cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

GRAC_RISK_ANALYSIS_WOUT_NO_WS

Former Member

on ‎02-17-2015 1:57 PM

0 Kudos

Gurus,

We are attempting to leverage the GRAC_RISK_ANALYSIS_WOUT_NO_WS webservice to perform an SOD analysis on requested access. This call is coming from 3rd party Identity Management tool (not SAP IdM). We are passing the below parameters in the call. Only the highlighted parameters are being updated and passed. The rest are unchanged. When we submit this request, we get a return from the service stating that the submission was successful. We can see in SLG1 that the SOD Analysis was completed. The problem is that we do not get the SOD results returned by the webservice. We have confirmed that there should be risks returned by this because we have  executed the same simulation within the GRC applicaiton directly using the same parameters. Isn't this webservice suppposed to bring back the results of the risk analysis??

BTW, we are using SOAPUI tool to test this functionality.

Any assistance/direction is appreciated.

<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:urn="urn:sap-com:document:sap:soap:functions:mc-style">

   <soapenv:Header/>

   <soapenv:Body>

      <urn:GracIdmRiskWoutNoServices>

         <!--Optional:-->

         <AddlAttrib>

            <!--Zero or more repetitions:-->

            <item>

               <AddlAttrib>06,05,14</AddlAttrib>

            </item>

         </AddlAttrib>

         <!--Optional:-->

         <ApplicationType></ApplicationType>

         <!--Optional:-->

         <BusinessProc></BusinessProc>

         <!--Optional:-->

         <ConnectorId>

            <!--Zero or more repetitions:-->

            <item>

              <Connector>MR8CLNT500</Connector>

            </item>

         </ConnectorId>

         <!--Optional:-->

         <HitCount></HitCount>

         <!--Optional:-->

         <Language></Language>

         <!--Optional:-->

         <ObjectId>

            <!--Zero or more repetitions:-->

            <item>

               <Objid>SAPID</Objid>

            </item>

         </ObjectId>

         <!--Optional:-->

         <ObjectType>USR</ObjectType>

         <!--Optional:-->

         <OrgLevel></OrgLevel>

         <!--Optional:-->

         <OrgRule>

            <!--Zero or more repetitions:-->

            <item>

               <OrgRule></OrgRule>

            </item>

         </OrgRule>

         <!--Optional:-->

         <OrgVal>

            <!--Zero or more repetitions:-->

            <item>

               <OrgVal></OrgVal>

            </item>

         </OrgVal>

         <!--Optional:-->

         <ReportFormat></ReportFormat>

         <!--Optional:-->

         <ReportType>

            <!--Zero or more repetitions:-->

            <item>

               <ReportType></ReportType>

            </item>

         </ReportType>

         <!--Optional:-->

         <RiskId>

            <!--Zero or more repetitions:-->

            <item>

               <RiskId></RiskId>

            </item>

         </RiskId>

         <!--Optional:-->

         <RiskLevel></RiskLevel>

         <!--Optional:-->

         <RoleType></RoleType>

         <!--Optional:-->

         <RuleId></RuleId>

         <!--Optional:-->

         <RuleSetId></RuleSetId>

         <!--Optional:-->

         <Simulation>

            <!--Zero or more repetitions:-->

            <item>

               <Connector>MR8CLNT500</Connector>

               <Simuobtype>ROL</Simuobtype>

               <SimuobjidLst>

                  <!--Zero or more repetitions:-->

                  <item>

                     <Simuobjid>ZNSBCBC001:0000_BASIS-NON-PROD</Simuobjid>

                  </item>

               </SimuobjidLst>

               <Excludesimu></Excludesimu>

            </item>

         </Simulation>

         <!--Optional:-->

         <SimulationRiskOnly>X</SimulationRiskOnly>

         <!--Optional:-->

         <UserGroup></UserGroup>

         <!--Optional:-->

         <UserType></UserType>

      </urn:GracIdmRiskWoutNoServices>

   </soapenv:Body>

</soapenv:Envelope>

Show replies
Show replies
former_member89102
Explorer
‎03-16-2020 11:02 AM
0 Kudos

Could you please help me to understand the usage of

<AddlAttrib><!--Zero or more repetitions:-->

<item><AddlAttrib>06,05,14</AddlAttrib></item>

</AddlAttrib>

How you have implemented addlAttrib parameter ?

Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

Former Member
‎06-28-2016 5:03 PM
0 Kudos

Hi,


Even though the Web Service Definition for "GRAC_RISK_ANALYSIS_WOUT_NO_WS" says the Report Type and Report Format input parameters are optional, it will not provide the Risk Analysis Data unless and until these input parameters are specified explicitly.


Please find the below possible values for Report Type and Report Format!


Also find the example SOAP Request mentioned below!



Note: Simulation element is commented out


<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:urn="urn:sap-com:document:sap:soap:functions:mc-style">

   <soapenv:Header/>

   <soapenv:Body>

      <urn:GracIdmRiskWoutNoServices>

         <!--Optional:-->

         <AddlAttrib>

            <!--Zero or more repetitions:-->

            <item>

               <AddlAttrib></AddlAttrib>

            </item>

         </AddlAttrib>

         <!--Optional:-->

         <ApplicationType>SAP</ApplicationType>

         <!--Optional:-->

         <BusinessProc></BusinessProc>

         <!--Optional:-->

         <ConnectorId>

            <!--Zero or more repetitions:-->

            <item>

               <Connector>ECCCLNT*</Connector>

            </item>

         </ConnectorId>

         <!--Optional:-->

         <HitCount></HitCount>

         <!--Optional:-->

         <Language></Language>

         <!--Optional:-->

         <ObjectId>

            <!--Zero or more repetitions:-->

            <item>

               <Objid>SAPUSERID</Objid>

            </item>

         </ObjectId>

         <!--Optional:-->

         <ObjectType>USR</ObjectType>

         <!--Optional:-->

         <OrgLevel></OrgLevel>

         <!--Optional:-->

         <OrgRule>

            <!--Zero or more repetitions:-->

            <item>

               <OrgRule></OrgRule>

            </item>

         </OrgRule>

         <!--Optional:-->

         <OrgVal>

            <!--Zero or more repetitions:-->

            <item>

               <OrgVal></OrgVal>

            </item>

         </OrgVal>

         <!--Optional:-->

         <ReportFormat>1</ReportFormat>

         <!--Optional:-->

         <ReportType>

            <!--Zero or more repetitions:-->

            <item>

               <ReportType>2</ReportType>

            </item>

         </ReportType>

         <!--Optional:-->

         <RiskId>

            <!--Zero or more repetitions:-->

            <item>

               <RiskId></RiskId>

            </item>

         </RiskId>

         <!--Optional:-->

         <RiskLevel></RiskLevel>

         <!--Optional:-->

         <RoleType></RoleType>

         <!--Optional:-->

         <RuleId></RuleId>

         <!--Optional:-->

         <RuleSetId></RuleSetId>

         <!--

         <Simulation>

           

            <item>

               <Connector>?</Connector>

               <Simuobtype>?</Simuobtype>

               <SimuobjidLst>

           

                  <item>

                     <Simuobjid>?</Simuobjid>

                  </item>

               </SimuobjidLst>

               <Excludesimu>?</Excludesimu>

            </item>

         </Simulation>

        

         <SimulationRiskOnly>?</SimulationRiskOnly>

         -->

         <UserGroup></UserGroup>

         <!--Optional:-->

         <UserType></UserType>

      </urn:GracIdmRiskWoutNoServices>

   </soapenv:Body>

</soapenv:Envelope>

Show replies
Show replies
Former Member
‎06-01-2015 12:43 PM
0 Kudos

Michael,

What is the object ID and Object type value you entered? Please can you share what other field values you populated for this WSDL in SOAP.

Thank you.

Regards,

Kiran

Show replies
Show replies
Former Member
‎06-01-2015 9:07 PM
0 Kudos

Hello Kiran -

The following XML is what I provided to Michael and I believe that he found it to be useful.  If further info is needed please let me know.  It was not pleasant working through this with limited info so I hope others do not have to do the same.

