Hi GRC Experts
Here we need to manage Enterprise Portal account via Access Control ARM, I know that before the user select EP roles in Access Request, we need to firstly import the EP roles into BRM. Please refer to the following snapshot, I cannot find the application type "Enterprise Portal", it seems that there's no way to import EP roles 
Can someone please help me? Thanks a lot
I would appreciate any link or knowledge share reference.
BR, James
No Record for consolidated Log Report in EAM whereas FF Log is being captured.
Implemented Note: 1775432
Hi All,
There is any SAP standard agent for Monitors of Mitigation Control Maintenance Workflow?
I found for Approvers but not for Monitors.
Please advise.
Hi Friends,
I am facing a very strange situation.
In the UAR Review when the reviewer selects any role for removal it does not gets removed from the backend system.
However when he tries to select earlier role along with the BASIC ROLE(Common ECC Role given to all users) both the roles gets deleted. This basic role is with all the users in the system.
Only if you select basic role along with the desired role for removal, roles are getting removed otherwise not. 
I cant get this basic role removed from the users. This was working fine earlier and suddenly this problem popped up.
Please let me know your thoughts.
GRC 10.1, SP7
Regards
Hello,
Our GRC Administrators are not able to see the 'Owners' tab at the organization level. I'm not sure what authorization object is needed to make this tab visible. When they open a control assigned to the organization they can see the Access Risks and Owners tab, just not the Owners tab at the Organization level. We are using PC for our mitigating controls and they need access to the Owners tab at the Org level in order to assign owners there first and then at the control level.
Appreciate your input!
Dear Experts,
the 10 services have been set-up for PSS, the shared user (system) user is set-up with passwords and
the email is getting sent correctly with the link to the user - however - the user is getting prompted to log
onto the GRC system to retrieve the password.
Why is this happening if I have done the config -as follows
SPRO/GRC/Access Control - Connector settings - all set-up for PSS (except HR systems)
SPRO/GRC/AC-Data Source : User Search (1 - HR, 2-CUA, SU01)
User Detail Data Source (1 - HR, 2-CUA SU01)
User Authentication (CUA)
End User Verification : No
SPRO/GRC/AC/User Provisioning : Maintain Provisioning Settings / Global
Auto Provisioning at end of request
E-mail Status : Send Password : No
Could anybody have an idea what might be missing ?
Thanks in advance,
Much appreciated as always,
Kind Regards,
Siobhan
Dear GRC Community,
as moderator of the GRC space I would like to hand out some general information of what is expected in a good discussion thread. Since I am following most of the threads in the GRC space I can easily identify if the question is going to be answered quickly or if it's going round in circles for several days.
As most of the contributors are volunteers and offer up their free time I would like to decrease the unproductivity and instead pointing the questions to more specific and helpful answers.
Prior to your first posting make sure that you have read and understood the rules of engagement: The SCN Rules of Engagement
The use of the search engine (that can be found on the top right corner) and also Google or any other is well appreciated as most of the content is already available here on SCN or SAP Wiki. To date, almost 12'000 discussions have been started on the GRC space including 400 documents and 180 blogs.
Please provide the following information in each discussion thread:
Also never assume that your counterpart has the background information of your project or environment. Hence provide useful information especially when you are not using standard functionalities.
Please note that discussion threads that do not meet the minimum requirements will be rejected by the moderators.
Looking forward to your contribution in the GRC space.
Best regards,
Alessandro
Hi All,
GRC 10.1 SP05 and NW 7.40
How to make Communication Method as default for the users created through submission of access request via EUH?
Please advise.
Hi Forum,
When I add a new FFID owner to an existing FFID and then in second step try to remove the old owner I get below error message. How can I remove the old owner from the FFID? Now I have both old and new owner in the FFID account. We use GRC 10.0 EAM. Funny I never saw this error message in the forum. Thanks so much.
"FFID ABC is assigned to a firefighter using owner XYZ; cannot be deleted"
Hi All,
Anybody knows how to download cost center information for users? (that field gets populated in Access Request from SAP HR system)
However we are having problems to find which table stores that data per user (sql trace did not help...).
Best regards, Andrzej
Hi Experts
Yesterday we have upgraded our system 10.0 to 10.1.
Now we are facing a very wierd issue. Approvers are not able to apporve the request as he gets the beow message
"There is an already an open request for system XXCLNT00 by user id ABCD"
I have checked in system and there is no other open request for the user and all are approved and finished.
I guess this a SAP BUG.Please let me know if anyone has faced this issue
NOTE: I dont want to change the EUP field here as we have YES for One User per Request per System
This issue is on priorty and appreciate any help from you guys.
Thanks
Nitesh
Hi Team,
We have defined ABAP Class based for Agent Rule ZCL_GRAC_WFA_RISK_OWNER, and the Risk owners are also maintained in the AC table in Set-up, but after submitting the access request there are SOD voilations,Detour condition GRAC_MSMP_DETOUR_SODVIOL is satisfied , so the request is routed to ROLEAPP_SOD_PATH and parallely routed SODVIOL_DETOUR_PATH6,
Once the role owner approvers the request, and escape route applied at SODVIOL_DETOUR_PATH6 as No approver found.
But the Risk owners are defined in the AC Owner table.
Can anybody help with this, as why escape path is applied even after maintaining Risk owners?
Regards,
Sindhu
Hi,
When i run the report User Access Review History Report and User to Role Relationship report not showing any data in our GRC 10.1 system, I can not find any data in my report. Is i am missing some thing here in configuration.
Hello All,
I am working on AC 10.1 ... I am configuring EAM. I am trying to connect GRC quality with ECC quality system.
Below mentioned GRC component is installed in my ECC quality system
Role SAP_GRAC_SPM_FFID is not available in ECC quality.
When I had configured EAM in GRC developement and had it integrated with ECC development, role SAP_GRAC_SPM_FFID was existing automatically in ECC development. EAM is working perfectly fine in GRC Dev - ECC Dev.
Configuration settings in GRC quality :
Please suggest if I am missing out on any configuration step.
Regards,
Rahul Muni
Dear all.
I am trying to restrict the user types that are available into an Access Request.
However i am not able to find an authorization object which restricts this information.
Knid regards and thanks,
Sara.
Hi Experts,
Does anybody have an idea about the table which stores the description of mitigations?
I am aware of the following tables which are related to the mitigation concept but do not have an idea where the mitigation description can be available. I have been searching for this information into the transaction SE16 but could not get it 
Risk description: GRACSODRISKT
Risk and actions : GRACACTRULE
Mitigated by - GRACMITUSER
Hope to hear from you!
Thank you very much in advance!
Thanks,
Priya
Hi Experts,
I wants to restrict the "Copy Request" Option from the GRC End User / Requester. Please share the Authorization Object to restrict the same.
Thanks in advance.
From the SAP Access Request Approval Page if a user enters a note and then closes the screen, a warning message is received "Application contains unsaved data which may be lost. Do you want to continue without saving the changes?". If the user responds Ok the note entered is lost. If the user responds Cancel, the user is returned back to the request approval page and cannot exit. The only time we have found notes to be saved is when selecting either Submit or Another Option. The user in this case does not want to send the request to the next stage but instead to enter a note and will return to Submit later.
Is there a way to enable Save for Notes for to add a note another way?
Current SAP Solution and Package: SAP Access Control 10.1 SP 10
We have a need to enter notes on an Access Request Approval that has been closed but cannot find a way to do it. This would be used to log additional information such as
- if an additional request had to be opened and the request number.
- helpdesk tickets that may have originated after the request was closed.
etc.
Current SAP Solution: SAP Access Control 10.1 SP 10.
