Solved: SAP GRC rule set for SAP Ariba roles

former_member602013 · ‎01-30-2019

We are looking a solution to run Risks Analysis for SAP Ariba authorization (Group and permission).

Our idea is to use SAP ECC system as intermediary step recreating in ABAP language the SAP Ariba group and actions.

What do you suggest? Have you ever done this?

madhusap · ‎01-31-2019

Hi Ryan,

I have implemented ARIBA SoD rules for one of our client.

Following approach was taken:

- User and User Groups from ARIBA were updated to GRC repository tables (Exported User and User Groups to CSV file and then loaded to GRC repository tables through a upload program)

E.g. Purchasing Agent is a User Group in ARIBA for which following are the details that are uploaded to GRC.

User A - Role (Receiving Agent) - Action (Receiving Agent) - Permissions (Not required)

GRC repository tables have been updated with ARIBA roles and Actions.

Finally in the ruleset, functions are defined with System specific actions (e.g. Goods Receipt function has ECC transactions MIGO, FB08 and ARIBA actions Receiving Agent) and then the ruleset which has ECC and ARIBA actions was used to run risk analysis.

Regards,

Madhu

jt666_ · ‎01-28-2020

please refer to OSS 1594963 providing detailed input

former_member602013 · ‎02-06-2019

Do you know how can I implement the rule set and enter in Action column the permission of ariba? How does the system recognize it?

RameshVithanala · ‎02-05-2019

Ryan,

You could also use SAP Greenlight Connector for ARIBA.

Thanks

Ramesh

former_member602013 · ‎01-31-2019

Thanks Madhu.

What program did you use to load in the repository tables? Custom Program?

How does the system recognize the action : Receiving Agent and not a transaction?

SAP GRC rule set for SAP Ariba roles

Accepted Solutions (1)

Accepted Solutions (1)

Answers (4)

Answers (4)

Re: Asset Accounting

Re: Validation

Bank key for International banks

Re: Unable to configure SAP CC Catalog webservice ...

Revaluation of Batch Item Variance Recognition