cancel
Showing results for 
Search instead for 
Did you mean: 

GRC 10 - Risk analysis error "Error in RFC; 'No RFC authorization for function module /GRCPI/GR'"

Former Member
0 Kudos

Hello,

When we run Risk Analysis in NWBC, we get SoD results in the window but there is a message at the top of the screen that says "Risk analysis finished with error. Check log for details."

In SLG1, I get the following:

Error in RFC; 'No RFC authorization for function module /GRCPI/GR'

Message no. CL_GRAC_AD_MSG001

X_ (grayed out above) is our ERP-SRM Cross-system "connector group." Perhaps we have this configured wrong?

For background, this envrionment was migrated from a 5.3 environment. I can confirm that all functions/rules (including Cross system) have been migrated successfully.

Any guidance would be greatly appreciated!

Thanks

Jes

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
0 Kudos

Hi Luis,

Kindly assign  the role SAP_GRAC_ALL  to the RFC user .  This user can also be

assigned  the profile SAP_ALL.

Best Regards,

Nandita

Former Member
0 Kudos

Dear Nandita,

I show in the picture below, the RFC user in the back-end system.

You commented that you have assigned SAP_ALL and SAP_NEW.

Thanks!

Answers (6)

Answers (6)

Former Member
0 Kudos

Hello Prasant and Fernando,

This problem was solved, we added the role Z_RFCGRC to user ID FF_ID and now it's working fine.

Thanks for your help.

Regards,

Inês

Former Member
0 Kudos

Hello all,

We have a similar issue. But for us appears when we make a logon to SuperUser, and filled the field of reason code - EAM

The RFC have the authorization objects and the role SAP_ALL.

Could you help us?

Thank you.

Regards,

Inês Costa

former_member193066
Active Contributor
0 Kudos

ISSUE OF authorization of RFC user in Target system.

the system user in target system maintained in RFC does not have authorization.

Regards,

Prasant

former_member193066
Active Contributor
0 Kudos

ISSUE OF authorization of RFC user in Target system.

the system user in target system maintained in RFC does not have authorization.

Regards,

Prasant

Former Member
0 Kudos

Hello Inês,

This error usually happens when you set the RFC connection to use the 'Current User' to log into the target system.

You will find this error if you perform an Authorization test directly in SM59.

In This case, the user you have logged does not have authorization to execute FMs in the target system.

Best Regards,

Fernando

Former Member
0 Kudos

Oi eu tenho o mesmo problema, how can i resolved this?

thanks

Former Member
0 Kudos

thanks guys I'll try this configuration and tell them.

Former Member
0 Kudos

Hi,

Were you able to resolve this issue?

Kind Regards

Vishal Patnaik

Former Member
0 Kudos

To fix our issue, we initially assigned the SAP_ALL to our RFC user and are now working to build a custom role based (for the RFC user) based on the specifications provided in the SAP GRC AC 10 Security Guide.

Thanks!

Former Member
0 Kudos

Dear Jes,

You SAP_ALL assigned RFC user in ERP or GRC?

Thanks in advanced.

Former Member
0 Kudos

Luis,

The RFC user is used to connect to your ERP system, then it has to be created in the ERP system and assigned the corresponding permissions according to the security Guide as mentioned by Jes

Kindly check section 4.3:

https://service.sap.com/~sapdownload/011000358700001377352010E/ACPCRM10_SG_SP10_en.pdf

Cheers,

Diego.

Former Member
0 Kudos

That is correct. Thank you, Diego!

Former Member
0 Kudos

Dear,

     I have the same problem "Error en RFC; "No RFC authorization for function module /GRCPI/GR", but in BRM specifically in creation a single role, ¿could you solve this problem?.

Thanks in advanced

Former Member
0 Kudos

Hello Luis,

Have you checked the permissions of the RFC user in the back-end system according to section

4.3.1RFC Authorization Objects for Access Control

in the the Security Guide?

Cheers,

Diego.

Former Member
0 Kudos

Diego,

RFC user has all permissions and roles, some other reference. ¿Any link to the guide you mention?

Thank you.