Regd : Rules in SAP Virsa
I am a beginner in SAP Virsa. I am having one doubt in it
How to create rule in SAP virsa ? Is this rule is automatically generated for each module ? As as security consultant how can we identify the risks in the Functional module . Is that we need help of functional guys in each module to explain the critical risks. Also i understand that it is Segregation of duties of each employee in organization. But how we identify the risk factors in it. How to generate the corresponding role for it.
Can any one please brief me out ... I am very eager to know about this Virsa. Thanks for your help in advance
Hi Sanjeev,
It's worth checking out the user guide for c/c:
https://websmp203.sap-ag.de/~form/sapnet?_FRAME=OBJECT&_HIER_KEY=501100035870000015092&_HIER_KEY=601100035870000206624&_HIER_KEY=601100035870000212731&_HIER_KEY=601100035870000210510&_HIER_KEY=701100035871000519581&_SCENARIO=01100035870000000202&#HOME
That will tell you how to create rules or change the ones supplied with the tool & goes the structure of how they are set up.
When identifying the risks you need to get the business and the functional consultants to analyse the existing ruleset and make any changes that are relevant to your business.
The best place for questions on the GRC products is the SDN GRC forum:
Governance, Risk and Compliance (SAP GRC)
Similar Messages
-
What are mapping rules in sap xi/pi ?
hi experts
what are mapping rules in sap xi/pi ? how we can use this rules for special charters mapping .>
praveen.tecnics wrote:
> hi experts
>
> what are mapping rules in sap xi/pi ? how we can use this rules for special charters mapping .
to map special characters you need to use an element called CDATA in your mapping
a special character causes an error....as XI wont be able to read it (as it is not in a proper XML format)...so to parse this character through XI without causing an eror use the CDATA....just make a search on SDN and you will find the proper use of it....
For your info: http://www.w3schools.com/XML/xml_cdata.asp
Regards,
Abhishek.
Edited by: abhishek salvi on May 20, 2009 8:52 AM -
Can i know what are the thumb rules of sap r/3
hi,
sap gurus,
good afternoon to all,
can i know what are the list of thumb rules of sap r/3.
plz
regards,
balaji.t
09990019711Hi,
Please Follow link
http://www.dbis.ethz.ch/research/publications/19.pdf
Thanks,
Raja -
Blank values in RAR Rules - RAR (SAP GRC AC 5.3)
Hello,
We are working on the deployment of a GRC Access Control 5.3 system in a main customer and we have found next issues about AC 5.3:
When a rule with a Blank value in u201CValue Fromu201D and u201CValue Tou201D columns is set, RAR is not taking users with any u201CValue Fromu201D / u201C Value Tou201D for that rule. In fact we are seeing that only users with value: * in u201CValue Fromu201D column are taken. It doesnu2019t fit with the standard SAP practices. Could you confirm this issue? How could we set a rule for taking any value?
Rule Example:
Object: F_BKPF_BUK Field: ACTVT Value From: Value To: Condition: AND Status: ENABLE
User1 value:
Object: F_BKPF_BUK Field: ACTVT Value From: 4 Value To: (Itu2019s NOT taken)
User2 value:
Object: F_BKPF_BUK Field: ACTVT Value From: 5 Value To: (Itu2019s NOT taken)
User3 value:
Object: F_BKPF_BUK Field: ACTVT Value From: * Value To: (Itu2019s taken)
Best regards.You need to distinguish between the value in the authorization field of the object and the search pattern.
is only looking for the field name. It does not even care about the value.
Values '4' and '5' are not valid for F_BKPF_BUK (see table TACTZ) so unless you populate UST12-BIS (what you call "Value To:" then you won't get a result.
I faintly suspect that you are "cooking the books" at the file level, and are expecting the GRC system and possibly the ABAP system as well to use the same logic?
Can you explain what User1 + User2 are expected to achieve with these values.
The system does sometimes make DUMMY checks (see the ABAP key word documentation in transaction ABAPDOCU) but this is not the correct strategy to pass those checks in my opinion.
