SAP GRC integration 1 GRC commission SAP GRC Identity Management SAP Solution Manager
SAP GRC integration1
GRC commission
SAP GRC
IdentityManagement
SAPSolutionManager
Agenda
Setting the sceneGRC – IdM integrationGRC – IdM demoGRC – Solution Manager integrationQ&A
2
SAPGRC
IdentityManagement
SAPSolutionManager
Setting the scene
3
IdentityManagement
SAP GRCAccess Control
Business users
Non-‐SAPSystems
SAPSystems
Typical accessrequest situation
Setting the scene
4
IdentityManagement
SAP GRCAccess Control
Business users
Non-‐SAPSystems
SAPSystems
IT users
Compliance/Audit
Typical accessrequest situation
Setting the scene
5
IdentityManagement
SAP GRCAccess Control
Non-‐SAPSystems
SAPSystems
IT users
Integrated accessrequest situation
Business users
Compliance/Audit
Integrated GRC-‐IdM Solution
GRC – IdM integration
6
GRC – IdM integration
The integration is accomplished by the web services exposedby SAP GRCThis allows the IdM solution to:• Create requests / check status of a request• Search for values (business processes, priorities, )• Search for roles• Perform a risk analysis•
7
IdentityManagementSolution
SAP GRCAccess control
Create request
Search roles
Response
GRC – IdM integration
Example integration scenario
8
GRC – IdM demo
9
GRC – IdM demo
Demo setup
10
“Custom”IdentityManagementSolution
SAP GRCAccesscontrol demosystemCreate access request
GRC – Solution Managerintegration
Typical Solution manager functionality:• Reporting (Early Watch, Security Optimisation Service)• SAP License measurement• Charm (change management ticketing tool)
Integration option: various alerting from GRC that cangenerate a ticket in CharmIntegration option: start firefighter session from a ticket tomake sure there’s always a valid ticket available
11
GRC – Solution Managerintegration
Additional button in the ticket monitor to start a firefightersession for this ticket
12
GRC – Solution Managerintegration
The button will take the user tothe FF logon pad at thecorresponding system
When starting a new session,the user will be presented witha modified version of thepopup window. The reason textfield has been hidden andcontains the Solution Managerticket number
13
GRC – Solution Managerintegration
When the firefighter session has ended, the user can jumpback to the Solution Manager ticket using a custom button
This will update the ticket with the session information
14
Question & answer
15
Thank you!
GRC commission
Kris Wauters+32 (0)499 558 [email protected]
Wim Rymen - Director+32 (0)473 269 [email protected]
Brent van Dyck+32 (0)499 67 37 [email protected]