ERM Mitigation

Hello Experts,
I have set up and configured ERM, CUP and the integration between the two and have a few questions.
1) When viewing ERM role creation requests in CUP it only shows a bar chart of violations for the approver. Is there a way to set this so I can drill down into the details?
2) When the role owner receives the request it does not allow them (Individual approving) to mitigate in CUP. Can I configure this differently?
3) If we want mitigation in CUP will we need to add a detour stage within the standard ERM, stage / workflow to allow this functionality
Thanks,
Kyle

Hi Kyle,
1. You can always click on the role link which will open a new window and see the risk details as you do in ERM.
2. ERM and CUP are two different modules and CUP only have the request approval process for ERM. hence no way to mitigate from CUP, but you can do it through ERM itself.
3. The answer is that Role mitigation from CUP screen is not possible.
Hope it helps.
Regards,
Sabita

Similar Messages

  • GRC 5.3 CUP auto provisioning of Mitigation Assignment in RAR

    Hello,
    Is there any other workflow that needs to be triggered for the auto provisioning of the Mitigation control id assignment to the userid in RAR system from CUP,  upon request completion?
    I created a request that after the final stage of sox approver, got auto provisioned roles assigned to the user id in the SAP system , but it also stated that auto provisioning failed and got re-routed to the detour path of the security admin as I configured in case of auto provisioning failure. When I look at the error log, it states:
    User Provisioning failed for System(s) : XYZ. Error Message : User type TE is unknown
       Role: ROLEA assigned to user: TESTER1 in System(s): XYZ.
    1). So, even though the approved role is being assigned to the user in the backend system, some other stuff is failing at auto provisioning. And I thought it might be the mitigation control assignment to the userid in RAR. I have the mitigation fields/objects active. But how do I ensure the auto-assignment of mitigation control ids also gets assigned on the same request upon sox approval?
    2). The other question is where is the value of the 'controller' stored when configuring a stage for workflow approver determinator in the sox approver stage? Where is this value picked up from? We don't want to use the RAR mitigation approvers or monitors, we want to use a custom approver id from CUP and then the control id to be assigned upon approval automatically to the userid in RAR via CUP request completion during auto provisioning. Is this possible? The only thing failing for us is trying to determine how to create the custom approver determinator for SOX approver in CUP since it asks for 'attribute' value for workflow type 'Compliant User Provisioning' which doesn't make sense for this.
    And then the above error even though the user role assignment is auto provisioning already but still giving the error as I listed above and re-routing to detour path instead of completing the request. Is it due to auto provisioning failure of mitigation control assignment in RAR?
    Thanks in advance,
    Alley
    Edited by: Alley1 on Sep 20, 2011 1:15 AM

    Hi Karell,
       Here is response to your questions:
    I can use the following CAD in an AE workflow: web service to fetch role approvers. I question this as it is merely a RE workflow service : No. As far as I know the web service is only for RE/ERM.
    Can the Risk Analysis be initiated in stage x automatically once stage (x-1) was completed. So no person involved, it is mandatory however, in my opinion there should be no extra person involved to actually press the button "Risk Analysis" : No. There is no way to automate the risk analysis part. Someone will have to click on the button to check for SoD violations. You can configure to run automatic risk analysis when the request is submitted but this is not 100% perfect. If someone adds or removes role during approval phase, it will invalidate the risk analysis which was run during request submission.
    Can somehow the Risk Owners defined in the RAR componed be asked to approve/reject risk that came out of the Risk Analysis described in my previous point. They should only be contacted when there is a risk indicated. : This is possible by following Babak's workflow.
    Regards,
    Alpesh

  • ERM role generation

    Hi all,
    i have GRC 5.2 installed. Did the post installation steps. In ERM when i try to create a role without any conflicting tcodes the role is getting generated, but when i include any  2 tcodes risk is showing up, i have mitigated the risk, when generating the role it is giving the below error.  Please help me out as i am a beginner.
    2009-12-22 00:50:59,140 [SAPEngine_Application_Thread[impl:3]_29] ERROR No intenationalized value found for key : FrontPageDesc20
    2009-12-22 00:51:05,250 [SAPEngine_Application_Thread[impl:3]_33] ERROR No intenationalized value found for key : FrontPageDesc20
    2009-12-22 00:53:13,546 [Thread-139] ERROR java.lang.NullPointerException
    2009-12-22 00:54:48,640 [SAPEngine_Application_Thread[impl:3]_28] ERROR com.virsa.re.role.actions.GenerateRoleAction
    java.lang.Throwable:

