- SAP Community
- Products and Technology
- Additional Q&A
- Access Request Role Selection
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Access Request Role Selection
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 09-09-2013 10:50 PM
Hello, I was wondering if there is a way to limit users from selecting role based on request type. We do not want user selecting any roles within
the repository for our “Default Access” Request type. We want to lock this down to 1 role. If users choose the “additional
Access” request type we would allow them to select any role.
The only thing I’ve found you can restrict on is functional area or business process via parameter 2033 and 2034. Which doesn’t really restrict
user since they could just choose a different BP or Functional Area?
Any suggestions would be appreciated.
Accepted Solutions (0)
Answers (3)
Answers (3)
jatin_grover
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Kyle, You need to use Auth object GRAC_ROLEP.
Check note 1704649.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
There is no option to select roles based on request type. restricion of role selection will only be possible using functional area and business process.
there is a feature called default roles, which is also based on role attributes.
but selecting roles based request type feature is not available in GRC.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hi Kyle,
Try restricting the requester's access by restricting the authorization object GRAC_ROLE. Here you can specify the role name.
I hope this will help.
Thanks & Regards
Japneet Singh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Scheduled Report shows successful status; but Mail server never Receives... Where's the problem? in Technology Q&A
- SAP CAP: Controller - Service - Repository architecture in Technology Blogs by Members
- 1H 2024 - Release highlights of SuccessFactors Performance and Goals in Human Capital Management Blogs by Members
- Dynamically Changing Measures in Chart in Technology Q&A
- How to set up the Data Migration Cockpit in Enterprise Resource Planning Blogs by Members
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.