cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Fire fighter id is not available while execute the grac_spm tcode in grc 10.0

Former Member

on ‎09-23-2015 8:12 AM

0 Kudos

Hi Experts,

Greeting of the Day.

1) Maintained the parameter id at configuration level

   

    4010   = SAP_GRAC_SPM_FFID

2)The same role is assigned(SAP_GRAC_SPM_FFID) assigned to user in back end system.

3)Maintained connection settings ( AUTH,SUPMG,RROV,ROLMG)

4)Owners, Controllers, Firefighters & reason codes have been created in GRC

5) Done all sync jobs include this job GRAC_SPM_LOG_SYNC.


when ever run the GRAC_SPM  tcode in grc system i couldnt found any Firefighter id s  in screen.


Please let me know  where i did mistake and help me how to get the FFID


Thank you


Best Regards

Ravi.



Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (5)

Answers (5)

Former Member
‎09-25-2015 9:57 AM
0 Kudos

Hello Ravi,

Sorry for delayed reply.

I mean (Z) means, Please create the roles with customer name space and also check the roles were generated properily with green colour status with profiles. Could not assign the sap stadard role to user.

EX : This is stadard role : SAP_GRAC_SUPER_USER_MGMT_USER.

EX : This is customized role : Z_GRAC_SUPER_USER_MGMT_USER.

Please make sure that you have to assign customized roles EX: Z_GRAC_SUPER_USER_MGMT_USER.

Make sure that trusted rfc connection succfull from GRC to Back end server.

Regards,

Visu

Show replies
Show replies
Former Member
‎09-24-2015 8:09 AM
0 Kudos

Hi Ravi,

Please check below steps in your scenario.

Please add the SAP connection type L_GRAC_AD_SUPER_USER_RFC.


Added the Scenario Connection Type Link for SUMPG.


Please check the proper authorization for firefighter id role and the roles need to be customer name (Z)

Firefighter: user SAP_GRAC_SUPER_USER_MGMT_USER

Also give the base roles access as mentioned in below


SAP_GRC_FN_BASE and SAP_GRC_FN_BUSINESS_USER

The FFID User in the backend system is a type SERVICE, user has assigned the role SAP_GRAC_SPM_FFID


Please check authorization issues using SU53 or ST01 after executing GRAC_SPM


The rfc connection should be Trusted RFC connection

Please test on security by assigning your FF User SAP_ALL and/or the GRC ALL roles to eliminate or validate an authorization issue.


Regards,

Visu

Show replies
Show replies
Former Member
‎09-24-2015 1:55 PM
0 Kudos

Hi Visu.

Thanks for response ,

1) Yes,i have been maintained SAP connection type cL_GRAC_AD_SUPER_USER_RFC.

    and these parameter added in SUPMG.

2 )These Roles are maintained SAP_GRAC_SUPER_USER_MGMT_USER

                                             SAP_GRC_FN_BASE and SAP_GRC_FN_BUSINESS_USER.


these users are created in GRC System


1) BSFFIDOWN1-------------------------->- For Firefighter Owner

2) BSFFIDCONT1-------------------------> For Firefighter Controller

3) BSENDUSER----------------------------) For Firefighter end user.


BSFFID----------------------------------------End user created in Backend system.(ECC)( Service Type)


assigned standard roles to Users in GRC and backend sytem.


Could you please explain this point Mentioned below , i didn't Understand. you mentioned it.


please Let me know which users having custom roles.


@Please check the proper authorization for firefighter id role and the roles need to be customer name (Z).


Thank you.


Best Regards.

Ravi.






                                        

Former Member
‎09-23-2015 12:56 PM
0 Kudos

Hi Palbon and Srinivas

@Palbon

   Thanks for responding, i checked the table GRACFFUSER, data was maintained.

@Srinivas: based on these document i configured ,

Show replies
Show replies
former_member197694
Active Contributor
‎09-23-2015 8:45 AM
0 Kudos

Hello Ravi,

check the step Firefighter ID to the corresponding Firefighters users

Did you get chance to refer the link,which gives you complete technical process

Regards

Baithi

Show replies
Show replies
plaban_sahoo6
Contributor
‎09-23-2015 8:30 AM
0 Kudos

hi

has the ff user been assigned ff id, with validity. you can verify the same in table,GRACFFUSER. make sure that the ff user logs in to see ff ids assigned(through GRAC_SPM)

also, make sure that no pending requests are in owner's inbox.

make sure that plug-in configuration settings(in SPRO), for SPM(PARAMETERS 1089/90) are also complete. Parameters for application type and role also need to be filled up. please refer

regards

plaban

Show replies
Show replies
Ask a Question