    Hi Zaheer,
          i am not getting any abap dump in the backend. In ERM the sysltem logs is as follows:
    2009-12-22 18:14:01,875 [SAPEngine_Application_Thread[impl:3]_6] ERROR  User :   not found to get full name
    2009-12-22 18:14:14,656 [SAPEngine_Application_Thread[impl:3]_6] ERROR com.sap.security.api.NoSuchUserAccountException: USER_AUTH_FAILED: User account for logonid "?" not found!
    java.lang.Throwable: com.sap.security.api.NoSuchUserAccountException: USER_AUTH_FAILED: User account for logonid "?" not found!
         at com.virsa.service.umi.ume.UMESearchUser.getUserById(UMESearchUser.java:135)
         at com.virsa.re.bo.impl.SearchUserBO.getUserById(SearchUserBO.java:96)
         at com.virsa.re.cache.RECacheUtil.getUser(RECacheUtil.java:2237)
         at com.virsa.re.cache.RECacheUtil.getUserFullName(RECacheUtil.java:2209)
         at com.virsa.re.cache.RECacheUtil.getUserFullNameWithUserId(RECacheUtil.java:2261)
         at com.virsa.re.role.actions.RoleActionHelper.convertRoleApproverDtoToRoleApproverPo(RoleActionHelper.java:198)
         at com.virsa.re.role.actions.RoleAction.convertDTOToPO(RoleAction.java:1569)
         at com.virsa.re.role.actions.RoleAction.getRoleFromDB(RoleAction.java:1024)
         at com.virsa.re.role.actions.RoleAction.pageLoadForEdit(RoleAction.java:805)
         at com.virsa.re.role.actions.RoleAction.execute(RoleAction.java:107)
         at com.virsa.framework.NavigationEngine.execute(NavigationEngine.java:265)
         at com.virsa.framework.servlet.VFrameworkServlet.service(VFrameworkServlet.java:230)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.runServlet(FilterChainImpl.java:117)
         at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:62)
         at com.virsa.comp.history.filter.HistoryFilter.doFilter(HistoryFilter.java:43)
         at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:58)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:373)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
         at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
         at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
         at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
         at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
         at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
         at java.security.AccessController.doPrivileged(Native Method)
         at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
         at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
    2009-12-22 18:14:14,671 [SAPEngine_Application_Thread[impl:3]_6] ERROR  User : ?  not found to get full name
    2009-12-22 18:16:34,125 [Thread-120] ERROR java.lang.NullPointerException
    2009-12-22 18:25:19,781 [SAPEngine_Application_Thread[impl:3]_36] ERROR com.virsa.re.role.actions.GenerateRoleAction
    java.lang.Throwable:
         at com.virsa.utils.VLogger.logError(VLogger.java:453)
         at com.virsa.re.bo.impl.GenerateRoleBO.generateRole(GenerateRoleBO.java:109)
         at com.virsa.re.role.actions.GenerateRoleAction.generateRole(GenerateRoleAction.java:224)
         at com.virsa.re.role.actions.GenerateRoleAction.execute(GenerateRoleAction.java:83)
         at com.virsa.framework.NavigationEngine.execute(NavigationEngine.java:265)
         at com.virsa.framework.servlet.VFrameworkServlet.service(VFrameworkServlet.java:230)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.doWork(RequestDispatcherImpl.java:321)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.forward(RequestDispatcherImpl.java:377)
         at com.virsa.framework.servlet.VFrameworkServlet.service(VFrameworkServlet.java:286)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.doWork(RequestDispatcherImpl.java:321)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.forward(RequestDispatcherImpl.java:377)
         at com.virsa.framework.servlet.VFrameworkServlet.service(VFrameworkServlet.java:286)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.runServlet(FilterChainImpl.java:117)
         at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:62)
         at com.virsa.comp.history.filter.HistoryFilter.doFilter(HistoryFilter.java:43)
         at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:58)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:373)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
         at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
         at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
         at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
         at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
         at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
         at java.security.AccessController.doPrivileged(Native Method)
         at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
         at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)

  • Any Customers Implement GRC-AC ERM?

