SAP GRC 5.2. AE: Attachments to requests not displayed for closed requests

Similar Messages

• IGS Graph not displayed for GRC

  Hello,
  After installing of SAP Netweaver 7.0 EHP1 AS JAVA, I have configured IGS as per install guide 7.3 section, but when I execute the URL http://<server_name>::40080, I do not get the graph displayed.
  I only get a screen with 1 line message stating "IGS is running".
  Can anyone tell, why the IGS graph is not getting displayed. Is there any additional configurations, steps, OSS Notes etc., for IGS,  that I have to do (to get the graphics displayed).
  Thanks,
  Haleem

  Thanks Frank and everyone for the updates.
  I have successfully completed AS JAVA install and as a part of the document "SAP GRC AC 5.3 Pre-Installation Slide Deck.pdf", I checked the IGS graphs, SLD connection etc.
  I am now installing GRC AC components and will check whether the charts are displayed, once RAR install is complete.
  So far, SLD test is successfull and I get message "IGS is running", when I execute http://servername:40080
  Thanks,
  Haleem

• Is SAP Netweaver Dev.Studio(version 2.0.3) not applicable for Portal app's?

  Hello All,
  On Windows XP system,I have installed "SAP Netweaver Dev.Studio(LICENSED version 2.0.3)", system is perfectly as per the requirements including the jdk 1.4.2 version.
  After the installation,there is no menu item for creating the Portal Application project in the New->Project menu items.Is this version 2.0.3 not compatible for working with SAP Enterprise Portal applications?In the documenatation of the same,SAP says that we can work even as a standalone application (only the IDE for developing the Portal objects)?But there is no provision for this?I have not find any documentation related this problem?Request your help for the advise.
  Thanks

  You need to have at least SP 9 for that option to show up.

• GRC CUP 5.3 SP16, detour path not working for SOD violations

  Hi,
  Something bazaar is going on in our requests processing and not sure if that's the way SAP has set it up.
  We configured a detour path for requests with SOD violations to go to the additional stage of 'SOX Approver' but the first stage (manager) does the risk analysis and Mitigation assignment and then it goes to Role owner approver that approves the roles access. Once the role owner approves the roles , if the request had SOD violations, even if the mitigation was selected and approved by the manager stage, it needs to go to the SOX approver stage to approve the mitigation assignment before the request can be auto provisioned for any requests that had sod violations.
  But it seems to skip the sox approver detour path stage after the role owner approval and go directly to auto provisioing. I thought that any requests that had sod violations inspite of having mitigation assignment in a previous stage can be detoured to the next path for SOX approval and then auto provisioned. Since SAP doesn't give different approval option to approve mitigation vs. approve roles, wherever you make the risk analysis mandatory, that's where the mitigation controls have to be assigned. But we want the option to detour the path to SOX approver to approve those mitigation controls b4 auto provisioning the request.
  Any idea of how to fix this?
  Is the detour only going to work if the mitigation wasn't assigned? But then how can you get approval for the mitigation on a different stage if the same person has to assign and approve that?
  Will appreciate any feedback in this.
  Thanks,
  Alley

  I was actually able to resolve the issue by adding the role approver stage first to the sox approver detour path.. this way..if the manager has roles with sod violations and updates mitigations for it, it goes to the role approver via detour path as well first and then to the sox approver stage b4 auto provisioining. So, that solved our problem. And if the request doesn't have SOD violations then it just goes to the next stage without detour which also has the role approver as the last stage.
  Since I couldn't get the sox approver stage to show up after the role approver as originally anticipated since the request already had mitigation assigned at the manager level, we did the above scenario to fix the issue.
  Requestor>Manager->Role Approver-->auto provisioning (without SOD violations)
  Requestor>Manager> Detour (Role Approver>SOX Approver)->Auto Provisioning (with SOD violations)

• How do i only show photos as attachments in mail not display the  photo

  Hi
  I am trying to send some photos by mail on my MBP but instead of just listing as attachments the complete photos are being displayed.
  Can i prevent this from happening as it often results in the email being 10 ft long!!!!!
  Best Rgds
  Kev

  There is a third-party program called Attachment Tamer that will do that for you.  In the Terminal, you can type this:
  defaults write com.apple.mail DisableInlineAttachmentViewing -bool yes
  Also note that while Attachment Tamer does some things with the encoding that makes certain email clients display the item as an attachment, what shows up at the receiver's end is solely dependent on their email client and its settings.