I also suspect that this is an "action" in the customer name space. Perhaps you are using an unreleased FM instead of a BOR object? See transaction BAPI for more infos and finding the correct BOR (Business Object Repository) so that your RAR is not confused by dodgey coding....
Cheers,
Julius -
Unable to import file from Backend in SAP Virsa AE 5.2
hi,
currently we are having AE 5.2 with SP11. when we go to Configuration tab -> Role -> Import role and give the role name which is in the backend and click on Import role, we are getting an error as " Action Failed".
the role is existing in the backend. all the other roles are getting imported except for this role. Also we have tired the template Role file and have given the details and uploaded the file. Even this didnt work out.
any help on this will be really great.
thanks in advance.
Amithhi Hareen,
i am trying to import the role "ZF:M_IO_INT_INV_RECORD_ABC" from PRD 095 system and i am getting an error. Attached is the log. thanks in advance.
Regards
Amith
2009-03-03 07:41:20,263 [SAPEngine_Application_Thread[impl:3]_24] ERROR LocaleUtil.java: Locale Object:
2009-03-03 07:41:35,975 [SAPEngine_Application_Thread[impl:3]_18] ERROR java.util.NoSuchElementException
java.util.NoSuchElementException
at java.util.StringTokenizer.nextToken(StringTokenizer.java:259)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getManagerDetailsByLDAPURL(LDAPSearchUser.java:883)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUserByDN(LDAPSearchUser.java:256)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.setManagerDetails(LDAPSearchUser.java:786)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUsers(LDAPSearchUser.java:636)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUserById(LDAPSearchUser.java:760)
at com.virsa.ae.search.bo.SearchUserBO.getUserById(SearchUserBO.java:192)
at com.virsa.ae.service.cache.AECacheUtil.getUser(AECacheUtil.java:321)
at com.virsa.ae.service.cache.AECacheUtil.getUserFullName(AECacheUtil.java:220)
at com.virsa.ae.dao.sqlj.RoleDAO.findApproversByRoleProfName(RoleDAO.sqlj:51)
at com.virsa.ae.dao.sqlj.RoleDAO.findRoleDetailsByName(RoleDAO.sqlj:211)
at com.virsa.ae.configuration.bo.ImportRolesBO.upsert(ImportRolesBO.java:557)
at com.virsa.ae.configuration.bo.ImportRolesBO.importFromSAPSystem(ImportRolesBO.java:167)
at com.virsa.ae.configuration.bo.ImportRolesBO.importFromSystem(ImportRolesBO.java:99)
at com.virsa.ae.configuration.actions.ImportRolesAction.importRoles(ImportRolesAction.java:189)
at com.virsa.ae.configuration.actions.ImportRolesAction.execute(ImportRolesAction.java:61)
at com.virsa.ae.commons.utils.framework.NavigationEngine.execute(NavigationEngine.java:256)
at com.virsa.ae.commons.utils.framework.servlet.AEFrameworkServlet.service(AEFrameworkServlet.java:423)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:365)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:944)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:266)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:160)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
2009-03-03 07:41:35,979 [SAPEngine_Application_Thread[impl:3]_18] ERROR com.virsa.ae.configuration.ConfigurationException
com.virsa.ae.configuration.ConfigurationException
at com.virsa.ae.configuration.bo.ImportRolesBO.upsert(ImportRolesBO.java:723)
at com.virsa.ae.configuration.bo.ImportRolesBO.importFromSAPSystem(ImportRolesBO.java:167)
at com.virsa.ae.configuration.bo.ImportRolesBO.importFromSystem(ImportRolesBO.java:99)
at com.virsa.ae.configuration.actions.ImportRolesAction.importRoles(ImportRolesAction.java:189)
at com.virsa.ae.configuration.actions.ImportRolesAction.execute(ImportRolesAction.java:61)
at com.virsa.ae.commons.utils.framework.NavigationEngine.execute(NavigationEngine.java:256)
at com.virsa.ae.commons.utils.framework.servlet.AEFrameworkServlet.service(AEFrameworkServlet.java:423)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:365)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:944)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:266)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:160)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