    Hello!
    We are evaluating GRC-AC v5.3 SP13.1 ERM and are encountering issues. Have any customers implemented this module? If so, what Version and SP did you implement on? Also, are you using the full functionality or just as a repository? Are you using the the CUP Workflow Approvals?
    Any help on this would be really appreciated.
    Regards,
    John

    Dear John,
    We had implemented fully functional CUP and ERM alongwith RAR and SPM. At the time of go-live it was patch 8. Later we checked that ERM role generation methods were little different from PFCG and for that reason roles were not getting generated properly like Multiple Authorization Nodes were not working fine, auth data was getting merged, manul Objects were getting deleted if the corresponding tcode was deleted and likewise. So we stopped using ERM. Now we are in process to evaluate Patch 12 and 13 in which all ERM issues are supposed to be fixed.
    If everything goes well in testing, we will start using ERM again. All workflows related to CUP, ERM and RAR(Mitigation and Risk) are functional and there is no issue in that.
    Regards,
    Sabita

  • Error while uploading mitigation controls

    Dear All,
    While uploading the mitigation controls i am facing with the below error. Can you please help me in resolving this error.
    Error in table dataVIRSA_CC_MITUSER
    SQL:=>Insert into  VIRSA_CC_MITMON(MITREFNO,MONITORID) Values(?,?)
    Record::Line Number :21 : D VIRSA_CC_MITMON TESTC1 TEST1
    Below is the text file which i am uploading into the RAR for test purposes
    M     VIRSA_CC_ADMIN     USERID     NAME     EMAILID     ROLEID               
    D     VIRSA_CC_ADMIN     TEST1     TEST1     test     M          
    M     VIRSA_CC_BUSUNIT     BUSID                              
    D     VIRSA_CC_BUSUNIT     TH                              
    M     VIRSA_CC_BUSUNITT     BUSID     LANG     DESCN                    
    D     VIRSA_CC_BUSUNITT     TH     EN     Thailand                    
    M     VIRSA_CC_BUAPPVR     BUSID     APPROVERID                    
    D     VIRSA_CC_BUAPPVR     TH     TEST1                         
    M     VIRSA_CC_BUMONITOR     BUSID     MONITORID                         
    D     VIRSA_CC_BUMONITOR     TH     TEST1                         
    M     VIRSA_CC_MITREF     MITREFNO     BUSID     APPROVERID               
    D     VIRSA_CC_MITREF     TESTC1     TH     TEST1                    
    M     VIRSA_CC_MITREFT     MITREFNO     LANG     DESCN                    
    D     VIRSA_CC_MITREFT     TESTC1     EN     Test mitigation control               
    M     VIRSA_CC_MITRISK     MITREFNO     RISKID                         
    D     VIRSA_CC_MITRISK     TESTC1     F006*                         
    M     VIRSA_CC_MITMON     MITREFNO     MONITORID                         
    D     VIRSA_CC_MITMON     TESTC1     TEST1                         
    M     VIRSA_CC_MITRPT     MITREFNO     ACTIONS     VSYSKEY     MONITORID     FREQUENCY          
    M     VIRSA_CC_MITUSER     MITREFNO     RISKID     USERID     VALIDFROM     VALIDTO     MONITORID     STATUS
    M     VIRSA_CC_MITROLE     MITREFNO     RISKID     ROLEID     VALIDFROM     VALIDTO     MONITORID     STATUS
    D     VIRSA_CC_MITROLE     TESTC1     F006*     Z1.*.ASST-SC-FINC-MGR     6/9/2010     7/25/2010     TEST1     0     
    M     VIRSA_CC_MITHROBJ     MITREFNO     RISKID     HROBJ     HROBJTYP     VALIDFROM     VALIDTO     MONITORID     STATUS
    M     VIRSA_CC_MITPROF     MITREFNO     RISKID     PROFILE     VALIDFROM     VALIDTO     MONITORID     STATUS
    M     VIRSA_CC_MITUSRORG     MITREFNO     RISKID     USERID     ORGRULEID     VALIDFROM     VALIDTO     MONITORID     STATUS
    M     VIRSA_CC_DETDESC     OBJECT_TYPE     OBJECT_ID     LANG     DETAIL_DESCN     
    D     VIRSA_CC_DETDESC     MIT     TESTC1     EN     Test Mitigation control                    
    We are not mitigating users now. Only roles are getting mitigated and hence we have not provided any values to the MIT USER table.
    Thanks and Best Regard,
    Srihari.K

