NF de entrada compra de fornecedor - Integração GRC e R/3

Similar Messages

• Oracle IAM integration with GRC 10

  Hi All,
  Our client is using Oracle IAM for user provisioning process. Now they have SAP GRC being implemented for two of their SAP systems. Now client wants to integrate SAP GRC Access Risks analysis (ARA) for SOD analysis and User Access Management(UAM) for user provisioning modules of SAP GRC 10 with Oracle IAM.
  As far as i know, webservices needs to be activated in GRC 10 and has done that. Now i want to know how Oracle IAM communicates with GRC 10. How connectors needs to be developed, User account to be created for web service access and how the parameters are passed from oracle to grc.
  Also how many different scenarios are there in oracle IAM for this integration?
  In SAP IDM vs SAP GRC integration we have 2 scenarios.
  1. Request raised in IDM -> SOD analysis in GRC -> Provisioning in GRC -> Return success/failure status back to IDM
  2. Request raised in IDM -> SOD analysis in GRC -> Return SOD success/failure status back to IDM -> Provisioning in IDM
  So can anyone help with possible scenarios for this integration process??

  Hi vikas and Frank,
  Do you have any information related on How to enable the webservices in the GRC 10 (does NWBC holds the key). if you have any information related to it  please share it with me.
  Thanks and regards,
  keerthi

• Tivoli IDM Integration with GRC 10

  Hi All ,
  Can someone please help me with the information about webservices that we need to enable on GRC 10 so that it can integrate with the IDM Solution (IBM Tivoli ) . I had a look at the GRC 10 docs in market place , however couldnt find any help on this.
  Thanks for your time.
  Vikas

  Hi vikas and Frank,
  Do you have any information related on How to enable the webservices in the GRC 10 (does NWBC holds the key). if you have any information related to it  please share it with me.
  Thanks and regards,
  keerthi

• Entrada da NFe no ERP e arquivamento do XML.

  Prezados, bom dia.
  Tenho algumas dúvidas que gostaria de dividir com vcs. Alguém saberia responder?
  Processo de Entrada de Nfe no ERP (manual)
  1.) Quando da entrada de dados da DANFE no ERP (MIGOMIRO), este envia alguma informação pro GRC? Em que momento é validada a DANFE?
  2.) Se sim, em que formato são armazenados os dados da NFe no GRC?
  Recebimento do arquivo XML do fornecedor
  1.) Há alguma consistência entre o XML (recebido do fornecedor) armazenado no GRC e os dados inseridos no ERP (com base na DANFE recebida)?
  2.) De quem é a obrigatoriedade em armazenar o XML? Fornecedor, empresa que recebe, SEFAZ, Receita Federal, etc? As informações armazenadas são as mesmas? Por qual período os dados devem permanecer guardados?
  Obrigado por qualquer ajudar.
  Hyalen.

