP07.
The EAM Firefighting scenario is working on ie.Firefighter can login to backend R3 system and performed
FF activities but when i update the FF Logs GRC system doesnt show any logs in the system.
The logs are present in R3 system in STAD, CDPOS, SM20 etc.
The TIme Zones are same in both GRC and R3 system.
But Except Table GRACFFLOG.
NO other Log related table is getting updated after running log update Sync job successfully.
Please let me know if anybody has faced this issue or any advise on what is need to be checked.
Any help is much appreciated.
Regards,
Yatin Phad
Hi Experts
I want to start studying for GRC 10 but I don't have any documents on this subject, and there is not much out there in regards this tool so can anyone help me out with this. I am starting from the beginning so would like details please, my reason for this is I want to peruse the accreditation for GRC 10
I know there is a course on GRC 10 but at £2600 a pop I am in no position to spend this until I have something to go on first.
I look forward to your reply's
Thanks
Mark
Hello,
Anyone saw a presentation of GRC 10.1? What about new functionalities? (in particular in AC)
It looks likes the ramp up will be available for customers from tomorrow...
Julien
Hi Experts,
I am new to GRC AC 10 and I need to configure workflow for various modules of AC.
How do I configure the same and are there any documents highlighting the various steps involved in the same.
Thanks,
Arjun
1. What are the components of GRC?
2. What are the upgrades happened in GRC 5.3 from GRC 5.2?
3. Is it possible to have a request type by which we can change the validity period of a user? If possible, then what are the actions?
4. What's the latest Support Pack for GRC 5.3? How it differs from the previous one?
5. What are the issues faced by you in ERM & CUP after golive?
6. Can we change Single roles, objects & Profile description through mass maintenance of role? If yes, how?
7. What are the prerequisites for creating a workflow for user provisioning?
8. How will you control GRC system if you have multiple rulesets activated?
9. Can we view the changes of a role, happened in PFCG, through GRC?
10. How will you mitigate a user against an authorization object which is decided as sensitive by Business?
11. Give an example of SOD with object level control & also decide the Risk implication from the Technical standpoint.
12. Is it possible to assign two roles with different validity period to a user in one shot through GRC? If yes, how?
13. What's the use of Detour path? How Fork path differs from Detour path?
14. How can you enable self password reset facility in GRC?
15. Can we have customized actions for creating request types in CUP?
16. Which SOX rules got inherited in SAP GRC?
17. How many types of Background job you are familiar with? Why Role/Profile & User Sync. job is required?
18. Where from can we change the default expiration time for mitigating controls? What's the default value for the same?
19. How will you do the mass import of role in GRC?
20. Explain the total configuration & utility of SPM?
21. Can we create Logical systems in GRC? If yes, how & what can be the advantages & disadvantages of the same?
22. Can we have different set of number ranges activated for request generation?
23. Explain, how can we create derived roles in ERM? What will be the significant changes in methodology for creating composite roles?
I have a problem when setting the decision table for the request to route approvals by the user's role. share settings to request your help.
Simulate the decision table but does not generate any errors, by creating an application does not generate any message me and I aprece no data instance,.
My purpose is to configure the BRF for approvals by the name of ROL be routed. I appreciate your cooperation and guidance on the subject.
Regards,
Freddy Cortes,
Hi,
My client has recently upgraded their GRC module to Release 10.0 SP13. Now when they create a Self-Assessment within the Planner, it shows the Sub-process owners name instead of the Control Owners name, even though it's sending the Self-Assessment to the Control Owner.
I'm at a dead end on how to change change this back. See screenshots below:
Hi All,
I have configured the EAM general setting. Now I want to setup the workflow .Is there any step by step guide to fire fighter provisioning through workflow.
We have generated standard MSMP workflow for FF logs but can you suggest how to proceed with BRF+ Settings and configurations required for the same.
Thanks,
Shivani
Hi,
I've found that the mitigating control IDs can be modified and this updates the local control as well. I've also found that this is due to the SAP Note
"1675082 - Mitigating Control ID Can not be changed after Creation".
I would like to know why this SAP Note was created and the effect on the GRC system if the mitigating control ID is changed when the system allows it. I would like to know if there are any adverse effects in doing this.
Thank you.
Best Regards,
Raphael
Hello,
i configured my system accoring the configuration guides.
But when I start e.g. Access Risk Analysis for User Level/Role Level/Profile Level... no output data will be displayed!?
i ran all the Sync Jobs and SLG1 doesn't give me any errors.
FF and PSS both works fine.
FYI: Also in Business Role Management (BRM) no roles are displayed... maybe these two issues could be caused by the same problem?!
Thank you in advance
regards
Edgar
Sorry for the triviel question. Thanks!
Has anyone seen any documentation or know how to exand the choices in GRC 10.0 (SP08) Firefighter Log review? When controller reviews log, he can hit "submit" to approve. Our audit team would like other options ("revoke security" or "inappropriate action; should be reversed", etc). I do see "Other Action" but only offers "Hold".
Thanks in advance..
Hi Experts!
I need their divine help:
I'm seting the Password Self Service in GRC. My System Satellital is a CUA, here I'm configuring the service, I executed all the steps defined in this guide:
Password Self Service & End User Logon Configuration - AC10
But when I test the service GRAC_UIBB_END_USERLOGIN, I can loggin me, I can define a question and an answer secret, but I Can't select a system for the reset, because in the windows not shown any system. When I seach a systems, appear the error message:
"No records found for the search criteria selected"
I put this value in the field of system: *GRD* because I configured the systema GRD100 for test the service.
What do I need activate for fix this issue?
Thanks!!!!