Create an Access Request and Fix SoD Violations More Easily with SAP Access Control 10.1

  • by Neha Garg, Senior Developer, SAP Labs India Pvt. Ltd.
  • Shilpa Viswanadha, Senior Developer, SAP Labs India Pvt. Ltd.
  • May 1, 2015
Neha Garg and Shilpa Viswanadha show how to configure different services for using the simplified access request and remediation view in SAP Access Control 10.1 and the advantages of using these two new features.
Learning Objectives

Reading this article you will:

  • See how to configure and activate the services for HTTP communication using transaction code SICF and OData services for simplified access request and remediation view
  • Understand the architecture of the GRC application based on SAPUI5
  • Review the technologies used for implementation of simplified access request and remediation view and their advantages
Key Concept

Simplified access request with an advanced role search is a new feature in SAP Access Control 10.1. It allows users to create requests with minimal information compared with the Access Request. The new role search available in the simplified access request provides the option to search the roles with free text. With the new remediation view users now have additional options that were not available in the earlier risk analysis views. That includes the option to do the risk analysis on SU01 attributes of users – for example, by function, department, and parameters.

One major task after implementation of SAP Access Control is creating segregation of duty (SoD) violation-free users in SAP ERP. For this purpose, users and administrators have been using the Access Request and Risk Analysis features provided in SAP Access Control. In the SAP solutions for GRC 10.1, however, the same functionality can be achieved in a more simplified and effective way, which is by using the simplified access request and remediation view. These two new features are implemented using SAPUI5, OData Services, and services for HTTP communication via transaction code SICF.

We cover how to configure SICF and OData services to enable use of these two new features.

Neha Garg

Neha Garg, senior developer, SAP Labs India Pvt. Ltd., has nine years of experience in SAP Labs. Neha is currently working with the Installed Base Maintenance Support (IMS) organization, SAP Labs, India, for SAP Access Control 5.3, 10.0, and 10.1. Neha has vast experience and has worked on multiple technologies, including JavaScript, Java, web services, OData services, SAPUI5, HANA, ABAP WebDynpro, Floor Plan Manager with ABAP WD, ABAP OO, SAP ABAP dictionary, and function modules for a broad range of SAP modules and SAP Access Control. Neha has worked in almost all the sub-components of SAP Access Control and has published one patent in the SAP Access Control area.

See more by this author

Shilpa Viswanadha

Shilpa Viswanadha. senior developer, SAP Labs India Pvt. Ltd., more than six years of experience in the IT industry with more than three years in SAP Labs. Currently Shilpa is working with the Installed Base Maintenance Support (IMS) organization, SAP LABS India, for Access Control 10.0 and 10.1. Shilpa has vast experience in different technologies including SAP UI5, HANA, ABAP WebDynpro, Floor Plan Manager with ABAP WD, ABAP OO, SAP ABAP Dictionary, function modules for a broad range of SAP modules and SAP GRC Access Control.

See more by this author


Comments

No comments have been submitted on this article. 


Please log in to post a comment.

To learn more about subscription access to premium content, click here.