Solved: Access Control roles for RFC users

Former Member · ‎08-26-2010

Hi,

SAP provides a set of default roles to be assigned to RFC users. Following Security Guide 5.3 these roles are:

/VIRSA/AE_DEFAULT_ROLE (for Compliant User Provisioning)

/VIRSA/CC_DEFAULT_ROLE (for Risk Analysis and Mediation)

/VIRSA/FF_DEFAULT_ROLE (for Superuser Privilege Management)

/VIRSA/RE_DEFAULT_ROLE (for Enterprise Role Management)

In such guide and in section "5.5 Creating Custom RFC Roles" list all authorizations required for each module.

Our question here is:

Which roles do you assigned to the RFC users? The default ones? Is it better to defined your custom ones?.

Thanks for all. Regards,

Imanol

Former Member · ‎08-27-2010

Hi again,

Has anyone of you identified any issue with the default roles provided within SAP GRC AC?

Thanks for all. Best regards,

Imanol

Former Member · ‎08-27-2010

Hi,

It is easier to just go wtih the default roles but if you want to make sure that these roles are following client specific standards then create customized roles.

Regards,

Alpesh

Former Member · ‎08-27-2010

Hi again,

Has anyone of you identified any issue with the default roles provided within SAP GRC AC?

Thanks for all. Best regards,

Imanol

Former Member · ‎08-27-2010

I have used them most of the time and have not see any issues.

Alpesh

Former Member · ‎08-27-2010

Check out OSS Note # 1494733 as well.

Alpesh