cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Approver not found,Applied Escape route, Role owner missing

Former Member

on ‎06-16-2016 9:12 AM

0 Kudos

Hi,

Iam working GRC Access control 10.1, Iam facing one issue, when I select CUA system.  In approver stage, Approver not found, Applied Escape route, Role Owner missing.

Any one will help on this issue. Its very helpful for me.

Regards

Suresh

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

former_member190727
Explorer
‎06-20-2016 10:35 PM
0 Kudos

Suresh,

If you want to provision the role request in Child system then please select child system you dont have to select CUA system , When you select child system when submitting access request it will automatically provision the same role in both child and CUA system.if child system is maintained under CUA

Also go to CUA settings and check if the child system is maintained there or not

hope this helps

Show replies
Show replies
Former Member
‎06-22-2016 10:15 AM
0 Kudos

Hi Rafi,

Thanks for your reply, actually my concerns related to

Role Owner approver stage. It audit log, it showing "Approver not found, Applied Escape Route.

But users are created in CUA and child systems and skip the Role Owner stage.

Please find the Audit log details:

Regards

Suresh

alessandr0
Active Contributor
‎06-16-2016 9:24 AM
0 Kudos

Suresh,

since you use the stage GRAC_ROLEOWNER and I assume agent GRAC_ROLEOWNER the issue comes from the role. Please check whether a role approver has been maintained. If a role has no approver then the request will take the escape route which is configred to REQ_ESACAPE.

Regards

Alessandro

Show replies
Show replies
Former Member
‎06-16-2016 9:29 AM
0 Kudos

Hi Alessandra,

Thanks for your reply,

GRAC_ROLEOWNER maintained in NWBC-Role Owners and Access Control Owners node and maintained in REQ_DEFAULT path. Request routing to REQ_ESCAPE path and stage to POC.

Regards

Suresh

Former Member
‎06-16-2016 9:36 AM
0 Kudos

Hi Alessandra,

When I was selected CUA system, then only Iam facing issue.

If I selected  Individual systems like ECC/BW systems, Iam not facing any issue.

Regards

Suresh

surya_appala
Active Participant
‎06-16-2016 10:49 AM
0 Kudos

Hello Suresh,

Could you please check for SLG1 logs and let us know. Thanks.

Regards,

Surya

Former Member
‎06-16-2016 11:18 AM
0 Kudos

Hi Surya,

Iam getting same Audit log information in SLG1 log.

Regards

Suresh

surya_appala
Active Participant
‎06-16-2016 11:41 AM
0 Kudos

Hello Suresh,

Could you please check for BRF+ conditions set. Which result it is getting and corresponding to the result which path it is choosing ?

Please let us know the results. Thanks.

Regards,

Surya

plaban_sahoo6
Contributor
‎06-16-2016 12:06 PM
0 Kudos

Hi ,

to create/provision id in CUA parent system itself, the parent system(with client), should also be a child to the parent system.

Then import and sync., roles of parent system and assign Role owners.

So,

Former Member
‎06-16-2016 1:35 PM
0 Kudos

Hi Surya,

Role Owner choosing the REQ_DEFAULT, But routing to REQ_ESCAPE Path and choosing POC.

Please find the log file.

Former Member
‎06-16-2016 1:38 PM
0 Kudos

Hi Plaban,

I did Repository/Action Usage/Authorization/Role Usage Sync and In NWBC update the Role Import with Role Approvers also.

Regards

Suresh

surya_appala
Active Participant
‎06-16-2016 1:41 PM
0 Kudos

Hi Suresh,

Thanks for the screen shot.

Kindly let us also know the Agent ID configuration in stage GRAC_ROLEOWNER. Thanks.

Regards,

Surya

former_member193066
Active Contributor
‎06-17-2016 7:17 PM
0 Kudos

Hello Suresh,

could you provide little bit more information.

if you have maintained role owner than they should be role assignment approver.

Please check inside role if they are maintained as role assignment approver as well.

Regards,

Prasant

Former Member
‎06-18-2016 1:50 PM
0 Kudos

Hi Prasant Kumar,

Thanks for your reply. I already maintained role owner/approver in NWBC and update the role import. Iam facing issue when I select the CUA system.

Regards

Suresh

former_member193066
Active Contributor
‎06-18-2016 4:16 PM
0 Kudos

could you go to MSP for that path,

go to stage for role owner and provide screenshots?

Regards,

Prasant

former_member184114
Active Contributor
‎06-21-2016 11:48 AM
0 Kudos

Suresh,

I assume that while importing the roles through BRM, it is missed to maintain the Role Owner(s). Therefore you are getting this.

That is what Alessandro meant. Please see the attached screen shot for your reference.

Regards,

Faisal

surya_appala
Active Participant
‎06-16-2016 9:18 AM
0 Kudos

Hello Suresh,

I think the configuration is done such a way that in case of any failures in workflow, it takes default path REQ_ESCAPE and the stage is YGRAC_POC.

The agents in this stage approved the request.

Approver ID is given as DPOC.

After the approval the request got processed and finished.

For further investigation you may check the stage GRAC_ROLEOWNER why no approver is maintained.

Please let me know in case of any questions.

Regards,

Surya

Show replies
Show replies
Ask a Question