    Dear Varun,
    Thanks for your reply. It helped me a lot. But however i am facing the following issue while uploading the mitigation controls
    After exporting the mitigation file from RAR, we opened the text file in a spreadsheet format and added few lines to the file and saved in the same text format or in UTF-8 format also
    After uploading the same into RAR again after changes we are facing similar errors mentioned in above query.
    But when we add lines  directly in the wordpad and upload the file then it is successful.
    We have to add so many mitigation controls and roles to be assigned for which excel would be easy way to dump.
    Is there anything wrong we  are doing here in editing and converting the files.
    Thanks and Best Regards,
    Srihari.K

  • TREX Error while implementing a Rule Modeler in ERMS

    Hi Experts,
    I am getting the below error when i am implementing a Rule in ERMS. Please suggest how to rectify the error.
    Exception in method execute(CL_CRM_ERMS_SERVICE_MANAGER) : Service CL_CRM_ERMS_ADD2FB_CA failed. TREX error:Error in the RFC communication: Error when opening an RFC connection (IMSDEFAULT)[error code =] at: CL_CRM_ERMS_ADD2FB_CA=========CP : CL_CRM_ERMS_
    Processing policy ZTEST_RULE1
    Exception in method execute(CL_CRM_ERMS_SERVICE_MANAGER) : Service CL_CRM_ERMS_RULE_EXEC failed. Policy not found in repository:ERMS:ZTEST_RULE1 at: CL_CRM_ERMS_RULE_REPOSITORY===CP : CL_CRM_ERMS_RULE_REPOSITORY===CM005 : 44
    BOR: returned from Service Manager.
    Regards,
    Niloufer

    Hi Niloufer123
    Have you regenerated your Repository after making changes?
    If not, go to SA38 and run program CRM_ERMS_REGEN_RULES for ERMS context for your Policy (check box checkboxes).
    Now re-run your scenario.  Hopefully this has helped.
    Thanks,
    Andrew G.

  • Warnings while activating BC SETs in  configuring ERM on  GRC 10.0

    Hello ,
    We are trying to configure GRC 10.0 , when I tried to configure ERM and tried to active the given BC Sets as per the Config Guide , We found that one of the BC SETS " GRAC_ROLE_MGMT_LANDSCAPE" is throwing a warning.All the other BC SETS are activated Successfully.
    Please let me know if any one tried the same and getting the warnings.
    Regards,
    Jagadish

    Dear Rajan,
    Today I tried to activate in Expert mode , still its throwing Warning !!.
    Regards,
    Jagadish Bhandaru

  • CRM 5.0 ERMS - Setting Priority, Due Date etc of Incoming Email

    Hi Gurus
    We've moved our incoming e-mail processing from a Non-ERMS set-up to an ERMS set-up.
    Previously we were able to assign the Priority & Due Date for Incoming Emails in Transaction.
    SPRO -> IMG -> Customer Relationship Management -> Interaction Center Webclient -> Agent Inbox -> Settings for Asynchronous Inbound Processing ->
    Define Receiving E-mail/Fax Settings
    Now with E-mails coming through via ERMS we have the following issues:
    Priority is set to Medium when we require High
    Due Date is set to 31/12/2099 when we require 24 hours from arrival into ERMS
    Responsible Group is Blank when it should be the assigned Org Unit.
    Is this something that is controlled throught the Rule Modeler, if so how?
    Maximum points for the correct answer here.
    Many Thanks in advance
    Panduranga