Caused by: java.util.NoSuchElementException
at java.util.StringTokenizer.nextToken(StringTokenizer.java:259)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getManagerDetailsByLDAPURL(LDAPSearchUser.java:883)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUserByDN(LDAPSearchUser.java:256)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.setManagerDetails(LDAPSearchUser.java:786)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUsers(LDAPSearchUser.java:636)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUserById(LDAPSearchUser.java:760)
at com.virsa.ae.search.bo.SearchUserBO.getUserById(SearchUserBO.java:192)
at com.virsa.ae.service.cache.AECacheUtil.getUser(AECacheUtil.java:321)
at com.virsa.ae.service.cache.AECacheUtil.getUserFullName(AECacheUtil.java:220)
at com.virsa.ae.dao.sqlj.RoleDAO.findApproversByRoleProfName(RoleDAO.sqlj:51)
at com.virsa.ae.dao.sqlj.RoleDAO.findRoleDetailsByName(RoleDAO.sqlj:211)
at com.virsa.ae.configuration.bo.ImportRolesBO.upsert(ImportRolesBO.java:557)
... 21 more
2009-03-03 07:41:35,982 [SAPEngine_Application_Thread[impl:3]_18] ERROR com.virsa.ae.configuration.ConfigurationException
com.virsa.ae.configuration.ConfigurationException
at com.virsa.ae.configuration.bo.ImportRolesBO.upsert(ImportRolesBO.java:744)
at com.virsa.ae.configuration.bo.ImportRolesBO.importFromSAPSystem(ImportRolesBO.java:167)
at com.virsa.ae.configuration.bo.ImportRolesBO.importFromSystem(ImportRolesBO.java:99)
at com.virsa.ae.configuration.actions.ImportRolesAction.importRoles(ImportRolesAction.java:189)
at com.virsa.ae.configuration.actions.ImportRolesAction.execute(ImportRolesAction.java:61)
at com.virsa.ae.commons.utils.framework.NavigationEngine.execute(NavigationEngine.java:256)
at com.virsa.ae.commons.utils.framework.servlet.AEFrameworkServlet.service(AEFrameworkServlet.java:423)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:365)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:944)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:266)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:160)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
Caused by: com.virsa.ae.configuration.ConfigurationException
at com.virsa.ae.configuration.bo.ImportRolesBO.upsert(ImportRolesBO.java:723)
... 21 more
Caused by: java.util.NoSuchElementException
at java.util.StringTokenizer.nextToken(StringTokenizer.java:259)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getManagerDetailsByLDAPURL(LDAPSearchUser.java:883)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUserByDN(LDAPSearchUser.java:256)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.setManagerDetails(LDAPSearchUser.java:786)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUsers(LDAPSearchUser.java:636)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUserById(LDAPSearchUser.java:760)
at com.virsa.ae.search.bo.SearchUserBO.getUserById(SearchUserBO.java:192)
at com.virsa.ae.service.cache.AECacheUtil.getUser(AECacheUtil.java:321)
at com.virsa.ae.service.cache.AECacheUtil.getUserFullName(AECacheUtil.java:220)
at com.virsa.ae.dao.sqlj.RoleDAO.findApproversByRoleProfName(RoleDAO.sqlj:51)
at com.virsa.ae.dao.sqlj.RoleDAO.findRoleDetailsByName(RoleDAO.sqlj:211)
at com.virsa.ae.configuration.bo.ImportRolesBO.upsert(ImportRolesBO.java:557)
... 21 more
2009-03-03 07:41:35,983 [SAPEngine_Application_Thread[impl:3]_18] ERROR com.virsa.ae.configuration.ConfigurationException
com.virsa.ae.configuration.ConfigurationException
at com.virsa.ae.configuration.bo.ImportRolesBO.importFromSAPSystem(ImportRolesBO.java:171)
at com.virsa.ae.configuration.bo.ImportRolesBO.importFromSystem(ImportRolesBO.java:99)
at com.virsa.ae.configuration.actions.ImportRolesAction.importRoles(ImportRolesAction.java:189)
at com.virsa.ae.configuration.actions.ImportRolesAction.execute(ImportRolesAction.java:61)
at com.virsa.ae.commons.utils.framework.NavigationEngine.execute(NavigationEngine.java:256)
