• No results found

GR5 Access Request. Process Diagram

N/A
N/A
Info
Download
Protected

Academic year: 2022

Share "GR5 Access Request. Process Diagram"

Copied!
10
0
0

Loading.... (view fulltext now)

Download now ( 10 Page )

Full text

(1)

GR5 Access Request

Process Diagram

(2)

© 2015 SAP SE or an SAP affiliate company. All rights reserved. 2

Purpose, Benefits, and Key Process Steps

Purpose

 This scenario uses business roles to show a new user access provisioning and also demo using simplified access request to request, remove or extend roles.

Benefits

 Collaborations among business users and IT users.

 Streamline user provisioning process.

 Enables risk simulation during access request.

 Enables requesting roles, removing roles or extending roles by using a simple form.

Key Process Steps

 Making access request for a new hire.

 An automated user provisioning workflow is trigged once the access request is submitted.

 Once all required approvals are obtained the new user account will be automatically created in the ERP system.

 Making simplified access request for additional, removal roles or extend roles.

(3)

Required SAP Applications and Company Roles

Required SAP Applications

 SAP Access Control 10.1

Company Roles

 End User

 Manager

 Role Owner

 Risk Owner

 Point of Contact

 Mitigating Control

 Security Lead

(4)

© 2015 SAP SE or an SAP affiliate company. All rights reserved. 4

Detailed Process Description (1/1)

GR5 – Access Request

Section 1: Requesting A New Account

Requesting Access

Manager Approving Access Request

Role Owner Approving Access Request

Risk Owner Approving Access Request Section 2: Requesting Roles

Requesting Access - Simplified

Manager Approving Access Request - Simplified

Role Owner Approving Access Request - Simplified

(5)

GR5 – Access Request (1/2)

Risk Owner SAP Access Control

End User Manager Role Owner

SAP ERP End User

No Risk Violation

With Risk Violation

POC

No Manager Assigned

No Role Owner Found

No Risk Owner Email 1

Email 2

Email 3

Email 4 A

B

C

D Request Access

Manager Approves Access Request

Role Owner Approves Access

Request

Risk Owner Approves Access

Request Manager

Assigned

Role Owner Found

Risk Owner Found 1 Making access

request for a new hire

(6)

© 2015 SAP SE or an SAP affiliate company. All rights reserved. 6

GR5 – Access Request (2/2)

Risk Owner SAP Access Control

End User Manager Role Owner

SAP ERP End User

No Risk Violation

With Risk Violation

POC

No Manager Assigned

No Role Owner Found

No Risk Owner Found Email 7

Email 8

Email 9

Email 10

Email 11 G

H

I

J

K Request Access -

Simplified

Manager Approves Access Request - Simplified

Role Owner Approves Access Request-Simplified

POC check and reject no approver

request Risk Owner

Approves Access Request-Simplified

L

Requested Roles are updated for the

user Manager

Assigned

Role Owner Found

Risk Owner Found

Email 12 2 Requesting Roles

(7)

GR5 – Access Request (1/2)

Icon Legend

Icon Name

Making access request for a new hire Requesting Access

SAP GRC AC NWBC: Access Management -> Access Request Creation -> Template Based Request Manager Approving Access Request

SAP GRC AC NWBC: My Home -> Work Inbox -> Work Inbox Role Owner Approving Access Request

SAP GRC AC NWBC: My Home -> Work Inbox -> Work Inbox Risk Owner Approving Access Request

SAP GRC AC NWBC: My Home -> Work Inbox -> Work Inbox POC reject the request

SAP GRC AC NWBC: My Home -> Work Inbox -> Work Inbox User Created & Role assigned (Automatic Process Step) Requesting Roles

Requesting Access – Simplified

SAP GRC AC NWBC: Access Management-> Access Request Creation -> Create Request - Simplified Manager Approving Access Request - Simplified

SAP GRC AC NWBC: My Home -> Work Inbox -> Work Inbox - Simplified Role Owner Approving Access Request - Simplified

SAP GRC AC NWBC: My Home -> Work Inbox -> Work Inbox - Simplified Risk Owner Approving Access Request - Simplified

SAP GRC AC NWBC: My Home -> Work Inbox -> Work Inbox - Simplified POC reject the request

B

C D E

F

G

H

I

J K

1

2 A

(8)

© 2015 SAP SE or an SAP affiliate company. All rights reserved. 8

GR5 – Access Request (2/2)

Icon Legend

Icon Name

Manager receives an Email that there is an access request needs to be approved or rejected after review.

