on 10-31-2014 2:49 AM
Hi All ,
I have a very basic question on FF definition . We decided that all consultant should have access as FF User .
Would that mean in NWBC I need to specify each of their SAPUID under the respective FireFighter ID..
Example Fire Fighter ID : FFIDXX01
Fire Fighter User ID : CONSULTANT1; CONSULTANT2;
Regards
Amir
Hi Amir
You need to step back and figure out the design and usage of the accounts. Options can include:
Aproach 1
Each user has is granted a FF Id. Therefore, if you have 300+ support users then you will need 300+ FF Ids.
E.g 300 Users = 300 FF Ids
Approach 2
Multiple users have are granted to FF Id. You group users into their job function and assign them to the FF Ids.
Example: You have 300+ support users across 10 modules. Therefore, at a minimum you would need 10 FF Ids and multiple User to FF Id assignments. Due to the 300+ people you might allow multiple FF Ids for each module (i.e. 3 FF Ids for Finance).
Approach 3
You have a hybrid of the two areas to overcome the shortcoming of both. For high volume areas like security you might assign each user their own FF Id (1 to 1 mapping) whilst other areas you might assign a shared Id.
The FF Logs which User accesses which FF Id so you are all good there.
Depending on your business requirements, you might want to enable ARQ workflow for FF requests to manage the administration and allow controllers to approve. Part of your design is also if the Support Users are permanently assigned the FF Id are must request them when they need them.
Regards
Colleen
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Colleen ,
Thank you as usual on your feedback it provide me a good perspective on how to move forward .
I have suggested to use the 2nd approach however they won’t logging into GRC prior logging into ECC instead directly to GRC .
@ Baithi I have checked the SAP Note and seems it used for upgrade . Thank you for again for your feedback .
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Baithi ,
I do agree initially i did created 1 FF user for 1 FF ID for each Module ( Basis , Security , Functional , BW) however since this was not agreed now the management would like to have everyone access to FF as this would controlled via approval workflow . Since i am still newbie to GRC module bit stuck now how to do this .
From my reading if all consultant should have access to GRC box to execute FF via /N/GRCPI/GRIA_EAM i assume we need to define following in NWBC as we have over 300++ consultant in organization .
Example Fire Fighter ID : FFIDXX01
Fire Fighter User ID : CONSULTANT1; CONSULTANT2; ++ ++
Regards
Amir
Hello Amir,
Yes, We have to assign in NWBC
i have not done practically mass user assignments for FF
if you are looking for mass assignments,check below note,might helps you.
1744929 - Mass Upload of Assignments for EAM
BR
Baithi
User | Count |
---|---|
16 | |
3 | |
2 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.