    Hi,
    Yes you have to do settings in rule modeler, please go through the following link for ERMS and rule modeler and if you are still not able to solve let me know.
    http://help.sap.com/saphelp_crm50/helpdata/en/83/0a94734da3439fabcd079cee3f3c72/frameset.htm
    Regards,
    Deepak
    I think you need to do these settings in Transaction CRMC_IC_AUIGNADR
    Edited by: Deepak Ahuja on May 14, 2008 4:15 PM

  • Workflow error in ERMS (CRM 7.0)

    Hello Experts.
    I am facing a workflow issue in ERMS.We are using ERMS and using standard workflow to route email to org.unit.
    As lotus notes is not integrated,  In order to test the ERMS Policy rule process,I have sent a mail from SBWP (SAP Business Workplace) to receipient mail address.
    But Task WS00200001 ended up with error message and workflow log  below are the errors ..
    Error when processing node '0000000025' (ParForEach index 000000)     --> SWP088
    Work item 000000000082: Object FLOWITEM method EXECUTE cannot be executed
    Message no. WL821
    Diagnosis
    The calling of the object method for the work item ended with a return value for which no handling is modeled in the workflow.
    System Response
    The work item was forced into the error status.
    Procedure
    Refer to your workflow system administrator.
    Also ERMS Log erros are  below
    Check Automatic Processing Details
    FactBase (from workitem)  ***
    Actions  ***
    Returned Container Elements  ***
    return element:      DOCUMENTID :
    FactBase (from service manager)  ***
    <?xml version="1.0" encoding="utf-16"?>#<parts># <profile>ZSRQMROUTING</profile
    ># <system>#  <services>#   <CL_CRM_ERMS_PARAMS_SVC/>#   <CL_CRM_ERMS_RULE_EXEC/
    >#  </services># </system>#</parts>#
    Log  ***
    log:    Invoking service class CL_CRM_ERMS_PARAMS_SVC
    log:    ..execution time (CL_CRM_ERMS_PARAMS_SVC):0.0000440
    log:    Invoking service class CL_CRM_ERMS_ADD2FB_DOCUMENT
    log:    Exception in method execute(CL_CRM_ERMS_SERVICE_MANAGER) : Service CL_CRM_ERMS_A
    log:    DD2FB_DOCUMENT failed. Cannot read email at: CL_CRM_ERMS_ADD2FB_DOCUMENT===CP :
    log:    CL_CRM_ERMS_ADD2FB_DOCUMENT===CM001 : 33
    log:    Invoking service class CL_CRM_ERMS_RULE_EXEC
    log:    Processing policy ZSTC
    log:    Reading policy:ZSTC,  context:ERMS, variant:4E3BE28FBDFF0A60E1008000AC103D71
    log:    Processing rule container STC Routing ( 4E42909B1F170A60E1008000AC103D71 )
    log:    Processing rule STC Email Routing ( 4E42909C1F170A60E1008000AC103D71 )
    log:    Uncompiled Rule: <?xml version="1.0"?><if><logicalOperator>OR</logicalOperator><
    log:    conditions/></if>
    log:    Compiled Rule: <or></or>
    log:    Rule evaluates to FALSE
    log:    ..execution time (CL_CRM_ERMS_RULE_EXEC):0.0043740
    Procedure for System Administration
    Also check the binding between the task container and the method container.
    Please assit on this issue.
    Thanks,
    Shan
    Edited by: Shanmuga sundaram Balakrishnan on Aug 11, 2011 12:27 PM

    Hi Pieter,
    Thanks. But my rule policy is simple as stated below.
    If
    E-Mail orginal recipient contain "contactusatabc.com"
    Then
    Route EMail ( Organizational Object = Assistant Manager/Executvie )  and
    Create Service Request ( Process type = ZR )
    Service manager profile ZSRQMROUTING is created and assigned with below services.
    1     SVC_PARAMS
    5     FG_WEBFORM
    7     FG_EMAIL
    10     UT_WORKITEMTEXT
    50     RE_RULE_EXEC
    70     AH_DEF_ROUTING
    800     UT_ERMS_REPLICAT
    And RE_RULE_EXEC assigned with
    DEF_ROUTING     O:50000008
    LOG_LEVEL     0
    POLICY     ZSTC
    Whenever a mail sent from SBWP, recipient as contactusatabc.com" and receiver type is Business Object.
    After mail has been sent and ERMS processing log shows sender id as blank ( even my user id maintianed email address in SU01)  in tcode CRM_ERMS_LOGGING
    compiled Rule: <or><not_contain case="" multivalue=""> <xpath provider="CL_CRM_E
    RMS_ADD2FB_DOCUMENT" accessor=""><constant value="/parts/SENDER_ADDRESS/text()"/
    </xpath> <constant value="abcatannon.com"/></not_contain></or>
    path address:/parts/SENDER_ADDRESS/text()
    Kindly advise me incase of any missing configuration.
    Thanks
    Shan

