- SAP Community
- Products and Technology
- Additional Q&A
- How to Sync Users between GRC AC10 System and ERP ...
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
How to Sync Users between GRC AC10 System and ERP System
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 08-09-2012 4:15 AM
Hello Gurus,
We have a situation where every user in ERP should be able to request for Firefighter ID access, due to which user on ERP production should also exist on GRC production system.
We have designed a workflow where in a request is created for provisioning a New User in ERP Production system which happens after certain approval stages.
Now we want that the New user which is created in ERP system should also get created in GRC production system and appropriate role has to be assigned to the user .i.e both system should be in SYNC.
Please note we do not have a CUA system/functionality in place.
Is it possible to achieve this SYNC between ERP and GRC via workflow or any IDOC or any other way ??
Please suggest.
Regards,
Victor
Accepted Solutions (1)
Accepted Solutions (1)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hi Victor,
I haven't tried it myself, but I'm pretty sure that you could map default roles and systems against a request type, e.g. new user request. This would allow the creation of the user on the GRC box.
Review these parameter settings:
| Access Request Default Roles | 2009 | YES | Consider Default Roles | |
| Access Request Default Roles | 2010 | 001 | Request type for default roles | |
| Access Request Default Roles | 2011 | REQUEST | Default Role Level | |
| Access Request Default Roles | 2012 | SYSTEM | Role Attributes | |
| Access Request Role Mapping | 2014 | YES | Enable Role Mapping | |
| Access Request Role Mapping | 2015 | NO | Applicable to Role Removals |
Afterwards you need either a FF assignment workflow or manually assign the user to a firefighter.
An alternative approach would be to implement SP09 (or SP10?) where you could choose if you want the central log in from the GRC box, or if you want client specific firefighter log in as we were used to in FF 5.3.
Kind Regards,
Vit
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Answers (0)
- SAP Build Process Automation Pre-built content for Finance Use cases in Technology Blogs by SAP
- How to configure SAP system in Eclipse ? in Technology Q&A
- Demand Planning using historical sales data when just gone live with S/4HANA Cloud Public Edition in Enterprise Resource Planning Q&A
- Stock Ageing Report just gone live of SAP S/4HANA Cloud Public Edition in Enterprise Resource Planning Q&A
- Unable to remove attachment in "Managed Purchase Requsition" Apps in Fiori in Enterprise Resource Planning Q&A
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.