<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:urn="urn:sap-com:document:sap:soap:functions:mc-style">

   <soapenv:Header/>

   <soapenv:Body>

      <urn:GracIdmRiskWoutNoServices>

         <!--Optional:-->

         <ApplicationType>SAP</ApplicationType>

         <!--Optional:-->

         <!--Optional:-->

         <ConnectorId>

            <!--Zero or more repetitions:-->

            <item>

               <Connector>SYSBLA0010</Connector>

            </item>

         </ConnectorId>

         <!--Optional:-->

         <Language>EN</Language>

         <!--Optional:-->

         <RiskLevel>1</RiskLevel>

         <ObjectId>

            <!--Zero or more repetitions:-->

            <item>

               <Objid>ID</Objid>

            </item>

            </ObjectId>

         <!--Optional:-->

         <ObjectType>USR</ObjectType>

         <!--Optional:-->

         <!--Optional:-->

         <ReportFormat></ReportFormat>

         <!--Optional:-->

         <RuleSetId>RULESET_NAME</RuleSetId>

         <!--Optional:-->

         <ReportType>

            <!--Zero or more repetitions:-->

            <item>

               <ReportType>2</ReportType>

            </item>

         </ReportType>

         <Simulation>

            <!--Zero or more repetitions:-->

            <item>

               <Connector>SYSBLA0010</Connector>

               <Simuobtype>ROL</Simuobtype>

               <SimuobjidLst>

                  <!--Zero or more repetitions:-->

                  <item>

                     <Simuobjid>Z_ROLE_NAME</Simuobjid>

                  </item>

               </SimuobjidLst>

               <Excludesimu></Excludesimu>

            </item>

         </Simulation>

      </urn:GracIdmRiskWoutNoServices>

   </soapenv:Body>

</soapenv:Envelope>

Thanks,

Troy Grubb

@TroyRGrubb

Former Member
‎06-01-2015 9:21 PM
0 Kudos

Troy,

Totally that is the challenge am dealing with now as well.. Such limited information.

What was the scenario you were working on in this case? Were you trying to use GRC to run risk analysis for a IDM system as well?

I see that you plugged in different values in here. Please can you help me understand the following values

Connector: SYSBLA0010 -- Which connector is this? Is this what you have setup in GRC box to connect to one of the abap systems?


Risk level : 1

Objid: ID --- where is this id setup in the GRC system? Is it like a system user with admin type access?

Objecttype: USR

Report type : 2 ---- why 2?


Simuobtype: ROL

Simuobjid : Z_ROLE_NAME



Thank you for all your help.


Regards,

Kiran

Former Member
‎06-03-2015 6:59 PM
0 Kudos

Hi Troy,

I tried the input parameters looking at what you provided but see to be stuck with this output

<soap-env:Envelope xmlns:soap-env="http://schemas.xmlsoap.org/soap/envelope/">

   <soap-env:Header/>

   <soap-env:Body>

      <soap-env:Fault>

         <faultcode>soap-env:Server</faultcode>

         <faultstring xml:lang="en">Web service processing error; more details in the web service error log on provider side (UTC timestamp 20150603175624; Transaction ID D8190AE597B3F1F1A4B8005056B949CB)</faultstring>

         <detail/>

      </soap-env:Fault>

   </soap-env:Body>

</soap-env:Envelope>

This is what my input looks like

<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:urn="urn:sap-com:document:sap:soap:functions:mc-style">