Role Owner receives an Email that that there is a request needs to be approved or rejected after review.

Risk Owner receives an Email that that there is a request needs to be approved or rejected after review.

The End User receives an Email that request is approved and new account is created

POC receives an Email that that there is a request needs to be approved or rejected after review The End User receives an Email that request is rejected

Manager receives an Email that there is an access request needs to be approved or rejected after review.

Role Owner receives an Email that that there is a request needs to be approved or rejected after review.

Risk Owner receives an Email that that there is a request needs to be approved or rejected after review.

The End User receives an Email that requested Roles are updated for the user

POC receives an Email that that there is a request needs to be approved or rejected after review The End User receives an Email that request is rejected

Email 1

Email 2

Email 3

Email 4

Email 5

Email 6

Email 7

Email 8

Email 9

Email 10

Email 11

Email 12

(9)

Thank you

(10)

© 2015 SAP SE or an SAP affiliate company. All rights reserved. 12

© 2015 SAP SE or an SAP affiliate company. All rights reserved.

No part of this publication may be reproduced or transmitted in any form or for any purpose without the express permission of SAP SE or an SAP affiliate company.

SAP and other SAP products and services mentioned herein as well as their respective logos are trademarks or registered trademarks of SAP SE (or an SAP affiliate company) in Germany and other countries. Please see http://global12.sap.com/corporate-en/legal/copyright/index.epxfor additional trademark information and notices.

Some software products marketed by SAP SE and its distributors contain proprietary software components of other software vendors.

National product specifications may vary.

These materials are provided by SAP SE or an SAP affiliate company for informational purposes only, without representation or warranty of any kind, and SAP SE or its affiliated companies shall not be liable for errors or omissions with respect to the materials. The only warranties for SAP SE or SAP affiliate company products and services are those that are set forth in the express warranty statements accompanying such products and services, if any. Nothing herein should be construed as constituting an additional warranty.

In particular, SAP SE or its affiliated companies have no obligation to pursue any course of business outlined in this document or any related presentation, or to develop or release any functionality mentioned therein. This document, or any related presentation, and SAP SE’s or its affiliated companies’ strategy and possible future developments, products, and/or platform directions and functionality are all subject to change and may be changed by SAP SE or its affiliated companies at any time for any reason without notice. The information in this document is not a commitment, promise, or legal obligation to deliver any material, code, or functionality. All forward-looking statements are subject to various risks and uncertainties that could cause actual results to differ materially from expectations. Readers are cautioned not to place undue reliance on these forward-looking statements, which speak only as of their dates, and they should not be relied upon in making purchasing decisions.

References

Download now ( PDF - 10 Page - 722.73 KB )

Related documents

Payday Lenders Pose as Brokers to Evade Interest Rate Caps

7 The table on page one shows the cost of a typical $300 loan with a 14-day term offered by large national payday companies operating under state credit repair laws, as

Instruction Manual Model: GT-SKR010B GT-SKR015B GT-SKR020B GT-SKR030B

◆ Auto-antifreeze: To prevent the pipes and pumps from being frozen, the unit will defrost automatically when it meets the condition as follows: the ambient temperature is

lm2500

In 1993, single-pressure HRSGs were constructed for both units to improve plant efficiency and increase plant capacity, achieving a combined cycle heat rate of 8,880 BTU/kWe-Hr

My Inbox in SAP Fiori Simplifying Workflow for End Users

SAP Business Process Management Provider SAP HANA Provider* 3rd Party Workflow Engines Provider(s) OData. RFC Web Service

Consistency Thresholds for Hierarchical Decision Model

[28] Provide consistency measure for additive Pairwise Comparison Matrices (PCMs) The multiplicative case is not addressed, no thresholds for the measure are provided, and

FileNet and SharePoint Better Together. Tom Moen Channel Development Manager

Fileroom Inbox Outbox to Fileroom Underwriter Inbox Conditions Outbox Wait for Conditions Fileroom Inbox Outbox to Fileroom Mortgage Insurance Inbox Fileroom Inbox Underwriter

Mobile Encrypted Messaging: A Perfect Complement to MDM

> All messages are stored encrypted in the cloud > Private and secure mobile inbox for each user > All messages are automatically encrypted. > Receive real

SAP SRM Rapid Deployment Solution S23 Self-Service Procurement Multiple Backend (Extended Classic) Process Diagram

SAP NWBC: Home -> Shopping Area -> Active Query: Shopping Carts -> Select -> Create Confirmation.. SAP NWBC: Purchasing -> Purchasing -> Active Query: Purchase