on 10-09-2014 6:50 PM
Hello community,
We have one workflow configured to request double approval to grant roles to users. Firstly one Manager Approval and then the Role Assignment Approval. Sometimes the Manager and role Assignment are the same person.
My question is:
Is it possible to configure GRC AC to request only one approval at this cases (only when Manager and Role Assignment are the same person).
Thanks,
Pedro
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Madhu,
Thanks for your reply. I´ve checked the link but was not able to fully understand the content. This solution automatically detects when Manager and Role Owner are the same person, if it´s the case only one approval is requested. If Manager and Role owner are different persons the it requests both approvals.
All of this happening in the same WF. Correct?
Regards,
Pedro
Hi Pedro,
As per the link I have shared, In BRF+ they are comparing Manager value from GRACREQOWNER with Role Owner in GRACROLEAPPRVR table.
First please confirm if you are using standard ROLE OWNER agent or Customized Agent as the link I have shared works with standard Role Owner agent. If you are using BRF+ custom agent for role owner then we need to compare Manager value from GRACREQOWNER with Custom Agent Rule Result.
Regards,
Madhu.
Hello all,
I´m trying to configure the solution proposed (link bellow). To be honest I´ve never used BRF+ and can´t do the configuration based on that information. Already tried some help with my teammates but no luck.
I´m wondering if someone can share more details about this configuration. Maybe a more detailed documentation about how things should be done. This is important for my client.
Thanks in advance,
Pedro
Hello Prasant,
Thanks for your reply, your guide looks much more friendly than the other. Unfortunately I´m facing an issue at the first steps. I´ve created the rule exactly as recommended:
But when I opened the BRF+ I´ve faced the screen bellow:
When I right click it the option "Create" is not displayed. Also the application is not at the same hierarchy level as your print screens. Do you know why?
PS.: Everything was ok during the rule creating (green light for everything).
Regards,
Pedro
Prasant,
Thanks for your reply. The problem is your documentation says to create the DB Lookup at the Z_INITIATOR_DBL Application (at top node), but this app is not created at my environment (as you can see at my printscreen). Should I create this DB Lookups inside "Access Request Appro"?
Regards,
Pedro
I understood that. But I have only the three applications bellow, Z_INITIATOR_DBL was not created running the Generate MSMP Rule.
Inside wich application should I create the DB Lookup? Should I manually create an Application called Z_INITIATOR_DBL? How?
Sorry for the many questions, I´m not familiar with BRF+.
Thanks in advance,
Pedro
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.