GRC 10.0 Post-Installation

Similar documents
Budget Control by Cost Center

User Experience in Custom Apps

USDL XG WP3 SAP use case. Kay Kadner

Intelligent Business Operations Chapter 1: Overview & Strategy

Accounts Receivable. SAP Best Practices

SAP Master Data Governance- Hiding fields in the change request User Interface

TM111. ERP Integration for Order Management (Shipper Specific) COURSE OUTLINE. Course Version: 15 Course Duration: 2 Day(s)

How to Configure Access Control for Exchange using PowerShell Cmdlets A Step-by-Step guide

SAP Business ByDesign Reference Systems. Scenario Outline. SAP ERP Integration Scenarios

SOP through Long Term Planning Transfer to LIS/PIS/Capacity. SAP Best Practices

SAP Service Tools for Performance Analysis

Production Subcontracting (External Processing) SAP Best Practices

Integrating Easy Document Management System in SAP DMS

Unified Service Description Language Enabling the Internet of Services

Business One in Action - How can we post bank fees and charges while posting Incoming or Outgoing Payment transactions?

SAPFIN. Overview of SAP ERP Financials COURSE OUTLINE. Course Version: 15 Course Duration: 2 Day(s)

OData in a Nutshell. August 2011 INTERNAL

RUN BETTER Become a Best-Run Business with Remote Support Platform for SAP Business One

NetWeaver Business Client (NWBC) for Incentives and Commissions Management (ICM)

Next Generation Digital Banking with SAP

Maintaining Different Addresses and Ids for a Business Partner via CRM Web UI

HR400 SAP ERP HCM Payroll Configuration

SAP Central Process Scheduling (CPS) 8.0 by Redwood

Alert Notification in SAP Supply Network Collaboration. SNC Extension Guide

Matthias Steiner SAP. SAP HANA Cloud Platform A guided tour

GRC 10.0 Pre-Installation

AC 10.0 Business Role Management

Ariba Network Integration to SAP ECC

Understanding HR Schema and PCR with an Example

Table of Contents. How to Find Database Index usage per ABAP Report and Creating an Index

AC 10.0 Centralized Emergency Access

Enterprise Software - Applications, Technologies and Programming

Data Archiving in CRM: a Brief Overview

AC 10.0 Customizing Workflows for Access Management

AC200. Basics of Customizing for Financial Accounting: General Ledger, Accounts Receivable, Accounts Payable COURSE OUTLINE

UI Framework Logo exchange without skin copy. SAP Enhancement Package 1 for SAP CRM 7.0

Application Lifecycle Management

Compliant, Business-Driven Identity Management using. SAP NetWeaver Identity Management and SBOP Access Control. February 2010

How To Improve Your Business Process With Sap

Data Source Enhancement Using User Exit

Download and Install Crystal Reports for Eclipse via the Eclipse Software Update Manager

R/3 and J2EE Setup for Digital Signature on Form 16 in HR Systems

Third Party Digital Asset Management Integration

Business Requirements... 3 Analytics... 3 Typical Use Cases... 8 Related Content... 9 Copyright... 10

SAP Business One for iphone and ipad. Version 1.5.x January 2012

Integration of SAP Netweaver User Management with LDAP

Fixed Asset in SAP Business One 9.0

How to Create a Support Message in SAP Service Marketplace

How to Set Up an Authorization for a Business Partner in Customer Relationship Management (CRM) Internet Sales: Sample Case

How to Add an Attribute to a Case, Record and a Document in NW Folder Management (ex-records Management)

Process Archiving using NetWeaver Business Process Management

Finding the Leak Access Logging for Sensitive Data. SAP Product Management Security

Sending Additional Files from SAP Netweaver PI to third Party System

How to Configure and Trouble Shoot Notification for Process Control 2.5

Variable Exit in Sap BI How to Start

K in Identify the differences between the universe design tool and the information design tool

Log Analysis Tool for SAP NetWeaver AS Java

Mass Maintenance of Procurement Data in SAP

Ten reasons small and midsize enterprises (SMEs) choose SAP to help transform their business. Copyright/Trademark

UI Framework Simple Search in CRM WebClient based on NetWeaver Enterprise Search (ABAP) SAP Enhancement Package 1 for SAP CRM 7.0