   <soapenv:Header/>

   <soapenv:Body>

      <urn:GracIdmRiskWoutNoServices>

         <!--Optional:-->

         <AddlAttrib>

            <!--Zero or more repetitions:-->

            <item>

               <AddlAttrib>?</AddlAttrib>

            </item>

         </AddlAttrib>

         <!--Optional:-->

         <ApplicationType>SAP</ApplicationType>

         <!--Optional:-->

         <BusinessProc>?</BusinessProc>

         <!--Optional:-->

         <ConnectorId>

            <!--Zero or more repetitions:-->

            <item>

               <Connector>CONNECTORNAME</Connector>

            </item>

         </ConnectorId>

         <!--Optional:-->

         <HitCount>?</HitCount>

         <!--Optional:-->

         <Language>en</Language>

         <!--Optional:-->

         <ObjectId>

            <!--Zero or more repetitions:-->

            <item>

               <Objid>USERID</Objid>

            </item>

         </ObjectId>

         <!--Optional:-->

         <ObjectType>USR</ObjectType>

         <!--Optional:-->

         <OrgLevel>?</OrgLevel>

         <!--Optional:-->

         <OrgRule>

            <!--Zero or more repetitions:-->

            <item>

               <OrgRule>?</OrgRule>

            </item>

         </OrgRule>

         <!--Optional:-->

         <OrgVal>

            <!--Zero or more repetitions:-->

            <item>

               <OrgVal>?</OrgVal>

            </item>

         </OrgVal>

         <!--Optional:-->

         <ReportFormat>?</ReportFormat>

         <!--Optional:-->

         <ReportType>

            <!--Zero or more repetitions:-->

            <item>

               <ReportType>2</ReportType>

            </item>

         </ReportType>

         <!--Optional:-->

         <RiskId>

            <!--Zero or more repetitions:-->

            <item>

               <RiskId>?</RiskId>

            </item>

         </RiskId>

         <!--Optional:-->

         <RiskLevel>1</RiskLevel>

         <!--Optional:-->

         <RoleType>?</RoleType>

         <!--Optional:-->

         <RuleId>?</RuleId>

         <!--Optional:-->

         <RuleSetId>RULESETNAME</RuleSetId>

         <!--Optional:-->

         <Simulation>

            <!--Zero or more repetitions:-->

            <item>

               <Connector>CONNECTORNAME</Connector>

               <Simuobtype>ROL</Simuobtype>

               <SimuobjidLst>

                  <!--Zero or more repetitions:-->

                  <item>

                     <Simuobjid>ZROLE_NAME</Simuobjid>

                  </item>

               </SimuobjidLst>

               <Excludesimu>?</Excludesimu>

            </item>

         </Simulation>

         <!--Optional:-->

         <SimulationRiskOnly>?</SimulationRiskOnly>

         <!--Optional:-->

         <UserGroup>?</UserGroup>

         <!--Optional:-->

         <UserType>?</UserType>

      </urn:GracIdmRiskWoutNoServices>

   </soapenv:Body>

</soapenv:Envelope>

Hit a road block any help would be greatly appreciated.

Regards,

Kiran

Former Member
‎06-03-2015 7:09 PM
0 Kudos

I would advise you to take out the unused attributes and try again.  See if that improves your results.

Thanks,

Troy

Former Member
‎06-03-2015 8:17 PM
0 Kudos

Hi Troy,

Still getting the same error message in SOAP

<soap-env:Envelope xmlns:soap-env="http://schemas.xmlsoap.org/soap/envelope/">

   <soap-env:Header/>

   <soap-env:Body>

      <soap-env:Fault>

         <faultcode>soap-env:Server</faultcode>

         <faultstring xml:lang="en">Web service processing error; more details in the web service error log on provider side (UTC timestamp 20150603191323; Transaction ID 98240AE50F7EF15AA4B8005056B949CB)</faultstring>

         <detail/>

      </soap-env:Fault>

   </soap-env:Body>

</soap-env:Envelope>

In SLG1 it is showing as risk analysis is completed when we submit a request through IDM - It is coming back as no violations found and the role is getting provisioned as well when clearly the role that was submitted has SOD's. When i execute it in SOAP I am getting this error msg.

Do you know where in GRC we can check to see if there is an output file for the webservice? or the details logs to see what is going on with the webservices?

Thank you for all your help.

Regards,

Kiran

Former Member
‎06-29-2016 3:47 PM
0 Kudos

Hi,

is your problem solved?

Best regards,

Dirk

Former Member
‎02-24-2015 7:44 PM
0 Kudos

Michael -

I am struggling with the exact same issue.  I expected the result of the SOD in the response and all that is returned is Data Populated Successfully.  Is that the message you are receiving?

Thanks,

Troy

Show replies
Show replies
Former Member
‎02-24-2015 11:43 PM
0 Kudos

Hi Michael -

Provided you with SOAP request that worked for me via email.  Hope it helped. My issue was missing value for application type.  Setting application type to SAP worked for me and started returning valid SOD results in the response.

Thanks,

Troy

Former Member
‎06-01-2015 1:24 PM
0 Kudos

Hi Experts,

I am using SOAP to test the web services. We are connecting GRC 10.1 to Oracle IDM system. When I am testing this WSDL file in SOAP with the entries below  i am getting the below error.. please can anyone guide me on what i am doing wrong..

