Skip to Content
avatar image
Former Member

Access Request Provisioning Failure

Good Day Experts.

Hope someone will be able to assist me

We are busy implementing Access Request in GRC 10.1.

I have 6 plug in systems linked to GRC 10.1

Auto provisioning is working 100% for 5 of these systems, but the last system, BW System, it doesn't want to work at all.

I keep on getting an error message under the provisioning logs saying that the user does not exists in target system. The Access Requests gets closed as Approved.

In SLG1 I get the message from plugin system, saying that the user does not exists in the target system

All the plug in systems share the same config from GRC in terms of Access Request and Provisioning.

When I assign roles to an existing user in the BW System, it works fine, just when I want to create a new user, I get the error.

I have looked everywhere for answers and can't seem to get the correct one.

It is strange that for 5 systems it works and for just 1, I am having problems with.

Any information would be great

Regards

Gerrit

Add comment
10|10000 characters needed characters exceeded

  • Follow
  • Get RSS Feed

4 Answers

  • Best Answer
    avatar image
    Former Member
    Apr 14, 2016 at 01:22 PM

    Good Day all.

    Just some feedback on my issue. The SAP Note 2027126 was implemented in the back end system (BW in my case) and this resolved my issue.

    When creating an Access Request now for a new user for BW, the GRC_RFC user automatically creates the user and generates the password successfully in BW System.

    I no Longer get any issues

    Thanks for everyone's help and assistance.

    Regards

    Gerrit

    Add comment
    10|10000 characters needed characters exceeded

  • Apr 12, 2016 at 10:31 AM

    Hi Gerrit,

    Do you use CUA for your systems?

    Regards,

    Artem

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Rakesh Ram

      HI Deepak

      Thanks for the information

      Par 2051 helps to check if the user exists, but still doesn't solve the issue for us as it has something to do with the password creation by the backend system

      .

      We do not have 2050 setup as we do not use data sources for LDAP. I looked at this parameter, but in my opinion, it is rather similar to 2051. Maybe I am wrong

      thanks

  • Apr 11, 2016 at 12:09 PM

    Hello Gerrit,

    Have you checked if all the mandatory things for user account are present and are correct?

    For example, the user group maintained in access request may not exist in plug-in system.

    Kind regards,

    Yashasvi

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Hi Yashashvi

      Thank you for your reply. Yes, I have checked this as well. I even tried to create a user without a User Group and still this didn't work

      Thanks

      Gerrit

  • avatar image
    Former Member
    Apr 11, 2016 at 02:17 PM

    Hi Gerrit,

    Please cross check the 'maintain provisioning settings'

    If these settings are maintained for your BW system.

    Also check if your connector is added in Maintain Mapping for Actions and connector group has action '4' added for BW system.

    Thanks

    Priyanka


    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Hi Priyanka

      Thank you for the reply.

      I checked the Mapping for Actions and Connector Groups. Our BW system is setup only for Basis Logical Group and here I have setup 4 for BW System.

      For the Maintain Provisioning Settings, I am using Global Provisioning Settings for all my systems. Here I have Create User for Role Assign Action Selected. I felt it was not needed to select Create User for Change User Action as I am forcing the user to lookup a User that needs to change. So if the user is not found, it means he doesn't exist and therefore not allowed to continue with the Access Request.

      I have tried previously to also select this option, but still got he same issue for BW System.

      Thank You