at com.virsa.ae.commons.utils.framework.servlet.AEFrameworkServlet.service(AEFrameworkServlet.java:423)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:365)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:944)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:266)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:160)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
Caused by: com.virsa.ae.configuration.ConfigurationException
at com.virsa.ae.configuration.bo.ImportRolesBO.upsert(ImportRolesBO.java:744)
at com.virsa.ae.configuration.bo.ImportRolesBO.importFromSAPSystem(ImportRolesBO.java:167)
... 20 more
Caused by: com.virsa.ae.configuration.ConfigurationException
at com.virsa.ae.configuration.bo.ImportRolesBO.upsert(ImportRolesBO.java:723)
... 21 more
Caused by: java.util.NoSuchElementException
at java.util.StringTokenizer.nextToken(StringTokenizer.java:259)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getManagerDetailsByLDAPURL(LDAPSearchUser.java:883)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUserByDN(LDAPSearchUser.java:256)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.setManagerDetails(LDAPSearchUser.java:786)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUsers(LDAPSearchUser.java:636)
at com.virsa.ae.service.umi.ldap.LDAPSearchUser.getUserById(LDAPSearchUser.java:760)
at com.virsa.ae.search.bo.SearchUserBO.getUserById(SearchUserBO.java:192)
at com.virsa.ae.service.cache.AECacheUtil.getUser(AECacheUtil.java:321)
at com.virsa.ae.service.cache.AECacheUtil.getUserFullName(AECacheUtil.java:220)
at com.virsa.ae.dao.sqlj.RoleDAO.findApproversByRoleProfName(RoleDAO.sqlj:51)
at com.virsa.ae.dao.sqlj.RoleDAO.findRoleDetailsByName(RoleDAO.sqlj:211)
at com.virsa.ae.configuration.bo.ImportRolesBO.upsert(ImportRolesBO.java:557)
... 21 more
2009-03-03 07:41:35,985 [SAPEngine_Application_Thread[impl:3]_18] ERROR Error occurred while importing roles.
2009-03-03 07:41:35,996 [SAPEngine_Application_Thread[impl:3]_18] ERROR LocaleUtil.java: Locale Object: -
Day light Savings new rules affect SAP installs?
How is the new Daylight Savings rule going to affect / effect SAP?
"In 2007, U.S. Daylight Saving Time (DST) will begin on the second Sunday in March and end on the first Sunday in November. This change in the schedule -- the first in 20 years -- will make U.S. Daylight Saving Time four weeks longer. The U.S. Energy Act of 2005 drove this change, which is intended to reduce energy consumption. While the business risk associated with having our systems reflect the wrong time by one hour for four weeks in 2007 is not as great as Y2K, the extent of the IT impact is not trivial and may impact clients in the U.S, as well as in non-U.S. geographies. "
Thanks,
BhaskarHi Bhaskar,
Daylight Savings Time dates are different all over the world and a change in dates in one country does not directly affect SAP. There are steps that need to be taken regardless of the exact date that the change falls on each year. Please see SAP Notes 7417, 950114, 438660, 102088, 398374, 673556, 643844 and others (just search Notes with keywords "Daylight Savings Time").
Best Regards,
Matt -
Hi
We will be installing VCC soon and just curious to know capability of the Virsa tool.
<u><b>Quick question.</b></u>
Can you create role utilizing Virsa CC e.g similar like PFCG
Thanks .....SAP Netweaver IDM 7.0 is like any other IDM tool which helps in managing access rights to diverse and distributed IT systems and resources (Can be Non-SAP also).
This cannot be used to complement PFCG in conventional SAP which is used to create authorisations @ application level.
As in IDM tools, SAP IDM uses policy definitions in managing the access rights to different resources.
It got 2 components.,
1. Virtual Directory
2. Identity Center
There has been no integration solution from SAP for IDM to work with GRC till the version 5.2 (Probably there might be in 5.3)
But this can configured even with 5.2 like any other IDM tool Ex : Siteminder.
Thanks.
Regards,
Muthu Kumaran KG -
How to create a validation rule in SAP BODS Job
Hi Experts
I have created a BODS Job and in that job i have to create a validation rule as if the cust_id is null the loading must stop.