Configuring Distribution List in Compliant User Provisioning

Run SAP like a Factory

Consume an External Web Service in a Nutshell with good old ABAP

3 rd party Service Desk interface

How To... Migrate Custom Portal Applications to SAP NetWeaver 7.3

How to Schedule Report Execution and Mailing

Sample Universe on Microsoft OLAP Cube

UI Framework Task Based User Interface. SAP Enhancement Package 1 for SAP CRM 7.0

How to Customize Notification Templates for AC 10.0 Workflow

Portfolio and Project Management 5.0: Excel Integration for Financial and Capacity Planning

Single Sign-On between SAP Portal and SuccessFactors

CREATING A PURCHASE ORDER STORE RECORD WEB SERVICE

Duet Enterprise Add SAP ERP Reports and SAP BI Queries/Workbooks to Duet Enterprise Configuration

Integration of Universal Worklist into Microsoft Office SharePoint

SAP Portfolio and Project Management

Ronald Bueck SBO Product Definition

September 10-13, 2012 Orlando, Florida. Step-by-step guidelines for building an information governance strategy

Using User Exit for Variables in BEx Reporting

Xcelsius Dashboards on SAP NetWaver BW Implementation Best Practices

Implementing Outlook Integration for SAP Business One

Business Process Change Analyzer in SAP Solution Manager 7.1

BICS Connectivity for Web Intelligence in SAP BI 4.0. John Mrozek / AGS December 01, 2011

ERP Quotation and Sales Order in CRM WebClient UI Detailed View. SAP Enhancement Package 1 for SAP CRM 7.0 CRM Sales - SFA

SAP Sustainability Solutions: Achieving Customer Strategies

BW Workspaces Use Cases

How To Configure MDM to Work with Oracle ASM-Based Products

SAP GRC Access Control: Background jobs for risk analysis and remediation (formerly Virsa Compliance Calibrator)

Secure MobiLink Synchronization using Microsoft IIS and the MobiLink Redirector

SAP Best Practices for Subsidiary Integration in One Client Production with Intercompany Replenishment

SAP NetWeaver BRM 7.3

E-Recruiting Job Board Integration using XI

BW362. SAP BW powered by SAP HANA COURSE OUTLINE. Course Version: 10 Course Duration: 5 Day(s)

SAP How-To Guide: Develop a Custom Master Data Object in SAP MDG (Master Data Governance)

SAP BusinessObjects BI4.0 Upgrade Workflows

How To Use the ESR Eclipse Tool with the Enterprise Service Repository

How-to-Guide: Middleware Settings for Download of IPC Configuration (KB) Data from R/3 to CRM System

How To Use the BPC Mass User Management Tool in BPC 10.0 NW

Certificate SAP INTEGRATION CERTIFICATION

Introducing the SAP Business One starter package. A Great Start to help you to Streamline Your Small Business

Transcription:

GRC 10.0 Post-Installation Customer Solution Adoption June 27 th 2011 Version 1.4

Purpose of this document This guide covers the basic steps required for the post-installation of GRC in general, before performing the solution specific (e.g. AC, PC or RM) post-installation tasks.

Disclaimer This presentation outlines our general product direction and should not be relied on in making a purchase decision. This presentation is not subject to your license agreement or any other agreement with SAP. SAP has no obligation to pursue any course of business outlined in this presentation or to develop or release any functionality mentioned in this presentation. This presentation and SAP's strategy and possible future developments are subject to change and may be changed by SAP at any time for any reason without notice. This document is provided without a warranty of any kind, either express or implied, including but not limited to, the implied warranties of merchantability, fitness for a particular purpose, or non-infringement. SAP assumes no responsibility for errors or omissions in this document, except if such damages were caused by SAP intentionally or grossly negligent. 2011 SAP AG. All rights reserved. 3

Topics 1.Client Copy 2.Activating Applications in Client 3.Check SAP ICF Services 4.Activating BC Sets 5.Creating the Initial User in the ABAP System 6.Activate Profile of Roles Delivered by SAP 7.Activate Common Workflow 2011 SAP AG. All rights reserved. 4

Client Copy For more information specific to GRC 10.0, see SAP Note: 1505255. See http://help.sap.com and search for Client Copy. 2011 SAP AG. All rights reserved. 5

Topics 1.Client Copy 2.Activating Applications in Client 3.Check SAP ICF Services 4.Activating BC Sets 5.Creating the Initial User in the ABAP System 6.Activate Profile of Roles Delivered by SAP 7.Activate Common Workflow 2011 SAP AG. All rights reserved. 6

