Hello Community,
I have another question that will hopefully get more responses then my last. 🙂
I have completed the configuration of my GRC 10.1 SP16 system and can provision/de-provision users and roles into my back end systems.
This was an move from GRC 5.3 to 10.1.
In our 5.3 system we had an AD group call GRC_APPROVERS that users were assigned, and because 5.3 was a portal system we were able to associate the UME rights for approving roles/users/controls through there.
Now that 10.1 is ABAP and the user needs to have an SU01 record with the appropriate roles assigned, I need to come up with a way to trigger the provisioning of a users record into the backend GRC system with all of the appropriate approver roles.
I was able to get ALL users into the backend system using the RSLDAPSYNC_USER sync (though for some reason it will only update the users last name and no other fields).
Is there a way to run this program to only create users in the appropriate AD group?
Or is there some other documentation on how to create a provisioning role that sees the AD group and triggers a GRC workflow that creates the users account in GRC and assigns all appropriate roles.
Thank you for your time in reading and hopefully responding to this.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.