  • Information required on ERMS in CRM 5.0

    Hi all,
    I'm creating a demo on ERMS. I've done the configuration as said in How to Guide - ERMS system. Now I would like to know if we can trigger the ERMS1 workflow or test ERMS sending mail from one user to another in SAP system itself without any external mailing system.
    Kindly let me know if this is possible and if yes let me know procedure for acheiving the same.
    Cheers,
    Prashanth

    hi
    yeah you can send the mail internally to SAP inbox of any user
    go to SO28
    there you maintain the user group and inside you mentioneERMS1 as the profile
    when you maintain the users in your group
    then you will be able to do so
    best regards
    ashish

  • ERMS : Send mail on saving Sales Order

    HI,
    How can we send mail through ERMS on saving the Sales Order. I know about ERMS...All setting are done but i don't know on which event this will get trigger.  i have maintained the following rule :
    If
    ICWC_Order:type Equals Home 'ZXX'
    Then
    Forward eMil To ( Forward To = "abc@abclcom"; Forward From = acb@acbcom )
    I know we can call this action in IC webclient through ESCALATION button. But how we can call this action on SAVE ORDER.
    Please Help...
    Regards,
    Ankush

    Hi Ankush
    You can also achieve the same results using actions.
    Here are some details how it works:
    1. Action profile which triggers an email on Order save. Assign the action profile to Transaction
    2. Smartform to put data email
    3. Forward To address can picked up from Partners
    4. From address can be setup in SCOT
    Hope this helps
    Rupesh

  • ERMS: Creation of Interaction Record and Service Ticket

    Hi All,
    I am configuring the ERMS system (SAP CRM 2007). So far I am been able to get internal emails into the CRM system and the emails are getting routed to the respective agent's inbox based on the rule in Rule Modeler.
    I have created rule for creating Interaction Record and Service ticket. However, Interaction Record and Service ticket are not getting generated. Also, I am not able to receive external emails (yahoo, gmail etc..) into SAPconnect.
    Any input on these issues is appreciated.
    Thanks & regards.

    Hi Namita,
    Same as the other thread, please make sure that the BP is identified for the incoming email and then only the creation of the IR/SO ERMS Actions will get executed with success.
    I am not sure, whether you still face this issue ?
    Thanks & Best Regards,
    Vinod
    Edited by: Vinod C on Mar 25, 2009 3:38 PM