• EREC: Attachments tab not displayed for recruiters

  Hello,
  When recruiter searches for candidate and goes to profile page, there is no attachments tab, nor the recruiter is able to edit candidate details (like add more attachments).
  Did i miss any config step to make the attachment tabs appear?
  Thanks for your help.

  Hi Nicole,
  Sorry for the delay in response. My email ids are switched due to OSS id set up. Anyways, coming to the issue.
  Normally there is a tab called attachments, where we can add few types of atatchments. I am missing that tab itself, when i go into second tab, its under job description. I see few attachments. Please see screen shots of candidate profile and the tab. Recruiter normally should have access to edit candidates, in this case, edit button is not showing up either. I have EREC administrator role
  http://imageshack.us/photo/my-images/33/noattachment2.jpg/
  http://imageshack.us/photo/my-images/859/noattachment.jpg/

• SAP BW DTP error: Fiscal year variant is not maintained for calendar year

  Hi experts,
  Running DTP for loading 2LIS_12_VCITM results in following error "Fiscal year variant A2 is not maintained for calendar year 2012".
  I have already done following checks:
  - the fiscal variant A2 exists for the fiscal year 2012 in the BW system (T009 tables)
  - the DTP does only give this error for 2 company codes, and works fine for other company codes
  - in our R3 system, the fiscal year variant A2 is assigned to all the company codes, how or where can I check this assignment in the BW system ?
  Kind regards, Guy Verschueren

  Hi
  Please check the following threads
  "Fiscal year variant V3 is not maintained for calendar year 2011" (OAOB)
  Error FGV002: Fiscal year variant & is not maintained for calendar year &
  Hope it helps.
  Thanks,
  Rajesh.
  Please assign points to answers if you find them heplful

• Add Fields in CUP Request - SAP GRC Access Control 5.3

  Dear Friends,
  I am wondering on how to add fields value in CUP (Compliant User Provisioning) SAP GRC AC 5.3.
  Currently i'm leading 9 SAP Security Coordinators in Indonesia and i want to create Performance Metrics on how long the CUP Requests is processed. It needs to enhance the CUP by adding value Delegation of Authority and the record no. of the DOA requests.
  Really appreciate your inputs on how to add fields value in CUP.
  Thank you so much
  -Mesti-
  Edited by: AnnisaPramesti on Jan 2, 2012 5:37 PM

  Hi.
  Check under http://service.sap.com/instguides
  SAP BusinessObjects -> SAP BusinessObjects Governance, Risk, Compliance (GRC) -> Access Control -> SAP GRC Access Control 5.3
  Cheers,
  Diego.

• SAP GRC 10.0 on ECC

  Hi Guys,
  We are planning on implementing SAP GRC 10.0. Our Basis guy has suggested that we can use ECC (EHP 6) box for installing the add on(GRCFND_A) component for it. The reason for this is to avoid adding another system to the landscape and to reduce the cost of implementation
  Are there any known issues using this approach?
  Thanks in advance,
  Silver

  Hi
  the GRC project is totally IT driven.
  I get why you are having to drive this - especially when you have to respond to audit requirements and your focus is on support processes.
  However, GRC is all about business risk management - Governance, Risk and Compliance (well internal controls). The GRC System is just the tool to manage this. Without business buy in how is this going to be successful? Who will review business process to determine what a risk is? Who in a senior leadership position will determine what risks are acceptable? Who will determine appropriate controls, report on them, and more importantly enforce them? Who in a leadership position will champion the project and support why a user must work a certain why (including access removed from them)?
  I get that you are focussing on a POC and trying to minimise cost but what happens post POC? I've given recommendations where I've said don't put in GRC until you sort your process and culture. I've done this as much as the innner techy in me knows I won't get to play with a new toy because without all the business buy-in you will have a system built and deployed that gives you a false sense of security when it comes to managing access controls.
  Another way to look at the SP issues - what happens if it's on ECC and the functional team (aka the business representatives) demand an SP increase for their functionality? They proceed to increase SP and now your functionality stops working.. which then impacts the business as you can't process their access requests and give them timely access to the system (assume this is your business case). Are your basis team going to tell the business that they can't have the SP stack increase because IT needs the system on a certain level and they need to wait until next time it's compatible?
  Good luck with your POC. I understand it will allow you to use the tool and check what will work for the business. If you are still undecided on system landscape post POC, take care in having that decision made for you. As you go down the POC path and time runs out the project may move from POC to design/build and now that it's working there will be reluctance to move it to a separate system.
  Regards
  Colleen

