Skip to Content
avatar image
Former Member

GRC AC10 with CRM 701

Hi Expert,

Wanted to ask you if anybody have experience integrating GRC AC10 with a CRM System.

My main concern is that CRM security works in a different way as the ECC. For example, a user can have a PFCG role in CRM but if he does not have a Business Role assigned he can do anything.

Additionally, that Business Role must have Navigational Links and has to be assigned to an organizational object (throught PPOMA tcode).

So, how does the GRC AC10 do in order con combine those different security elements/considerations that CRM has in order to make accurate Risk Analysis?

Any comments would be appreciated.

Regards,

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Best Answer
    avatar image
    Former Member
    May 03, 2013 at 01:35 PM

    Hi Daniel.

    My opinion is that the user access should be inline with the organizational structure that he is assigned to, and based on that, the GRC CRM Standard rule set with some customization will be sufficient to check for SoDs.

    But to answer your question and scenario, the solution may be to use supplementary rules.

    http://help.sap.com/saphelp_grcac53/helpdata/en/d5/d5c137a7484954b0456d5f498a45d2/content.htm

    Kind regards,

    Nuno Jesus

    Add comment
    10|10000 characters needed characters exceeded