Let me share my experience in the form of document,
May be topic (Portal Integration with GRC10.0) is not new but might be useful for others who are going for same assignments.
It is not a latest assignment for us to document all exact issues, but try to document whatever we faced majorly.
We have started with help of below links which are open to everybody
Enterprise Portal Integration with SAP GRC 10.0
We have gathered the information about plug ins from below NOTE
1603438 - GRC AC 10.0 EP Plug-In (JAVA), supported NW Versions
After creating the Connectors we have followed the below NOTE for configuration in SPRO
1607232 GRC 10.0 Enterprise Portal Configuration
Please make sure the below settings should be correct
- Maintain the Logical port for WS connector
- Attach both the connectors (WS and SPML) to AUTH, PROV and ROLMG scenario-Make sure connectors names are correct
- Maintain group field mapping correctly
- We need to give SPML RFC and schema as SAPprincipals.in Synchronization Jobs > Fetch IDM Schema.
We have faced some challenges while running synchronization jobs
Portal security created some roles with special characters for administrator purpose (easy identification) and user id’s with Zero, like 0Art1CZ, 0Bah4ST.
We have followed the below NOTEs
1841549 - Portal issue with special characters
1833649 - UAM: Portal Users Starting with ZERO (0*) are not synced up
We have faced performance issue while running Repository Object Sync, the below KBA solved issue
1848113 - How to increase the performance syncing objects from portal to GRC
Repository job completed but roles are not sync
The below KBA will also help us if NO DAT FOUND in SCHEMA UPDATE
1857609 - GRC10.0: Portal roles/profiles not syncing
We need to run sync job for SCHEMA,as mentioned in the NOTE
1607232 GRC 10.0 Enterprise Portal Configuration
We can check the status of imported schema by using table GRACIDMSCHEMABUF from SE16 in GRC system.
If any issues while fetching schema into GRC,then follow the below NOTEs
1848215 - Cannot fetch the IDM schema for the EP SPML connector.
2033753 - AC10.0: Unable to Fetch IDM Schema for EP
Mostly the issue will be with connector id, Please make sure to use Portal connector that ends with "_SPML" when running the Schema job.
If portal roles are not provisioning to user,though all configuration settings are correct then check the below Notes
1838692 - Portal role provisioning not happening
1825879 - UAM:Provisioning to mapped user is not working in portal UME
If groups are not getting assigned then follow the below NOTE
1840613 - Groups are not getting assigned to users on Portal
If any error occurs while running risk analysis for portal roles implement the NOTE
1852566 - Portal Roles Risk Analysis does not work properly
Some of the old threads for more information and issues::
GRC PC 10.0 Enterprise Portal Configuration Guide- http://scn.sap.com/thread/3230036
Compatible Portal Version for GRC 10: http://scn.sap.com/thread/2110735
GRC10 End User Front-end: http://scn.sap.com/thread/2059477
SAP GRC 10 - Integration with Enterprise Portal for User Access Assignment : http://scn.sap.com/thread/3682941
Enterprise Portal Integration with SAP GRC 10.0: http://scn.sap.com/docs/DOC-61262
Role Mapping For Portal Role Assignment and ABAP Role Assignment - GRC 10: http://scn.sap.com/thread/3678168
User sync and provisioning issue in EP - GRC 10: http://scn.sap.com/thread/3595488
GRC AC 10 (RAR/CUP/ERM) configuration for EP system: http://scn.sap.com/thread/2073635
SAP GRC 10 Integration with NW7.4 Portal: http://scn.sap.com/thread/3676056
Re: EP provisioning failure with error "Exception when creating user :USERID_CONTAINED_IN_PASSWORD"
Re: How to define SoD Master Data for WebDynpro Application or Enterprise Portal?
May be some more issues which are not able to re collect,if any i will add into same page.
if anyone faced issues,they could share and we can include in same page.
Regards
Baithi