I dont have idea where i have to define this validation rule in the Job and how to stop the load job if the validation rule file.
My Job was defined like below image
Please guide me where i have to define the validation rule and how to stop the load job.
Thanks in advance
PrasannaKumarHi samatha b
Thanks for your response. I have done as you said and now i can rise the exception.
I have another requirement as per the validation transformation the data will load into Pass table and Fail table after job execution. If any data entered into fail table i have delete the data loaded into Pass table.
Here i am facing problem as my target tables are MySQL tables and when i am writing scripts i wrote the script as
sql('database','delete from <tablename>');
but as it is an SQL Query execution it is rising exception for the query.
How can i delete the data loaded into MySQL Target table using scripts.
Please guide me for this error also
Thanks in Advance
PrasannaKumar -
Hello Experts,
We are in SRM 7.0
What is the meaning and the functionality of u201CFill in for meu201D selection, that can be met in the course of the engaging of the substitution rule?What is the difference between u201CReceive my tasksu201D and u201CFill in for meu201D?
Any pointer will be highly appreciated,
Regards,
RupeshHi,
Receive my tasks means that your taslks will be traasfered to your substitutes for the period determined meaning between start and end date.
Fill in for me means that if you didn't plan to be unavailable (no start and end date), your substitute could take your tasks. -
Error occurred in derivation rule in SAP
Hi All
i am trying to post the document as well to create the new PR i am getting the below error messge as
'Error occurred in derivation rule. See long text
Message no. K/101
Diagnosis
: Fund From Commitment Item
No entry in a derivation rule was found for the specified source fields.
The derivation rule was set up so that an error message appears when this happens.
The required derivation rule entry would need the following source fields:
Commitment Item
350801
Procedure
Create an entry in a derivation rule for these source field values. Make sure that entries exist for all the valid source field values. If the derivation should not always be carried out, you can also define a derivation rule so that no error message appears if a derivation rule entry does not exist.Hi Krishguna,
You need to check your derivation rule, T. Code: FMDERIVE for Fund then activate the trace, this will help you why fund is not deriving from commitment item, or tell us the detail of derivation for fund you have set.
Thanks
Javed -
Hi
I am working on Payroll India and going to configured the Gratiuty. I wanted to know about the gratiuty Act as well as how sap is suppoting the same...
Regards
Swapnil[1|http://www.citehr.com/28212-gratuity-act.html]
[2|http://www.google.co.in/url?sa=t&rct=j&q=gratuity%2Bact%2Bindia&source=web&cd=1&ved=0CCkQFjAA&url=http%3A%2F%2Flabour.nic.in%2Fclc%2Fpaymentofgratuityact.doc&ei=l7CFTtWqHoPbiALJwZmsDA&usg=AFQjCNEeU1ZWFQeCV7227028-FnNqPtbNA&sig2=LX15BBcRiig-9VOQwep1hw&cad=rja] -
SAP Building the rule in SAP Classification.
Hello MM folks,
Have you come acroiss situation where you can build the rule to search Material by charactrerisc and class using '001'- Material class as a searching functionality. Can you please give me steps.
Thanks
John savarimuthu
Edited by: JOHN SAVARIMUTHU on Jan 20, 2009 10:21 PMJohn , thanks for your response.
When you do a serach in CL30N, Enter the class name and class type '001' ( for my case).
It will give choice to choose the appropriate characteristics.
For examples.
Here is the company catalog.
DESKTOP MOdel Catolog
Speed HD
1 Ghz 30 GB
1 GHz 40 GB
1.4 Ghz 50 GB
1.4 Ghz 60 GB
CLASS : DESKTOP with 2 Characteristics.
Characteristic :
A. Speed : 1 GHZ , 1.4 GHZ
B. HD : 30 GB , 40 GB, 50 GB, 60 GB
Based on the Model, I have created Different parts.
Now When I search thru CL30N to find the Material.
I entered the First characteristic : 1 GHZ
THen I enter the second characterics,The system should propose only relevent 30 GB and 40 GB. It seems that these works in other ERP systems.
Question : Is it feasible to change the configuration or add user exit to propose relevent characteristics based on first one in the Search engine CL30N.
