Hierarchy
GRCFND_A (Software Component) GRC Foundation ABAP⤷
GRC (Application Component) Governance, Risk and Compliance⤷
GRFN_DOCUMENTS (Package) Documents
IMG Activity
| ID | GRACVC_DATASOURCE_MA | Maintain Data Sources Configuration |
| Transaction Code | S_GF1_13000145 | (empty) |
| Created on | 20100820 | |
| Customizing Attributes | GRACVC_DATASOURCE_MA | Maintain Data Sources Configuration |
| Customizing Activity | GRACVC_DATASOURCE_MA | Maintain Data Sources Configuration |
Document
| Document Class | SIMG | Hypertext: Object Class - Class to which a document belongs. |
| Document Name | GRACVC_DATASOURCE_MAPPING_DOC |
Use
In this Customizing activity, you can maintain the connector information required for Access Control to retrieve the user and authentication information from other data sources. You can maintain information for the following functions:
- Search Data Source: Access Control uses the information maintained in this screen to search for user-related data on different data sources. You can retrieve the unique user IDs from multiple data sources by maintaining a different connector for each data source, and then assigning the appropriate sequences.
Note: Access Control uses the HR user type to return only the employee user IDs when filtering user IDs on SAP HR systems, and when extracting user information during sync. It also maintains the connectors as master user sources in the user repository. - Detail Data Source: Access Control uses this configuration information to retrieve user details from multiple data sources, and depending on the sequence. Access Control reads the user attributes in sequence from the data sources; they are not over written. It uses the HR user type to return the user information from the emloyee HR record.
- Authentication Data Source: Access Control uses this confirmation information to verify the requestor's identity on the selected system in sequence.
Note: If the user information is confirmed on one system, it is considered as authenticated for all systems; further confirmation on other systems is not needed.
For end users, Access Control uses the connectors and authentication information to connect to the data sources and confirm the user IDs and passwords that the requestors use during end-user logon. This only applies to end users because they can also exist in remote systems, such as LDAP.
The following is the URL for end users and requestors that exist on non-GRC systems: http<s>://<server>:<port>/sap/bc/webdynpro/sap/grac_uibb_end_user_login
You must maintain the SICF entry fand authorizations or the default user for this application logon.
For SAP HR authentication, you can use the Personnel Number as an alternative to the user ID, and you can use the Social Security Number as an alternative for the password.
This is used primarily for single sign-on (SSO) based systems. If Authentication required is set to false, then the Password/SSN field is not displayed and only the userID/personnel number is used.
Requirements
Standard settings
Activities
Example
Business Attributes
| ASAP Roadmap ID | 201 | Make global settings |
| Mandatory / Optional | 2 | Optional activity |
| Critical / Non-Critical | 2 | Non-critical |
| Country-Dependency | A | Valid for all countries |
Maintenance Objects
| Maintenance object type | C | Customizing Object |
| Assigned objects | ||||||
|---|---|---|---|---|---|---|
| Customizing Object | Object Type | Transaction Code | Sub-object | Do not Summarize | Skip Subset Dialog Box | Description for multiple selections |
| GRACVC_DATASOURCE_MAPPING | C - View cluster | SM34 |
History
| Last changed by/on | SAP | 20100820 |
| SAP Release Created in | V1000 |