Activating Applications in Client 1/3 Call the customizing with transaction SPRO Choose SAP Reference IMG Expand the Governance, Risk and Compliance > General Settings node and choose Activate Applications in Client 2011 SAP AG. All rights reserved. 7

Activating Applications in Client 2/3 Choose New Entries 2011 SAP AG. All rights reserved. 8

Activating Applications in Client 3/3 Click the first row and select the GRC solution(s) required for your project Then choose the Active checkbox Click Save Note: you may have to create a transport request 2011 SAP AG. All rights reserved. 9

Topics 1.Client Copy 2.Activating Applications in Client 3.Check SAP ICF Services 4.Activating BC Sets 5.Creating the Initial User in the ABAP System 6.Activate Profile of Roles Delivered by SAP 7.Activate Common Workflow 2011 SAP AG. All rights reserved. 10

Check SAP ICF Services 1/4 Call transaction SICF Click the Execute icon 2011 SAP AG. All rights reserved. 11

Check SAP ICF Services 2/4 Expand the node default_host -> sap -> public Right click public and choose Activate Service Choose Activate Service for all sub-nodes 2011 SAP AG. All rights reserved. 12

Check SAP ICF Services 3/4 Proceed likewise with the node default_host -> sap -> bc Activate all sub-nodes too 2011 SAP AG. All rights reserved. 13

Check SAP ICF Services 4/4 Now activate the node default_host -> sap -> grc Also activate all sub-nodes 2011 SAP AG. All rights reserved. 14

Topics 1.Client Copy 2.Activating Applications in Client 3.Check SAP ICF Services 4.Activating BC Sets 5.Creating the Initial User in the ABAP System 6.Activate Profile of Roles Delivered by SAP 7.Activate Common Workflow 2011 SAP AG. All rights reserved. 15

Activating BC Sets 1/5 Call transaction SPRO again Click SAP Reference IMG Click Existing BC Sets in the next screen 2011 SAP AG. All rights reserved. 16

Activating BC Sets 2/5 Select a BC Set Click BC Sets for Activity 2011 SAP AG. All rights reserved. 17

Activating BC Sets 3/5 From the menu choose Goto Activation Transaction These BC sets can also be activated via transaction code SCPR20 2011 SAP AG. All rights reserved. 18

Activating BC Sets 4/5 Activate the corresponding BC sets. Proceed likewise for all required PC, RM, and/or AC BC sets For a complete list of BC Sets please refer to the PC/RM/AC install guide! 2011 SAP AG. All rights reserved. 19

Activating BC Sets 5/5 When activating always use Expert mode 2011 SAP AG. All rights reserved. 20

Topics 1.Client Copy 2.Activating Applications in Client 3.Check SAP ICF Services 4.Activating BC Sets 5.Creating the Initial User in the ABAP System 6.Activate Profile of Roles Delivered by SAP 7.Activate Common Workflow 2011 SAP AG. All rights reserved. 21

Creating the Initial User in the ABAP System Call transaction SU01, create a user Assign following role to access GRC applications, such as AC SAP_GRC_FN_BASE Assign following power user role to the person doing the customization of the product SAP_GRC_FN_ALL Assign following role to the business users SAP_GRC_FN_BUSINESS_USER Assign following role if you use NWBC as front end UI instead of Portal SAP_GRC_NWBC 2011 SAP AG. All rights reserved. 22

Topics 1.Client Copy 2.Activating Applications in Client 3.Check SAP ICF Services 4.Activating BC Sets 5.Creating the Initial User in the ABAP System 6.Activate Profile of Roles Delivered by SAP 7.Activate Common Workflow 2011 SAP AG. All rights reserved. 23

Activate Profile of Roles Delivered by SAP Activate profile of roles delivered by SAP via transaction PFCG if you want to use them directly For the list of the roles, please refer to Security Guide - here is an example of the SAP-GRC- NWBC role Please use transaction SUPC for mass profile generation in case you want to generate profiles for multiple roles 2011 SAP AG. All rights reserved. 24

Topics 1.Client Copy 2.Activating Applications in Client 3.Check SAP ICF Services 4.Activating BC Sets 5.Creating the Initial User in the ABAP System 6.Activate Profile of Roles Delivered by SAP 7.Activate Common Workflow 2011 SAP AG. All rights reserved. 25

Activate Common Workflow Call transaction SPRO again Click SAP Reference IMG Access Workflow node under Governance, Risk and Compliance > General Settings Execute Perform Automatic Workflow Customizing 2011 SAP AG. All rights reserved. 26

