- GRC 5.3 provision user with validity period the same day user was created. SU01 screen as below:
- In GRC you can see the following when request for a new account:
- This was cause by following settings in GRC 5.3 in Configuration > Field Mapping > LDAP Mapping > Additional Fields > validToDate
- Remove this entries and try again.
Tuesday, 24 July 2012
GRC 5.3 - Valid to date is always the current date during submission of a new request
GRC 5.3 SNC - Provision with upper case userid which cause SNC to fail
- GRC 5.3 is able to provision SNC settings to SU01 but USERID appears in upper case format as below:
- SNC is case sensitive, thus it will failed when user tried to login.
- Because GRC 5.3 convert user id to UPPERCASE as below:
- This can be resolved in two step.
- Step 1: Configuration > Request Form Customization > SNC Name >
Default value > p:#!#userId#!#@DOMAIN.COM
- Step 2: Configuration > Field Mapping > LDAP Mapping > Additional Fields > Add SAP_User_ID and then map it to the correct LDAP fields. In our case, its "mailNickname" because it is in lowercase.
- GRC will then replace userId with the LDAP field "mainNickname" which is in lowercase
- Once provision, SNC field in SU01 will be in this format p:zmolan@DOMAIN.COM
Sunday, 22 July 2012
SOD Scan using /n/virsa/zvrat
- Tcode /n/virsa/zvrat
- Ok
- Enter userid
- Choose the system where user id was created
- Then execute
- If the system id was not found, you may add the system using those entries in SM59.
- To add, execute /n/virsa/zvrat_s16
- Select Comp Calibrator Configuration
- Under Parameter 19, add in a new system
- Save and try scan again
Monday, 16 July 2012
VIRSA - HOW TO export mitigation control
- SA38 or SE38 and execute /VIRSA/ZVRAT_L03
- Enter the following details:
Subscribe to:
Comments (Atom)