Beruflich Dokumente
Kultur Dokumente
Check FF user has authorization to ACTVT 03, and User Group * in S_USER_GRP Object(sap_grc_fn_base)
If you don’t maintain actvt 3 , u cant perform logon and actvt 5 ,you cant perform additional activity.
Make sure the role name maintained parameter 4010 is assigned to the FF ID in target system.
Make sure EAM master data synch job is running.
You need to check the parameters 1000 (The Plug-in Connector) & 1001 (The GRC Connector) in the Plug-in system.
Make sure your RFC user has all the required authorizations. RFC user has SAP_ALL profile
As per GRC Administrator …assign owner types to users in grc system under access control owners.
Frequency of usage (firefighter access) is tracked by reason code.
To view usage by system, select the reason code, then click Open.
Note: if you are unable excute the required tcodes in target system in case of eam…check the service id/ firefighter id (in backend system/arget system) is assigned with profile
sap_all or not …if not then assign …now you can excute
Reports:
RSUSR000 Currently Active Users(Active users are the total number of users in the system.
Interactive users are the users logged on by sap logon.
RFC users are the users logged on by rfc, )
RSUSR003 Check the Passwords of Users SAP* and DDIC in All Clients
RSUSR004 Restrict User Values to the Following Simple Profiles and Auth. Ob
RSUSR050 Comparisons
RSUSR200 List of Users According to Logon Date and Password Change ..vimp
RSUSREXT Enter Correct SNC Names in Table View VUSREXTID (from SAP R/3 4.5)
RSUSREXTID Enter Correct SNC Names in Table View VUSREXTID (from SAP R/3 4.5)
User/Security tables
Grcac12.0:
SAP is now applying its strategy to move towards mobile devices to the GRC. Therefore it has implemented a large portion of the relevant GRC functions on a
Fiori Launchpad. These now appear as tiles (on that Launchpad) and offer a unified entry point for all GRC Fiori Apps. Also, each user is able to personalise
their own Launchpad and can add, remove or sort apps via drag and drop.
By moving to a Fiori Launchpad, GRC 12.0 offers increased productivity and higher transparency, because users have faster acc ess to relevant information.
Some apps already have KPIs on their tile, e.g. the 'Control Status' or the 'Issue Status'. This means that by just looking at the Launchpad the user will get
significant information right away. Instead of having to pull information out of the system, GRC 12.0 is now pushing the most important numbers to the user.
. Improved user experience
Perhaps the biggest benefit of SAP GRC 12.0 is an improved user experience, which has been significantly improved from
GRC 10.1.
This is partly because SAP has now included GRC in its broader strategy of moving towards mobile devices. So, you can now
access the functionality and features of 12.0 through Fiori Launchpad, which at a stroke increases the accessibility of the s uite
to users across your organisation and ensures people can do what they need to do while away from the office. This promises
to greatly speed up working practices, particularly as managers - wherever they are - can now immediately review and
approve time-sensitive access requests.
And, along with enhanced access capability, the interface itself is now simpler, cleaner and more intuitive. Modules appear as
tiles, and you can personalise your own Launchpad and use drag and drop to add, remove and sort apps.
Overall, the improved UX of SAP 12.0 will increase productivity and provide greater transparency - as all users now have
faster and easier access to relevant information.
2. Easier user adoption
Although SAP GRC 12.0 is very much new and improved, functionality will be familiar to any user of SAP GRC 10.1 –
making it easy to adapt to and understand. Although things may look different, it is designed to enable an easy transition, so
there will be no vast manual to read, or endless rounds of classroom training to sit through.
At most, what is needed are brief release notes with simple step-by-step instructions introducing users to the key changes. In
short, users can hit the ground running with 12.0 - meaning no costly bill for training or ongoing technical support.
3. Enhanced integration
Cloud applications are now supported via Cloud Identity Access Governance (Cloud IAG) in SAP 12.0. This an important
milestone for the increasing number of SAP customers adopting SAP Cloud solutions such as Ariba, Fieldglass and Concur.
Now that Access Control 12.0 integrates with Cloud IAG, the Risk Analysis and User Provisioning processes can be catered
for across SAP On-Premise and Cloud applications natively. There is also end-to-end integration with SAP SuccessFactors, as
well as access analysis for the following:
SAP Identity Management for centralised provisioning and business role management
Ability to interact with all levels of the user community and project team.
Damu anna:
All these owners, monitors, controllers etc are to be created as end users in GRC Server.
To find the owner (Role content owner) and approver (assignment approver) from the table through SE16
provide
https://www.youtube.com/watch?v=BMSjdbZy-
qc&list=PLpnQrZBJqekENg11DyQTFjEHmMdy6AhcZ(traditional yoga)