Activate Common Workflow Perform Automatic Workflow Customizing (1/2) Execute Perform Automatic Workflow Customizing Make sure that all tasks are green after the generation as show in the screenshot Note: you may have to create a transport request During the activation procedure you might receive an error message, then check the created system user WF-BATCH in SU01 if the user has sufficient roles assigned see SAP Note 1251255 and the GRC Security Guide. You may need to run program RHSOBJCH to fix HR control tables 2011 SAP AG. All rights reserved. 27

Activate Common Workflow Perform Automatic Workflow Customizing (2/2) Maintain the Prefix Numbers to your needs or like shown in the screenshot 2011 SAP AG. All rights reserved. 28

Activate Common Workflow Perform Task-Specific Customizing 1/5 Execute Perform Task- Specific Customizing Expand the GRC node. Click the Assign Agents link at the right side of the GRC node. Note: if no folders are visible below the GRC folder please run report RS_APPL_REFRESH in SE38 2011 SAP AG. All rights reserved. 29

Activate Common Workflow Perform Task-Specific Customizing 2/5 Assign Task as General Task via Task Attribute. Make sure all tasks that are not using Background task have been assigned as General Task. 2011 SAP AG. All rights reserved. 30

Activate Common Workflow Perform Task-Specific Customizing 3/5 Click Activate event linking 2011 SAP AG. All rights reserved. 31

Activate Common Workflow Perform Task-Specific Customizing 4/5 Click the Properties icon Set the Linkage Status to No errors Make sure Event linkage activated is checked. Set Error feedback to Do not change linkage Be sure to activate all WS. 2011 SAP AG. All rights reserved. 32

Activate Common Workflow Perform Task-Specific Customizing 5/5 Repeat the first four steps to activate the solutions you need (e.g. for Access Control GRC-AC ) Note: task-specific customizing for GRC-AC is not available in case you have the GRC plugins installed in your GRC system, check the Appendix for perfoming the customizing in this case 2011 SAP AG. All rights reserved. 33

Activate Crystal Reports In IMG you need to check this option to be able to see report tables also as Crystal Reports 2011 SAP AG. All rights reserved. 34

Appendix Task-Specific customizing with plugins In case you have the GRC plugins installed also in the central GRC instance the task-specific customizing for Access Control is not visible in IMG as shown below. 2011 SAP AG. All rights reserved. 35

Appendix Task-Specific customizing with plugins Event Linkage (1/2) Go to transaction SWE2 and maintain the following linkages by double clicking on each line in Change mode. 2011 SAP AG. All rights reserved. 36

Appendix Task-Specific customizing with plugins Event Linkage (2/2) Set these parameters per event linkage item 2011 SAP AG. All rights reserved. 37

Appendix Task-Specific customizing with plugins Assign Agents (1/4) Go to transaction PFTC and select the type and task as shown below, you need to repeat the whole process for each item. Display Approval webdynpro Appl TS 76307918 Display Role Approval App TS 76307944 user access review approval task TS 76307964 Role approval UI task TS 76307966 GRAC Read Stage TS 76307967 GRAC Read Stage TS 76308011 GRAC Diaplay Approval for AR TS 76308013 Access Request Approval dialog TS 76308021 Access Request Approval dialog TS 76308026 SPM Audit Review Approval TS 76308028 RAR Rule for Function Approval TS 76308029 Display Approval webdynpro Appl TS 76308031 Display Approval webdynpro RAR Risk TS 76308038 Display Approval webdynpro Appl TS 76308047 Role assignement dialog step TS 76308056 Control assignment approval dialog TS 76308057 Access Request Approval Workflow WS76300056 User Access Review Workflow WS76300082 Function Approval Workflow WS76300084 Mitigation Control Maintenance WS76300088 Risk Approval Workflow WS76300085 SOD Risk Review Workflow WS76300081 Role Approval Workflow WS76300080 Fire Fighter Log Report Review WF WS76300089 Control Assignment Approval Workflow WS76300087 Role Assignment Review Workflow WS76300086 2011 SAP AG. All rights reserved. 38

Appendix Task-Specific customizing with plugins Assign Agents (2/4) Then go to Additional Data Agent assignment Maintain. If the Transfer container elements window shows answer always No 2011 SAP AG. All rights reserved. 39