  Obrigado David e Henrique. As respostas ajudaram bastante.
  Formatei a discussão em Perguntas e Respostas para facilitar o entendimento.
  1- Pergunta:
  Quando da entrada de dados da DANFE no ERP, este envia alguma informação pro GRC? Em que momento é validada a DANFE?
  Resposta:
  Atualmente, quando você entra com as informações da DANFE através do MIRO/MIGO nenhuma informação é enviada ao SAP GRC NFe, logo nenhuma validação destas informações é realizada junto a SEFAZ.
  2- Pergunta:
  Uma parte do processo de NFe é dar entrada da mercadoria no ERP. O que acontece se eu digitar as informações de recebimento, em relação ao XML armazenado, errada no ERP? Há alguma consistência entre o XML armazenado no GRC e os dados inseridos no ERP?
  Resposta:
  Quando você receber o XML de um emissor de NF-e através do cenário de B2B do SAP GRC NFe, esta nota será consultada pelo SAP GRC NFe junto ao site da SEFAZ e será armazenada no SAP GRC NFe (dentro do repositório do SPRO), mas nenhuma informação desta NFe (XML recebido) será consistida com as informações inseridas no ERP (baseada na DANFE recebida).
  3- Pergunta:
  Em que formato são armazenados os dados da NFe no GRC? Melhor dizendo, o GRC decompõe o XML que chega do fornecedor e armazena os dados em tabelas ou grava como XML mesmo?
  Resposta:
  O GRC armazena o XML sem decomposição alguma e em dois momentos, quando da solicitação do protocolo e após validação do XML pela SEFAZ. No segundo caso o XML será armazenado com o Código de Autorização de Uso.
  4- Pergunta:
  De quem é a obrigatoriedade em armazenar o XML? Fornecedor, empresa que recebe, SEFAZ, Receita Federal, etc? As informações armazenadas são as mesmas? Por qual período os dados devem permanecer guardados?
  Resposta:
  Estas informações foram extraídas Portal da Nota Fiscal Eletrônica - Perguntas Frequentes NF-e
  A regra geral é que o emitente e o destinatário deverão manter em arquivo digital as NF-es pelo prazo estabelecido na legislação tributária para a guarda dos documentos fiscais, devendo ser apresentadas à administração tributária, quando solicitado. Assim, o emitente deve armazenar apenas o arquivo digital.
  No caso da empresa destinatária das mercadorias e da NF-e, e que seja emitente de NF-e , ela também não precisará guardar o DANFE, mas apenas o arquivo digital recebido.
  Caso o destinatário não seja contribuinte credenciado para a emissão de NF-e, o destinatário deverá manter em arquivo o DANFE relativo a NF-e da operação pelo prazo decadencial estabelecido pela legislação, devendo ser apresentado à administração tributária, quando solicitado.
  Reforçamos que o destinatário sempre deverá verificar a validade e autenticidade da NF-e e a existência de Autorização de Uso da NF-e, tenha ele recebido o arquivo digital da NF-e ou o DANFE acompanhando a mercadoria. Hoje os processos são separados.
  1- DANFE -> transporte de mercadoria -> entrada manual MIRO/MIGO.
  2- XML -> interface B2B -> armazenamento no GRC.
  A funcionalidade de entrada automática dos dados da NFE no ERP (sem necessidade de digitar nada, dados lidos do XML) está prevista pro próximo release do NFE.
  Quanto ao requisito legal (armazenar o XML e verificar status da NF-e quando da chegada do XML), a solução já atende. Mas vc continua tendo q fazer a MIRO/MIGO e checar na SEFAZ o status da NF-e quando da chegada do DANFe (pois no meio tempo entre a chegada do XML e da DANFe, a NF-e pode ter sido cancelada pelo emissor). No próximo release, esses passos manuais serão totalmente automatizados, sendo integrados com o processo do XML.

• Reg_GRC 10.0 Integration with backend systems

  Hi Everyone,
  Could you please help me to find out  which all of the below products can be integrated with GRC 10.0 Access control.
  Click  Schedule
  PI System
  BOBJ - CMS
  BOBJ-DS-CMS
  SAP Mobile Platform - Derby
  Afaria
  ADP
  ARIS Cloud
  SOLMON
  Adobe Live Cycle
  SAP Mobile Platform - Agentry
  Click Plan
  Click Roster
  Success Factors - LMS
  Success Factors - EC
  Success Factors - Talent Management
  Success Factors - Performance Management
  Benefitfocus
  BOOMI
  KNOA
  SAP Central Process Scheduling by Redwood
  SAP Extended Diagnostics by CA Wily
  SAP Quality Center by HP, enterprise edition, bundle
  SAP Test Acceleration and Optimization
  SAP NetWeaver Landscape Virtualization Mgmt enterprise
  Thanks and Regards,
  Naga.

