on 12-19-2014 2:25 PM
Hi All,
We have configured GRC 10.0 EAM centralized Fire-fighter. When end user logons into GRC system and execute Tcode GRAC_SPM then user not able to view logon tab in GRC system. Please mention the authorizations and Roles required for Firefighter User in source and target system.
Thanks& Regards,
Shivani
Hi Shivani,
Please check RFC user authorization (run ST01 in ECC system).
Kind regards,
Karolina
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Deepak,
I have checked FFID and its Service user as mentioned but i reset the password for user and it worked for me.I was able to access FFID but when i execute FF ID then it takes me to new session but at backend it throwing Runtime error as below.
Also for Firefighter user tabs like additional information and message to firefighter is still disabled.
Hi Colleen,
I have done all the settings in NWBC ie.
1)Maintained Owners and controllers
2)Assign Owner to Firefighter ID
3)Assign Firefighter ID to firefighter and Controller
I also made a quick check by assigning SAP_ALL to firefighter and it worked for me. It is authorization issue if anybody can specify if any additional authorization objects required for firefighter other than super user role OR for Firefighter ID ?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thanks Colleen i have performed SU53 and trace on user and added missing authorization objects to super user role.Now Firefighter ID and logon tab are displayed but once i click on logon tab and enter reason code and click enter it gives below error
You have not password,you cannot log on using password.
Please suggest..
I have maintained FFID as Service in ECC system and Firefighter user type as Dialog in GRC system.
Hi Keroline/Deepak,
Thanks for your response!
I have assigned below roles to Firefighter (End user) in GRC system along with Z_SAP_GRAC_SUPER_USER_MGMT_USE,
Z_SAP_GRAC_NWBC,
Z_SAP_GRC_FN_BASE
Z_SAP_GRC_FN_BUSINESS_USER
which includes transaction code GRAC_SPM and S_RFC all access and maintained Parameter value 4010 same as Z_SAP_GRAC_SPM_FFID both in GRC and target system and same role has been assigned to Firefighter ID in target ECC system.We also ran all sync jobs after creating users.
But once end user logins into GRC system and execute GRAC_SPM no Firefighter ID or Logon tab is displayed to the user.
Please suggest..
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Shivani,
Maybe this is authorization issue. Firefighter user in GRC system should have assigned dedicated EAM firefighter for centralized firefighting role with GRAC_SPM transaction. In target system FF ID should have assigned role with S_RFC object (The name of this role MUST be the same configured in the parameter 4010 in the GRC ). Additionally RFC user with dedicated role should be created in target system and assigned in GRC system to connector (in SM59 transaction) to allow GRC system to communicate with target system.
Maybe following document will be useful:
Kind regards,
Karolina
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
16 | |
3 | |
2 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.