cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Workflow issue in Access Request for HR OM Objects

Former Member

on ‎11-28-2017 5:08 AM

0 Kudos

Hello All,

Requirement: To set-up 2 stage workflow for Access Request Approval for HR OM Objects

Solution: Created a MSMP using SAP_GRAC_ACCESS_REQUEST_HR with 2 stage

Stage 1: Role owner to review and approve.

Stage Config ID: GRAC_ROLEOWNER Agent ID: GRAC_ROLEOWNER

Stage 2: Security Team to provision.

Stage Config ID: GRAC_SECURITY Agent ID: GRAC_SECURITY

Issue:

The roles are assigned to the position once its approved by the Role Owner at Stage 1 instead of provisioning at the End of request.

Please help me to understand in case I am missing something here ??

regards,

Kamal

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

former_member226273
Active Participant
‎12-07-2017 7:22 AM
0 Kudos

Hello Kamal,

I tried the same scenario in my system and it is working fine. Could you please let me know:

1. Is it the same path with two stages (Role Owner and Security)?

2. Or there are two different paths altogether? If this is the case, you need to ensure the route mapping and the provisioning settings.

Another question, Does the request gets completed after Role Owner approval, or the provisioning takes place and request goes to security team. Few screen shots of audit log and MSMP config will help.

Kind regards,

Yashasvi

Show replies
Show replies
Former Member
‎12-10-2017 11:23 PM
0 Kudos

Hello Yashasvi,

Oh thats strange, yes its a single path with two stage workflow, please find attached.

No the request does not complete at the first stage, The role is provisioned/ removed to the position after first stage once its approved/ rejected however the request moved to stage two for action and once actioned the request gets completed.

Please find audit log, can you please also share your Audit log for the successful request executed.

best Regards,

Kamal

former_member226273
Active Participant
‎12-11-2017 6:33 AM
0 Kudos

Hello Kamal,

Could you please verify that its getting provisioned even without role owner approval? It looks so by the audit log that its getting provisioned without even role owner approval.

Here is the audit log of my system.

Kind regards,

Yashasvi

Former Member
‎12-12-2017 4:34 AM
0 Kudos

Hello Yashasvi,

Thanks for your quick response.

To answer your question, the roles are assigned, when the request is submitted at stage one.

let me check with my developer in a debug mode, anyways thanks again for all your help and efforts

regards,

Kamal..

former_member226273
Active Participant
‎12-12-2017 5:08 AM
0 Kudos

Hello Kamal,

you're welcome. Please let us know of findings as it seems there is some customization which is causing this provisioning.

Kind regards,

Yashhasvi

Former Member
‎01-17-2018 6:48 PM
0 Kudos

Hello Kamal,

I just looked at your audit log and it says custom development? What's the custom development you did, can you elaborate.In general there is no custom development involved for assigning roles to position using organization request.

Thanks

Ramesh

vijayakumarsuth
Advisor
Advisor
‎01-18-2018 10:43 PM
0 Kudos

Hi Kamal,

I see you have some custom code for provisioning which takes place 2 times. First one is, when request enters the ROLE_OWNER stage (here it calls your customer code to provision) , Second is - After the Role owner approved the lineitem from request the same custom code call again. please review the Audit log screen shot you provided and go based on our provisioning time which will explain my points clearly.

Former Member
‎11-30-2017 3:53 PM
0 Kudos

Hi Kamal,

Did you maintain the route mapping(step 6) to go to next stage.

Thanks

Ramesh

Show replies
Show replies
Former Member
‎12-10-2017 11:07 PM
0 Kudos

Hello Ramesh,

Yes all the path and stages are defined, please find the screenshot for your reference. Do let me know in case I miss any.

route.pngpath.png

Former Member
‎11-29-2017 4:41 PM
0 Kudos

Kamal,

I am not sure I got your question but will try to give a stab at it...Your expectation after stage 1 approval it should go to security to approve before the role is assigned to the position? or you are expecting to provision to backend after stage 1 & stage 2?

Thanks

Ramesh

Show replies
Show replies
Former Member
‎11-29-2017 10:22 PM
0 Kudos

Hello Ramesh,

Yes you are correct as per the workflow its should go to stage 2 and based on the action (Approve/ Reject) it should assign/ remove roles from the position.

Thanks

Kamal

Ask a Question