  • Risk Analysis Failing in ERM 5.3

    Hi All -
    I would appreciate some assistance with pin-pointing an issue that I'm having with running Risk Analysis on roles in ERM. Currently I have RAR configured with the appropriate rule set and generating the expected risk/sod conflicts for users & roles. I have also added the appropriate Web Service Info. in th Misc section under the configuration tab (url, user, pwd) for all sections associate with RAR integration.
    Now when I run a risk analysis on a particular role in RAR i get the correct conflicts however when I get the Risk Analysis stage with ERM I receive the following Error:
    Risk analysis failed; Cannot assign NULL to host variable 5. setNull() can only be used if the corresponding column is nullable. The statement is "INSERT INTO VT_RE_RSK_OBJRULES (OBJCODE, OBJDESC, OBJFLDCODE, OBJFLDDESC, VALFRMID, VALTOID, COND, RSKVIOLID) VALUES(?, ?, ?, ?, ?, ?, ?, ?)".
    I also get this error when trying to run Mass Maintenance --> Risk Analysis:
    Risk anaysis for role "XX:XXXXX" failed
    Before I was getting error: "Risk Analysis performed successfully; No Risk Found" so I referenced SAP Note 1265964 and applied all solution steps.
    Lastly here is the error log:
    2010-01-14 14:59:28,768 [SAPEngine_Application_Thread[impl:3]_31] ERROR com.virsa.re.role.actions.RiskAnalysisAction
    java.lang.Throwable: Cannot assign NULL to host variable 5. setNull() can only be used if the corresponding column is nullable. The statement is "INSERT INTO VT_RE_RSK_OBJRULES (OBJCODE, OBJDESC, OBJFLDCODE, OBJFLDDESC, VALFRMID, VALTOID, COND, RSKVIOLID)  VALUES(?, ?, ?, ?, ?, ?, ?, ?)".
         at com.virsa.re.bo.impl.RiskAnalysisBO.saveObjViolations(RiskAnalysisBO.java:906)
         at com.virsa.re.bo.impl.RiskAnalysisBO.performObjLvlRiskAnalysis(RiskAnalysisBO.java:824)
         at com.virsa.re.bo.impl.RiskAnalysisBO.performRiskAnalysisOnSystem(RiskAnalysisBO.java:214)
         at com.virsa.re.role.actions.RiskAnalysisAction.performRiskAnalysisOnMultipleRoles(RiskAnalysisAction.java:609)
         at com.virsa.re.role.actions.RiskAnalysisAction.execute(RiskAnalysisAction.java:112)
         at com.virsa.framework.NavigationEngine.execute(NavigationEngine.java:273)
         at com.virsa.framework.servlet.VFrameworkServlet.service(VFrameworkServlet.java:230)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.doWork(RequestDispatcherImpl.java:321)
         at com.sap.engine.services.servlets_jsp.server.runtime.RequestDispatcherImpl.forward(RequestDispatcherImpl.java:377)
         at com.virsa.framework.servlet.VFrameworkServlet.service(VFrameworkServlet.java:286)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
         at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.runServlet(FilterChainImpl.java:117)
         at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:62)
         at com.virsa.comp.history.filter.HistoryFilter.doFilter(HistoryFilter.java:43)
         at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:58)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:384)
         at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:386)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:364)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:1039)
         at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:265)
         at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
         at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175)
         at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
         at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
         at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
         at java.security.AccessController.doPrivileged(Native Method)
         at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:104)
         at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:176)
    Any help would be greatly appreciate it - Thanks in Advance!

    GOing to repost

  • Detect obsolete mitigating control assignments?

    Hello,
    What report/s would you use to detect obsolete mitigating control assignments?
    The scenario is: A user has been assigned a mitigating control, let's say during the CUP workflow, to mitigate a certain risk that came with a certain role. Later, that role is removed from the user. Now the user is in the scope of a mitigating control. However, the user is not even subject to the risk in question anymore.
    Which way (periodically?) could you detect these cases and clean up the mitigating control assignments?
    Thanks and regards
    Patrick

    Hey,
    My experience of cleaning up controls has not been very straight forward.
    I have had to perform various risk analysis reports and look up a list of user accounts that have been marked as "Expired" etc.
    It can be slightly more difficult  if, like many organisations, you decide to assign a control with a infinite validity period (i.e. 12.12.9999).
    The Business and Internal Control team need to be very proactive about regularly monitoring the controls and reviewing the assignments. This is one reason why I strongly recommend that controls are only assigned for a set period (i.e. 365 days/1 year), so a compulsory review takes place by the control owners/business on a regular basis. This makes the controls much more affective, robust and fit for purpose.
    Happy to hear other's opinions and ideas.

  • ERMS in CRM 7.0 version

    Hello Friends!
    Can anyone tell me if there is any diference or upgrade in ERMS feature in CRM 7.0?
    Anyone implemmented this feature already in this new version?
    Where can I find some documents about it??
    Best Regards,
    Nivea

    Hello,
    There exixt around 20-25 Steps in case of customisation of ERMS fucntionality.
    This is used in IC Webclient funciton.
    Let me know what is the issue and where you are encountering the challenge
    Best Regards,
    Sathyadev.;

Maybe you are looking for