Appendix Task-Specific customizing with plugins Assign Agents (3/4) Now select Attributes and change the task to General Task 2011 SAP AG. All rights reserved. 40

Appendix Task-Specific customizing with plugins Assign Agents (4/4) After you have changed all tasks you need to activate the workflows tasks using transaction SWDD 2011 SAP AG. All rights reserved. 41

2011 SAP AG. All rights reserved No part of this publication may be reproduced or transmitted in any form or for any purpose without the express permission of SAP AG. The information contained herein may be changed without prior notice. Some software products marketed by SAP AG and its distributors contain proprietary software components of other software vendors. Microsoft, Windows, Excel, Outlook, and PowerPoint are registered trademarks of Microsoft Corporation. IBM, DB2, DB2 Universal Database, System i, System i5, System p, System p5, System x, System z, System z10, System z9, z10, z9, iseries, pseries, xseries, zseries, eserver, z/vm, z/os, i5/os, S/390, OS/390, OS/400, AS/400, S/390 Parallel Enterprise Server, PowerVM, Power Architecture, POWER6+, POWER6, POWER5+, POWER5, POWER, OpenPower, PowerPC, BatchPipes, BladeCenter, System Storage, GPFS, HACMP, RETAIN, DB2 Connect, RACF, Redbooks, OS/2, Parallel Sysplex, MVS/ESA, AIX, Intelligent Miner, WebSphere, Netfinity, Tivoli and Informix are trademarks or registered trademarks of IBM Corporation. Linux is the registered trademark of Linus Torvalds in the U.S. and other countries. Adobe, the Adobe logo, Acrobat, PostScript, and Reader are either trademarks or registered trademarks of Adobe Systems Incorporated in the United States and/or other countries. Oracle is a registered trademark of Oracle Corporation. UNIX, X/Open, OSF/1, and Motif are registered trademarks of the Open Group. Citrix, ICA, Program Neighborhood, MetaFrame, WinFrame, VideoFrame, and MultiWin are trademarks or registered trademarks of Citrix Systems, Inc. HTML, XML, XHTML and W3C are trademarks or registered trademarks of W3C, World Wide Web Consortium, Massachusetts Institute of Technology. Java is a registered trademark of Sun Microsystems, Inc. JavaScript is a registered trademark of Sun Microsystems, Inc., used under license for technology invented and implemented by Netscape. SAP, R/3, SAP NetWeaver, Duet, PartnerEdge, ByDesign, SAP BusinessObjects Explorer, StreamWork, and other SAP products and services mentioned herein as well as their respective logos are trademarks or registered trademarks of SAP AG in Germany and other countries. Business Objects and the Business Objects logo, BusinessObjects, Crystal Reports, Crystal Decisions, Web Intelligence, Xcelsius, and other Business Objects products and services mentioned herein as well as their respective logos are trademarks or registered trademarks of Business Objects Software Ltd. Business Objects is an SAP company. Sybase and Adaptive Server, ianywhere, Sybase 365, SQL Anywhere, and other Sybase products and services mentioned herein as well as their respective logos are trademarks or registered trademarks of Sybase, Inc. Sybase is an SAP company. All other product and service names mentioned are the trademarks of their respective companies. Data contained in this document serves informational purposes only. National product specifications may vary. The information in this document is proprietary to SAP. No part of this document may be reproduced, copied, or transmitted in any form or for any purpose without the express prior written permission of SAP AG. This document is a preliminary version and not subject to your license agreement or any other agreement with SAP. This document contains only intended strategies, developments, and functionalities of the SAP product and is not intended to be binding upon SAP to any particular course of business, product strategy, and/or development. Please note that this document is subject to change and may be changed by SAP at any time without notice. SAP assumes no responsibility for errors or omissions in this document. SAP does not warrant the accuracy or completeness of the information, text, graphics, links, or other items contained within this material. This document is provided without a warranty of any kind, either express or implied, including but not limited to the implied warranties of merchantability, fitness for a particular purpose, or non-infringement. SAP shall have no liability for damages of any kind including without limitation direct, special, indirect, or consequential damages that may result from the use of these materials. This limitation shall not apply in cases of intent or gross negligence. The statutory liability for personal injury and defective products is not affected. SAP has no control over the information that you may access through the use of hot links contained in these materials and does not endorse your use of third-party Web pages nor provide any warranty whatsoever relating to third-party Web pages. 2011 SAP AG. All rights reserved. 42

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information