Appreciate , if you could provide me your help.
Just to update you that we are not using any Variant configuration feature.
Thanks in Advance.
John Savarimuthu -
Hello,
Is it possible to download the global rule matrix in Virsa compliance calibrator? Also, any guides which can explain how to interpret the CC reports? I'm getting different results for the same user when running the report at tcode level as compared to auth object level. Thank you for your responses.
VijayaIt is surely possible to download the global rule matrix if you have the appropriate administrator authorities for CC.
The CC reports at the Tcode level and Auth objects level would look different since at the auth object levels you are dealing with conflicts at the permission level, which would be more detailed. -
SAP HCM schema, personnel caluclation rule
i want to need some documents regarding schema and rule of SAP HCM.
rgdsRe: find vacation of emp
Re: find vacation of emp
Re: find vacation of emp
Best Regards -
5.2 -- GOTO SE16 and enter TSTC for TABLE NAME. TCODE FIELD /VIRSA*
Should the following tcodes work? If so, how do I troubleshoot the ones that don't work? If not, how do they get configured to work? Can someone provide a link for documentation?
TCODE TTEXT
/VIRSA/ALERTGEN Activity Monitoring
/VIRSA/MICCONFIG Virsa MIC User mapping Configuration
/VIRSA/ORGUSRMAPPING Maintain ORGUSERS table
/VIRSA/RE_DNLDROLES Role Expert 4.0
/VIRSA/VFAT Firefighter
/VIRSA/VRMT Role Expert
/VIRSA/ZMGMTRPT Management Report Graphical View
/VIRSA/ZRTCNFG Risk Terminator Configuration
/VIRSA/ZRTDELLOCK Delete Role Lock
/VIRSA/ZRTRGLOG Risk Terminator Role Generation Log
/VIRSA/ZVFAT_U02 FirefightId Log summary
/VIRSA/ZVFAT_U03 Reason/Activity report
/VIRSA/ZVFAT_U04 FirefightId Transaction Usage
/VIRSA/ZVFAT_U05 Invalid Firefighter Ids/Owners/Cntrl
/VIRSA/ZVFAT_U06 SOD Conflicts in Firefighter
/VIRSA/ZVFAT_U07 Data Migration from Master to Text
/VIRSA/ZVFAT_V01 Log Report
/VIRSA/ZVFAT_V02 Log Report
/VIRSA/ZVRAT SAP Compliance Calibrator
/VIRSA/ZVRATBAK1 Update data for Mgmt Graphical View
/VIRSA/ZVRAT_C01 Security & Controls Policies
/VIRSA/ZVRAT_COVN Conversion of CC tables, Old to New
/VIRSA/ZVRAT_D01 Download Spool Requests by Job Name
/VIRSA/ZVRAT_L01 Conversion Utility for CC Text Table
/VIRSA/ZVRAT_L02 Conversion Utility for Long Texts
/VIRSA/ZVRAT_M01 Upload/Download CC tables
/VIRSA/ZVRAT_M02 Where Used list of Mit. Control Id/M
/VIRSA/ZVRAT_M03 Analyze disabled SOD TCode & Object
/VIRSA/ZVRAT_M04 Optimizer for SOD Data Table
/VIRSA/ZVRAT_M05 Where Used list of Control Id/Monit
/VIRSA/ZVRAT_MG1 Management Cockpit
/VIRSA/ZVRAT_P01 Display changes to Profiles
/VIRSA/ZVRAT_R01 Count authorizations in roles
/VIRSA/ZVRAT_RB2 Rule Architect
/VIRSA/ZVRAT_RB3 Rule Architect Conversion
/VIRSA/ZVRAT_S01 Monitor Conflicts & Critical Trans.
/VIRSA/ZVRAT_S021 Monitor Conflicts & Critical Trans.
