Accepted Solutions (0)
Answers (1)
Hi Srikanth,
I have a similar business scenario where I have defined a new path ZGRAC_ESCALATION which goes to GRAC_ESCALATION. As notification I use GRAC_AR_ESCALATION which can be defined individually.
Instead of GRAC_POINT_CONTACT you can use GRAC_SECURITY.
Does this help?
Regards,
Alessandro
Hi Alessandro,
I want a custom notification message to be notified to security team.
For this custom notification I had created a document name ZGRAC_MSMP_AR_ESCALATION and made active. what will be the next step please.
Hi Srikanth,
define the template in the MSMP configuration and assign to the stage notification settings.
Variables & Templates:
Maintain Paths (Section Maintain Stages > Notification Settings)
Regards,
Alessandro
Thanks Alessandro it is clear but when I had gone to variables and templates I could n't able to modify Docu. object of GRAC_AR_ESCALATION.
I tried deleting and adding new one but i cannot see an option for docu.object.
Please suggest.Thanks!
Hi Srikanth,
first check the notification messages in SPRO (SPRO > GRC > AC > Workflow for Access Control > Maintain Custom Notification Messages). Make sure the template for esclation is available:
In the MSMP workflow you can then select the message class for escalation:
The docu object itself you can configure in SE61.
Alternatively please also check the configuration document from SAP which gives you further information: http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/80088ef0-2590-2e10-7696-fa36bfcff...
Keep me updated.
Regards,
Alessandro
Hi Alessandro,
Now I had done as mentioned but still if no role owner is there my request is stucking with status decision pending after manager approved where this should be come back to security team as I had submitted a role with no owners.
Kindly help on this please..
Hi Alessandro,
2039 is not there in our parameters but I found 2038 (Auto Approve Roles without Approvers) was set to YES
Hi Srikanth,
Approver not found - This condition is applicable to all stages in MSMP workflow. If this condition gets satisified entire request goes to escape path.
No Role Owner Found - This is applicable for role owner stage. You can route roles without owners to security stage as per your requirement.
Do you want the roles to be auto approved if the roles don't have role owners?
For this you can make use of GRAC_MSMP_ROUTE_NO_ROLEOWNER routing rule.
You can enable escalation settings at stage level as below.
Regards,
Madhu.
_900%20Display%20View%20_Notification%20Messages%20(Customer)__%20Details.png){kind=link}
I had set the parameter 2038 to NO and tried but still no luck the request is running with no logs in audit log .Manager approved then status gone to running.
Hi Alessandro and all ,
Thanks for your inputs , I had removed the routing maintained earlier in manager level and now escape route works.
But the custom notification which I created for NO_ROLEOWNER stage was not working.
I had created custom document ZGRAC_MSMP_AR_ESCALATION and maintained the same in 0MSMP_AR_ESCALATION i.e in Maintain custom notification settings.
And also maintained notification even in GRAC_SECURITY stage under NO_ROLEOWNER path but still no luck.
Other notification are working fine.
Please suggest.Thanks.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.