• Reset password, block or unblock user in a R/3 from the SAP GRC AC 5.3

  Hello,
  I have 2 doubts.
  I want to know if a user can reset his password of the R/3 from the SAP GRC AC 5.3 automaticly.
  And can someone block or unblock a user using  the GRC AC 5.3 automaticly too?.
  I know you can create a user automaticly from GRC, but can I do those 2 things?
  Best Regards.
  Pablo Mortera.

  Hello,
  What I don't get is, that why do I need the HR module (HR Trigger) to lock, unlock, password slñf service of a user ID. The HR module uses employees attached to a user ID if it has one.
  Why do I need the HR module to configure the automatic request access?
  Best regards.
  Pablo Mortera.

• SPM in CUP in a SAP GRC AC 5.3 -- "Approver not found" & "Path not found"

  hello,
  I have a problem when I try to do a request.
  I have configured the SPM in the CUP in a SAP GRC AC 5.3
  I gives me an error about "Error creating request. Approver not found ". When I took out the Manager in the Stage it gave me this error in the request "Error creating request. Path not found".
  Best regards.
  Pablo Mortera.

  You can either type in the configuration, like the what option you selected for approver (CAD or role or...etc), or other way is to capture the change log which shows what was the configuration for that stage....
  (Configuration -< Change Log -> Search Change log)
  Cheers !!
  Zaheer

• SAP GRC AC 5.3 integrated with BW

  Hi all,
  Has anyone of you implemented integration between SAP GRC AC 5.3 and BW and develop custom reports?
  Thanks in advance. Regards,
     Imanol

  Imanol,
  There is documentation available for the integration.  You can find that here:
  http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/e05a9879-d204-2c10-54a9-ebc94eaddc4e?quicklink=index&overridelayout=true
  Also, there are numerous pre-delivered queries already developed.  However, if you wish to develop your own reports, then you will need a BW resource to do so.
  Pre-delivered queries:
  For RAR:
  Alert Detail Listing
  Alert Header Listing
  Critical Action Violations by User
  Critical Role Viols Analysis with Long Portal IDs
  Current User Permission Risk-Perm Violation Analysis Breakdowns
  Current User Permission Risk Violation Analysis Breakdowns
  Management Summary Total Listing
  Mitigated Users Analysis
  Risk Long Descriptions
  Risk-Rule Set Relationship Listing
  Role Permission Risk Violation Analysis
  Role (Portals) Permission Risk Violation Analysis
  Supplementary Rule Detail Listing
  Supplementary Rule Header Listing
  User Permission Risk Violation with Functions
  User Permission Risk Violation with Remediation by User
  User Permission Risk Violation with Remediation by User (Top 10)
  User Permission Violation with Remediation by Risk
  User Permission Violation with Remediation by Risk (Top 10)
  For CUP:
  Access Requests
  Risk Violations
  Role Provisioning
  Service Levels
  SOD Review
  User Access Review
  User Provisioning
  Thanks!
  Ankur
  SAP GRC RIG

• SAP GRC CUP password issue

  Hi,
  to get user password, i set email reminder, closing as send password in mail No and password display period : 0.It throws a password as sap default string .How can it be standard password,so user can reset by entering it.In SAP GRC 5.3 AC-CUP 5.3_05.0, I can't see password self service tab too.Is there any better way so user can get password in email as sap standard in 8 words (number , letters or any special characters as set like us).

  when i try to create request type for password self service. i have only these actions to select
  CREATE_USER  Create User 
    CHANGE_USER  Change User 
    DELETE_USER  Delete User 
    LOCK_USER  Lock User 
    UNLOCK_USER  Unlock User 
    ASSIGN_ROLES  Assign Roles 
    SUPER_USER_ACCESS  Super User Access 
    USER_DEFAULTS  User Defaults 
  i can't see any action for password self service in configuration->request type-> create  option.please answer it.