/VIRSA/ZVRAT_S03 Download Objects for Tcodes
/VIRSA/ZVRAT_S04 SOD Conflicts for TCodes and Objects
/VIRSA/ZVRAT_S05 SOD Rule Wizard
/VIRSA/ZVRAT_S06 SOD Rule Validation Tool
/VIRSA/ZVRAT_S07 Non Reference Report
/VIRSA/ZVRAT_S08 User Access Report
/VIRSA/ZVRAT_S09 Comparing diffrent SOD Matrices
/VIRSA/ZVRAT_S10 Tcodes by Roles/Profiles, never exec
/VIRSA/ZVRAT_S11 Authorization object by Roles/Profs
/VIRSA/ZVRAT_S12 Transactions executed by Users
/VIRSA/ZVRAT_S13 Comparing Critical Tcode Matrices
/VIRSA/ZVRAT_S14 Comparing SOD Authorization Matrices
/VIRSA/ZVRAT_S15 Compare Sod Tcode & Authorization
/VIRSA/ZVRAT_S16 Comp.Calibrator Data Maintenance
/VIRSA/ZVRAT_U01 Count authorizations for Users
/VIRSA/ZVRAT_U02 Analysis of called trans in Cus.code
/VIRSA/ZVRAT_U03 Management Report
/VIRSA/ZVRAT_U05 Expired and Expiring Roles for Users
/VIRSA/ZVRMT_U01 Check Role Status
/VIRSA/ZVRMT_U02 Check Tcodes in Menu & Authorization
/VIRSA/ZVRMT_U03 Compare Users Roles
/VIRSA/ZVRMT_U04 List roles assigned to a user
/VIRSA/ZVRMT_U05 Where used list for roles
/VIRSA/ZVRMT_U06 List roles and transactions
/VIRSA/ZVRMT_U07 Create/Modify Derived Roles
/VIRSA/ZVRMT_U08 Analysis of Owners Roles and UsersHi Greg,
Most of the TCodes work but they are not being used. Which products do you currently have? Most of these tcodes are obsolete as they were part of old Virsa products. Here is the explanation:
-> At the start, Virsa had five different products namely Compliance Calibrator (CC), Fire Fighter (FF), Role Expert (RE), Risk Terminator (RT) and Access Enforcer (AE). Except AE, all other products were developed into SAP R/3 using ABAP so the transaction you see are coming from those four products. As of now, CC and RE has been moved to Java (same as AE) but RT and FF still reside in ABAP side.
-> You should be able to configure Tcodes related to FF and RT. You do not need to configure Tcodes for CC and RE.
-> You must be wondering how did you get all these Tcodes? Through the RTA (Real Time Agent) you have installed for GRC AC 5.2 in your SAP backend system. Even though, AC 5.2 does not need full blown products in the back-end, RTA still contains all of those products.
-> To start using these products, you will have activate BC sets. I do not recommend you to use CC and RE, if you are already using those products via Web front-end. FF and RT has some pretty good features.
-> Please follow AC 5.2 configuration guide to configure FF and RT.
If you don't want to use any of these, don't bother. These tcodes don't affect anything in your system.
Regards,
Alpesh
Maybe you are looking for
-
Any ideas as to why, when I am converting a group of images through image processor into JPEG, the resulting images are AWFUL. I have been using this process for years without a concern, and suddenly the JPEG files are very greyish, muted tones and
-
Adobe Photoshop Elements12 onto a Mac
I just purchased an Apple MacBook Pro with Retina Display. I also purchased a copy of Adobe Premiere Elements 12 and a USB SuperDrive to download the software onto the Mac. The drive just spits out the Disk after a couple of seconds and I can not dow
-
Hi All, Could anybody please help me in identifying the issue in the below code as i am getting error as: declare ERROR at line 1: ORA-01006: bind variable does not exist ORA-06512: at "SYS.DBMS_SYS_SQL", line 846 ORA-06512: at "SYS.DBMS_SQL", line 5
-
Impossible to edit or add the signature in a freshly installed convergence
we are using directory server 6.3 messaging server 7.0 convergence patch 3 in the convergence web interface is not possible to edit or add the signature the text box doesn't react to my input, click or mouse is there something that need to be added t
-
Can't Download the Newest iTunes--Install Doesn't Complete
If I use the download from the Apple webpage, the Windows Installer hardly ever loads the program. Very rarely it will, and I will get to the page where the program will be installed (the page that says "All Your Music. All in One Place."), the green