cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

SAP GRC ARM 12 Manager id is appearing blank in ARM template

Go to solution
rubens_muller
Participant

on ‎2020 Mar 18 6:20 PM

5,114

Hi, friends.

Manager id does not appear in the access request.

Attached Images

--------------

-------------

------------

------------

-----------

-----------

-----------

---------

--------------

Thank you

Rubens Vaz Muller

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (1)

Accepted Solutions (1)

RameshVithanala
Active Participant
‎2020 Mar 31 4:07 PM

Hi Rubens,

Please implement the following SAP Note, It's applicable to your system

2902924 - ARQ: Manager details are not fetched from LDAP system

Thanks

Ramesh

Show replies
Show replies
rubens_muller
Participant
‎2020 Apr 01 9:33 PM
0 Kudos

Ramesh

Problem solved. After applying the Note, the Manager ID was extracted normally. Thank you very much for your support.

Answers (9)

Answers (9)

Trinetra_Bhusha
Active Participant
‎2020 May 01 8:40 PM
0 Kudos

Hi Artem,

Sorry I did not get your point. Are you saying you did not know the answers to my scenarios?

Thanks,

Trinetra

Show replies
Show replies
rubens_muller
Participant
‎2020 Jul 06 9:58 PM
0 Kudos

Trinetra, All right?

Friend,

I would like your support to make the GRC-AC block the user in the access request. It is already functioning as a source of research and Authentication.

What needs to be done to perform this configuration?

Thank you

Trinetra_Bhusha
Active Participant
‎2020 Apr 15 10:42 PM
0 Kudos

Hi Guys,

It seems you have done enough research on LDAP and GRC space. I am trying to reset password and validity of user in LDAP through GRC and have issues. Can you please look into this (last commnet) https://blogs.sap.com/2016/05/02/connecting-sap-grc-ac-10x-to-microsoft-active-directory/comment-pag...

Thanks,

Trinetra

Show replies
Show replies
former_member182655
Contributor
‎2020 Apr 28 1:44 PM
0 Kudos

Hi Trinetra,

Sorry, researches like you mentioned I didn't do?

Regards,
Artem

former_member182655
Contributor
‎2020 Apr 02 10:44 AM
0 Kudos

Hi Rubens,

Glad to see positive result! So, my recommendations were helpful and the only missed point was note 2902924, isn't it?

Have a nice day!

Show replies
Show replies
rubens_muller
Participant
‎2020 Apr 03 8:46 PM

Hi, Artem

So I kept the information as pictures.

The steps you informed me were already defined. I just did not do the synchronization because I informed in the parameters that the LDAP search will be Online and Datailed Data Source I was also defining

Tanks, Frend

former_member182655
Contributor
‎2020 Mar 31 7:30 AM
0 Kudos

Hi Rubens,

Shivam gave very good advice, you should definitely try it. As I understood, your online LDAP setting is being used for user search, but not for getting his/her details. Manager is a part of such details. When you perform the synchronization, please notice how many records were synchronized, as I remember LDAP can synchronize maximum 999 records (but I might be wrong).

Regards,

Artem

Show replies
Show replies
rubens_muller
Participant
‎2020 Apr 01 9:37 PM

Artem,

There was a need to apply the following note:

2902924 - ARQ: Manager details are not fetched from LDAP system

Thanks for the support

shivam_agarwal1
Product and Topic Expert
Product and Topic Expert
‎2020 Mar 27 6:05 PM
0 Kudos

Hi Rubens

Are you running repository sync as well for this LDAP connector? If yes, check value for MANAGER field in table GRACUSER. If you can see this value then mapping seems to be correct and issue is with retrieval. Check this and confirm.

Addition to that, there were fixes in later SP's on this. Not sure of your current release and SP level, may be you can try on service market place. Let me know if you face any issues.

Thanks and Regards

Shivam Agarwal

Show replies
Show replies
rubens_muller
Participant
‎2020 Mar 30 9:54 PM
0 Kudos

Tanks, Shivam

I am not synchronizing because I preferred to enable real-time search.

Still, do I need to synchronize the repository?

Last Level

Tanks

rubens_muller
Participant
‎2020 Apr 01 9:37 PM
0 Kudos

Shivam,

There was a need to apply the following note:

2902924 - ARQ: Manager details are not fetched from LDAP system

Thanks for the support

former_member182655
Contributor
‎2020 Mar 27 12:36 PM
0 Kudos

I meant to maintain both folders: User Search DS and User Detail DS (in the picture above).

Let's see if the system could find manager is User Data type is set as HR for your LDAP connectors.

Show replies
Show replies
rubens_muller
Participant
‎2020 Mar 30 9:45 PM
0 Kudos

Hello, Artem

Thanks for the feedback.

I set it to HR and the user is not found.

If I set the user type to SU01, the user is found but the manager continues not displaying.

Tanks

former_member182655
Contributor
‎2020 Mar 27 12:33 PM
0 Kudos

Hi Rubens!

But did you try to put HR in the last field here

?

For both folders: User Search DS and User Detail DS.

There are two types of User Data type: SU01 and HR (if I remember it right).

Regards,

Artem

Show replies
Show replies
former_member182655
Contributor
‎2020 Mar 26 9:05 AM
0 Kudos

Hi Rubens!

I might be wrong, but Manager fields is only using for HR system. However, try to set User data type as HR for your Detail Data Sources and give a feedback was it helpful 🙂

Regards,

Artem

Show replies
Show replies
rubens_muller
Participant
‎2020 Mar 26 3:11 PM
0 Kudos

Hi, Artem

Tank you for support.

We don't have HR, friend. The base will be only AD.

rubens_muller
Participant
‎2020 Mar 18 8:47 PM
0 Kudos

---------------

Show replies
Show replies
Ask a Question