• SAP GRC 5.3 CUP: Approver Determinator "Super Access Owner"

  Hi,
  when configuring a stage, a standard approver determinator called "Super Access Owner" could be selected.My question is where to specify the Super Access Owner in SAP GRC CUP? In the Config Guide of SAP GRC AC 5.3 a hint explains on page 145
  "If you select Superuser Access Owner as the approver determinator, the system
  fetches the configured owner from the SAP system where the Superuser Privilege
  Management is installed and assigns the request to that particular approver." 
  I do not really unterstand where to specifiy. Is it the former FireFighter in the backend.
  Did anybody user this Approver Determinator already?
  Thank you in advance.
  Marco

  Hi Marco,
  Yes this approver is defined in the backend Firefighter which is now Super User Privelege Management. The Firefighter ID owner will be taken as the approver if we select Super User Access Owner in the CUP request. This option is basically being provided for  Integration of Compliant User Provisioning and Super User Privelege Management for SAP GRC AC 5.3. You may now create a request to assign a Firefighter ID to a Firefighter in CUP and do not need to go to SPM for the same.
  In case you do not want to use this approver, please create a Custom Approver Determinator for the same.
  Hope this helps.
  Harleen

• CAreer in SAP BASIS comaprision with SAP GRC/Security

  Hi Everyone,
  I am an SAP BASIS consultant with 2 years of experience working in a MNC company,
  I want to change my career to SAP GRC/SAP Security, i have some basic knowledge on SAP Security,
  COuld you please advice me, which one to choose,?
  Does  SAP GRC/Security has demand , and can we get oportunities to work abroad compared to SAP BASIS ?
  which one has more scope SAP BASIS or SAP Security/GRC ?
  Because in BASIS, i am not getting enough scope to work on some good things like Installation, upgrades, Migration,
  i am doing a very basic kind of work like tranports, job scheduling, monitoring, and other small activities ?
  So request you people to advice me ?
  <removed_by_moderator>
  Read the "Rules of Engagement"
  regards
  Rakesh  Rao
  Message was edited by: Juan Reyes

  Hi Rakesh
  I saw your post in GRC and was waiting of it to appear here
  First up - 2 years is still junior. You may find batch jobs, transports, monitoring, etc all mundane but it is a foundation and learning ground work and foundations to being a good Basis Administration. And one things for sure, an awesome basic (I name my best-techy-friend) makes a huge difference on project timelines and deliverables for the rest of us.
  Installation and Upgrades come with time. Whilst still performing junior tasks you could focus on reading up on approaches in case an opportunity in your job comes us and be prepared to prove to your management that you are ready for a bigger responsibility.
  Switching to GRC/Security would be pointless unless you have a desire to learn GRC or Security. These are my background and they are undervalued until things go wrong (insurance policy in a way).
  If you do switch you will reset your 2 years of domain experience back to 0 and you will start off with password resets and basic user administration
  It takes time to work through the ranks. It was 3 years before I got to build my first role. I spent my first few years in security on email chasing approvals, password resets, user account creation, running reports for audit - sounds familiar to what you are doing now?
  You have to master the basics before you are trusted and ready for the more complex activities. By knowing what you are doing now you will be more successful when the time comes to step up and do migrations, upgrades and installations. Support production by mastering you technical analysis skills is how you can break through being a fresher/junior
  Regards
  Colleen
  Ps - if your motivation is more than "good things" happy to answer questions specific to security and GRC.
  Also, boring doesn't mean it can't get interesting nor does it mean it's a worthless activity: SPAU transport imported before patching!!
  Message was edited by: Colleen Lee
  Added link for when transports go bad