on 12-02-2014 10:41 AM
Hi GRC Experts
Here we need to manage Enterprise Portal account via Access Control ARM, I know that before the user select EP roles in Access Request, we need to firstly import the EP roles into BRM. Please refer to the following snapshot, I cannot find the application type "Enterprise Portal", it seems that there's no way to import EP roles Can someone please help me? Thanks a lot
I would appreciate any link or knowledge share reference.
BR, James
Hi James,
Depending on your GRC version please check below notes and complete EP configuration required in GRC
1607232 - GRC 10.0 Enterprise Portal Configuration
1977781 - GRC 10.1 Enterprise Portal Configuration.
Regarding role import for EP systems, you can refer
1937479 - Unable to import EP roles in BRM 10.0
Regards,
Madhu.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Madhu
I downloaded the none PFCG role template, there are 3 columns defined, the first column should be portal role PCD path; second column should portal role description; the last column should be the iView PCD path, right? Also, I found that the maxim length is just 50, is that means that if our iView pcd path exceed 500, the ARA analysising portal roles or BRM importing portal roles will not work? Thanks a lot
Best regards
James
James,
please see note: http://service.sap.com/sap/support/notes/1929820
It says: "Portal roles are always imported as role type single and Landscape should be of type Enterprise Portal."
Regards,
Alessandro
Hi Madhu
I imported EP role now Thank you very much
Here I'm trying to create new EP account and assign the imported EP role to the created accont, but it seems that it does not work
Here is the workflow log
Here is the background parameter setting
Do I need configure more parameters? Thanks a lot
Best regards
James
Hi James,
Please check if the below notes helps.
http://service.sap.com/sap/support/notes/2033714
http://service.sap.com/sap/support/notes/2029592
http://service.sap.com/sap/support/notes/2025129
Regards,
Madhu.
Hi James,
Even am getting same error message "Role already assigned" but its not assigned.
Please advise ?
Thank you.
Regards,
Abhi
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Abhi,
The provisioning engine first squeezes the assignment in internal GRC AC tables like GRACUSERROLE etc.
(such also happens if the engine encounters other errors in its routines afterwards)
When doing assignments it first checks these internal tables to see if assignment is already done.
If you rerun synch report GRAC_REPOSITORY_OBJECT_SYNC for your portal connector(s) those internal GRC tables will be updated (cleansed) again. Then error message "Role already assigned" should be gone.
Cheers,
George
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.