  Hi Hemant
  SAP has made a lot of the transport functionality in GRC10. I find that they hereby created a huge expectation with the customer, that in fact is not true.
  For instance Exclusion Objects and Mitigation Controls are NOT transported. What about Organizations? Critical Roles and Profiles are also not transportable.
  As for the Connectors - system specific parameters are transported. Therefore you end up having to delete the DEV and QA connectors in the PRD GRC system.
  On this question, has anyone used CLM yet? It seems that only Functions and Risks will be extracted to CLM and then deployed in the other system (DEV to QA for example). Does CLM even work?
  SAP provide not guidance on all of these important issues. I agree that it is about time that SAP takes some leadership and produce a proper best practise guide for this software. By the way, an offical sizing document from SAP is still to be delivered.
  Thanks
  Will

• GRC 10 PC Integration with AC

  Hello Experts,
  I have a following scenario where in i have to map Mitigation controls of AC to one of the controls/Control objective in Process controls. Is it possible to do this kind of integration in GRC 10? If yes, Is there any configurable settings which needs to be defined?
  Please let me know the available options to fix the issue.
  Regards,
  Su

  Hi Suma,
  To assign the Mitigation control to any of the controls in PC-
  -open the control through organization, which is assigned as 'Allow Local changes' as 'Yes'.
  -There you can give the Mitigating Control ID and save.
  Once saved, the Mitigation control ID cannot be changed.
  regards,
  Rajeshwari

• Document Management in GRC 10.0 Process Control 10.0

  Hi - Our Company is looking to implement GRC 10.0 Process Control 10.0. We have a bit of a challenge for which document management services to go with . Currently there is no integration between GRC 10.0 and OpenText or Sharepoint. I was wondering what solutions others have for Document Management in GRC 10.0
  Thanks

  Hi Sabita,
    Did you check this article on Content Life Cycle Mngt supports all SAP GRC products. Check the link for detailed article and I hope this would be right direction for your company to go.
  http://www.sdn.sap.com/irj/bpx/go/portal/prtroot/docs/library/uuid/e0431d8f-2298-2e10-5fb0-87840e285f4c
  warm regards,
  Asok Christian

• Unable to define connector for multiple backend systems in BRM

  Hi,
  I am on GRCFND_A V.11 and SP04
  I have multiple backend systems integrated with GRC box. So far I was using one backend connector as default one for role maintenance but it is not feasible if you have to create roles in variuos backend connected systems. I know one way to do so, i can keep changing the default connectors whenever i need to create roles but that is obviously not at all the onw any one would like to go with.
  So, I tried to create unique connector groups for every individul backend connectors. But the issue is, the moment i assign the backend connector to the respective connector groups, the same gets reflected to other connector groups as well. So, whenever i either add or delete some of the connectors to any connector groups it gets modified/changed from all of the connector groups.
  These are the backend connectors where i have to create roles from BRM whenever needed.
  These are the connector groups:
  I followed to the ink: GRC AC 10 BRM: Default Connectors with Multiple Back-end R/3 Systems , which is the same as mine issue, but not able to come to the solution point.
  would appreciate for your quick response.
  Thanks,
  Ameet

  Could anyone suggest solution to the above mentioned issue please?

• Basic configuration in GRC 10 for portals

  Hi Gurus,
  Could you please tell me the basic configuration details in GRC 10 for portals.
  Thanks,
  Mukesh

  Hi Mukesh,
  You can refer to https://websmp230.sap-ag.de/sap(bD1lbiZjPTAwMQ==)/bc/bsp/sno/ui_entry/entry.htm?param=69765F6D6F64653D3030312669765F7361…
  However there is no such guide on Portal integration with GRC, you might need to follow below steps:
  1- Create one HTTP type RFC connection between GRC and Portal system.
  2- Create System Alias in portal system for GRC system
  3- Deploy the GRC Portal content in Portal system
  5-Portal content comes with 5 work-sets and one security role.You can assign the portal role that comes with the Portal content to user in Portal and also GRC roles to the same user in GRC system.
  Hope this helps.
  Regards,
  Ameet