Should i enter a GRC Connector in here or a SAP Connector (IDMBW1CL100 - This is a connector  for our BI system created in GRC Box )that i want the risk anlaysis run for?

Also what should i enter for object id and object type?

We basically want to use GRC to only run the risk analysis and the results to go back to IDM to process further.

<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:urn="urn:sap-com:document:sap:soap:functions:mc-style">

   <soapenv:Header/>

   <soapenv:Body>

      <urn:GracIdmRiskWoutNoServices>

         <!--Optional:-->

         <AddlAttrib>

            <!--Zero or more repetitions:-->

            <item>

               <AddlAttrib>?</AddlAttrib>

            </item>

         </AddlAttrib>

         <!--Optional:-->

         <ApplicationType>?</ApplicationType>

         <!--Optional:-->

         <BusinessProc>?</BusinessProc>

         <!--Optional:-->

         <ConnectorId>

            <!--Zero or more repetitions:-->

            <item>

               <Connector>IDMBW1CL100</Connector>

            </item>

         </ConnectorId>

         <!--Optional:-->

         <HitCount>?</HitCount>

         <!--Optional:-->

         <Language>?</Language>

         <!--Optional:-->

         <ObjectId>

            <!--Zero or more repetitions:-->

            <item>

               <Objid>SAPID</Objid>

            </item>

         </ObjectId>

         <!--Optional:-->

         <ObjectType>USR</ObjectType>

         <!--Optional:-->

         <OrgLevel>?</OrgLevel>

         <!--Optional:-->

         <OrgRule>

            <!--Zero or more repetitions:-->

            <item>

               <OrgRule>?</OrgRule>

            </item>

         </OrgRule>

         <!--Optional:-->

         <OrgVal>

            <!--Zero or more repetitions:-->

            <item>

               <OrgVal>?</OrgVal>

            </item>

         </OrgVal>

         <!--Optional:-->

         <ReportFormat>?</ReportFormat>

         <!--Optional:-->

         <ReportType>

            <!--Zero or more repetitions:-->

            <item>

               <ReportType>?</ReportType>

            </item>

         </ReportType>

         <!--Optional:-->

         <RiskId>

            <!--Zero or more repetitions:-->

            <item>

               <RiskId>?</RiskId>

            </item>

         </RiskId>

         <!--Optional:-->

         <RiskLevel>?</RiskLevel>

         <!--Optional:-->

         <RoleType>?</RoleType>

         <!--Optional:-->

         <RuleId>?</RuleId>

         <!--Optional:-->

         <RuleSetId>?</RuleSetId>

         <!--Optional:-->

         <Simulation>

            <!--Zero or more repetitions:-->

            <item>

               <Connector>IDMBW1CL100</Connector>

               <Simuobtype>?</Simuobtype>

               <SimuobjidLst>

                  <!--Zero or more repetitions:-->

                  <item>

                     <Simuobjid>?</Simuobjid>

                  </item>

               </SimuobjidLst>

               <Excludesimu>?</Excludesimu>

            </item>

         </Simulation>

         <!--Optional:-->

         <SimulationRiskOnly>?</SimulationRiskOnly>

         <!--Optional:-->

         <UserGroup>?</UserGroup>

         <!--Optional:-->

         <UserType>?</UserType>

      </urn:GracIdmRiskWoutNoServices>

   </soapenv:Body>

</soapenv:Envelope>

ERROR

<soap-env:Envelope xmlns:soap-env="http://schemas.xmlsoap.org/soap/envelope/">

   <soap-env:Header/>

   <soap-env:Body>

      <soap-env:Fault>

         <faultcode>soap-env:Server</faultcode>

         <faultstring xml:lang="en">Web service processing error; more details in the web service error log on provider side (UTC timestamp 20150601121953; Transaction ID 815808E5F133F14FA4B8005056B949CB)</faultstring>

         <detail/>

      </soap-env:Fault>

   </soap-env:Body>

</soap-env:Envelope>

Any guidance will be greatly appreciated.

Thank you all in advance.

Regards,

Kiran

Ask a Question