on 2016 Apr 05 1:59 PM
Hello folks,
I am about to customize a line item brf+ routing rule for access requests which contain single roles but composite roles as well.
Though i was able to get a working rule for the single roles handling the composite roles does make some trouble.
To resolve the issue i have only two question.
Thank you in advance.
Regards, Andreas
Andreas,
Table AGR_AGRS in the connected system contains the relationship between the Composite and its component roles. When you do your role import and select the backend system as your Role Authorization source, this table is among those checked. We have had several instances where the import of a Composite role failed, and after some investigation, we determined that the import failure was caused by AGR_AGRS not showing the same list of component roles as we had listed in the import file ( in Column X) and actually in the Composite at that time.
Gretchen
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Gretchen,
Amazing, thank you!
Though after some testing and working with the rule i found out that the function module i was using (GRAC_IDM_RISK_WITH_NO_SERVICES) was storing not only the single role name but also the name of the associated composite role in the request. This enabled me to avoid to challenges with the authorization source.
Have a good day, Andreas
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.