• Change in Access Control components on the Service Marketplace

  Hello GRC community:
  We would like to inform you that as of yesterday (5/30) the Access Control components for support messages/SAP Notes have been changed (they have actually been replaced so all messages/notes logged under the old component will be moved/replaced to the new).
  The main 4 components are now:
  New: GRC-SAC-ARA     Access Risk Management
  Old: GRC-SAC-SCC          Risk Analysis & Remediation (formerly Compliance Calibrator) 
  New: GRC-SAC-ARQ     Access Request
  Old: GRC-SAC-SAE          Compliant User Provisoning (formerly  Virsa Access Enforcer) 
  New: GRC-SAC-EAM     Emergency Access Management
  Old: GRC-SAC-SFF          Superuser Privilege Management (formerly Virsa Firefighter) 
  New: GRC-SAC-BRM     Business Role Management
  Old: GRC-SAC-SRE          Enterprise Role Management (formerly Virsa Role Expert)
  There are also NEW components specific to areas of functionality. If you are not sure of what component to log your message under, please use the main components above.
  GRC-SAC-ADS          Directory Services
  GRC-SAC-BI             Access Control BW
  GRC-SAC-CONF       Configuration
  GRC-SAC-DAS          Dashboard
  GRC-SAC-REP          Repository
  GRC-SAC-RPT          Reporting
  GRC-SAC-UAR          User Access Review
  GRC-SAC-UPG          Installation & Upgrade
  GRC-SAC-WF           Workflow
  Ramelyn Paredes
  AGS Primary Support

  Hello COmmunity,
  To Summarise in Short: New features introduced to V10.0 : GRC 10.0 is ABAP based, so extraction of data from users is fast & analysis as well.
  As usual, the names for the Access control tool has been changed
  A. Access Risk Analysis (RAR)
  1. USOBT & object information will be automatically updated with GRC rather than manual upload (earlier version)
  2. Mass Users can be imported from .CSV file for risk analysis, Role analysis etc.,
  3. Variant creation / reuse for any report analysis
  4. Option of having multiple rule sets & simulating users across multiple rule sets at same time
  5. Risk analysis for CUA, Composite roles
  6. Mitigation by system, risk id, mass mitigation for users, audit trail etc.,
  7. Risk analysis for HR objects
  B. Emergency Access Management (SPM)
  1. Mass reporting for all FF users, Ids, Executions
  2. Centrally maintained for all systems rather than individual ERPs.
  C. User Access Management (CUP)
  1. Customizable Access request forms
  2. HR based role assignment for position, org unit
  3. IDM integration using GRC Web services
  D. Business Role Management (ERM)
  1. Concept of Business role mapping for Technical roles.
  2. Audit Trails & PFCG Change history.
  Finally, the look, reporting format has been changed to provide additional information for analysis.
  More important - GRC V5.3 support is till 2015 & SAP has planned to push the customers to upgrade to 10.0. Eventually SAP is also planning to release GRC 11.0 by mid next year. So we have to wait & watch the show

• Active Directory, GRC, and Identity Management

  I had originally posted this in the Security forum, but was directed here:
  A client I am working at would like to explore using Active Directory groups to assign SAP roles to users, both portal roles and ABAP roles. They are currently using Microsoft AD. However they have a requirement to use GRC Access Controls (v5.2) to assist with role maintenace and assignment for SOX compliance. I have been told that the Identity Management product can assist with integrating GRC and AD that will still allow for SOD checking/SOX compliance while role assignments can take place in AD.
  Does anybody have experience with using Identity Management either with or without GRC? Does in work with Microsoft AD or is it is own AD product? What was your experience with it?
  Are there any other products that can be recommended that will allow for integration between GRC Access Controls and Microsoft AD?
  Steve

  Hi Steve,
  We integrated SiteMinder(eTrust) from CA with the Portal and it is pretty good and stable.
  The one thing i like with SiteMinder is they are pretty stable and once it is configured the maintenance is very less and it is very stable also.
  Also, they provide integrations with major webservers and application servers.
  Cheers, Nag

