Skip to Content
avatar image
Former Member

How To Run SOD Analysis in GRC AC 10 between ECC & Employee Central ( Success Factors)

Hello Friends,

We are planning to integrate GRC AC 10 with Employee Central to run SOD Risk Analysis for Users who have access in both ECC and Employee Central (Success Factors). The issue we have here is, the User ID's are not consistent in ECC and EC. For Example - In ECC the user ID is U12345 and in EC the user ID is 12345. So how do we run risk analysis when the User ID information is not consistent across different systems connected to GRC. Please advise if anyone has involved in such similar requirement to run SOD Risk analysis for Users existing in SAP and other applications (not necessarily Employee Central, it could be Oracle/Peoplesoft etc) where the User U ID's are not consistent.

Let me know if you need any additional information and I would be glad to provide.

Any kind of assistance will be of great help.

Regards,

Surakshith Reddy

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

4 Answers

  • avatar image
    Former Member
    Jun 13, 2017 at 07:00 AM

    Hi Surakshith,

    You would SAP AVM to run risk analysis in GRC directly for Successfactors EC module.

    Best Regards,

    Kesava

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Jun 21, 2017 at 11:32 PM

    Thanks for your reply. We have implemented SAP Cloud Platform Integration also called HCI to integrate ECC and Employee Central so we want to want to leverage the same for integrating GRC as well. We have found standard API's related to Role/Permission/User metadata which could be used to run cross application SOD. It would be great If anyone can provide a roadmap for integrating GRC with Employee Central for running cross application SOD. Any inputs related to this are very valuable and will be highly appreciated. Thank You!

    Add comment
    10|10000 characters needed characters exceeded

  • Aug 01, 2017 at 08:19 PM

    are you not using Person id or user to run the analysis?

    You can use the User Mapping functionality of GRC 10.1 to perform risk analysis where you can designate a back end system as the Master User ID system and maintain the mappings of other back end systems to the Master User ID system.

    To navigate to this screen in SPRO go to: SPRO > Governance, Risk and Compliance > Access Control > Maintain Master User ID mapping.

    .

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Oct 12, 2017 at 06:52 PM

    Thanks for the information. That could be one of the option but that wont help run SOD analysis between GRC and Employee Central, As the user/role/permission data available in the form of standard API's in EC have to called periodically(Full sync daily atleast) and modelled in HCI (is being used to integrate SAP & EC and adjust User ID inconsistency) in a way that GRC can understand the data and fill the GRAC tables to be able to run SOD analysis between SAP and Employee Central. We are in the process of implementing this and will keep posted with more updates as we progress.

    Keep Sharing your thoughts!

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Hi Surak,

      I am at the moment working on defining GRC technical ruleset for Success Factors and would like to speak to you in that regards

      Thanks and look forward to your message.

      Thanks

      Amit