• GRC AC User Provisioning

  Hello all,
  I know we can create users for ECC, CRM, PI, Portal and others bases on NetWeaver through GRC AC standar solutions. But what about BO BI, DS, BPC? I read some posts about the subject but they were not clear as I need.
  Can I create users in BO BPC using GRC AC? How? Using standard solutions?
  I could not find any official document talking about this. If someone could share this document I would really appreciate.
  Thanks in advance,
  SAP Legend

  I believe you are looking for this guide
  http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/80dd93d8-939a-2f10-f08a-d51d43b2abd1?overridelayout=t…
  This details the BPC integration with GRC AC.
  Regards,
  Vivek

• Compatible Portal Version for GRC 10

  Hello GRC Experts,
  We are upgrading GRC PC 3.0 to 10.0 and our Client is using Portal to access PC.   We are also planning to upgrade Portal version 7.0 to 7.3.  Please let us know which version of the Portal is compatible for GRC 10 (PC and AC will be upgraded to 10).
  We are informed that Portal 7.3 is not compatible, kindly advise if there is a patch available to make Portal 7.3 compatible for GRC 10 (PC and AC) upgrade.
  Thanks and regards
  Babu.

  Hi Babu,
  As of now EP 7.02 is supported for integration with GRC 10. Please check the SAPnotes below for the intgration and compatiability details.
  1) Note 1603438 - GRC AC 10.0 EP Plug-In (JAVA), supported NW versions
  2) Note 1607279 - GRC 10.0 Enterprise Portal - Integration Scenarios
  3) Note 1607232 - GRC 10.0 Enterprise Portal Configuration
  BR,
  Guru

• CUA vs. Access Enforcer

  Can anyone explain the need for implemented both CUA and Access Enforcer?
  We are currently upgrading to ECC6.0 and implementing the GRC tools(5.2) and CUA  With the distributed access provisioning available in Access Enforcer, I am trying to determine the benefit of implementing CUA .

  Hi Patrick
  1) In this scenario the only benefit with CUA i can see is
       a) Password reset
       b) locking and unlocking the user.
  2) If you use GRC AC in landscape, it is not at all recommended to assign roles, profiles using CUA. This can lead to high level compliance /regulatory issues.
  3) If you are implementing new CUA, then i would recommend to go for NW Identity Management Solution. Advantages are
      1) User provisioning for SAP and non-SAP system
      2) can be integrated with GRC for Risk analysis and remediation.
      3) Password Management also possible.
          https://www.sdn.sap.com/irj/sdn/nw-identitymanagement
  regards
  Anand.M

• SAP TM Change logs

  Hi All,
  I am working on SAP transportation management (TM) system which uses NWBC. All end users access NWBC and perform various transactions like Create Booking, Change Booking etc.
  Change logs are not being captured in any of the change tables (CDHDR and CDPOS). I browsed in google and came across concept called Context Log Changes for Webdynpro applications.
  https://help.sap.com/saphelp_nw70ehp1/helpdata/en/17/023e63ac50439e83d4ed8573df0938/content.htm?frameset=/en/47/af752005c92fe1e10000000a42189d/frameset.htm
  I have executed the demo existing in my system and demo shows that the whatever changes being done by the users in NWBC can be captured using this context change logs.
  We are looking to implement this for our project, but before that we have few queries.
  1. Where do these context logs gets stored if i enable them?
  2. Our TM system is being integrated with GRC system, so if the change logs gets recorded in change tables (CDHDR and CDPOS), GRC can read them.
  3. Does this show any performance issues for our system if enabled?
  Experts please suggest.
  Thanks,
  Sai.

  Hi Sai,
  Please try the standard change document function.
  1.Set the change doucment flag in type definition.
  2.The change object would be tracked.
  3.The changes stored in CDHDR and CDPOS.
  Best Regards
  Clark Huang