Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Asset Management 1
Technical Data
Integration
You can use the Simplified Management of EAM
Functions (LOG_EAM_SIMPLICITY) business function to implement business
packages that enable maintenance workers to complete their daily tasks more
quickly and easily. The following business packages simplify maintenance
processes for planned and unplanned activities as well as the access to stock
data:
Business Package for Maintenance Worker
Business Package for Generic EAM Functions
With the Operation Account Assignment (LOG_EAM_OLC) business function,
you can use the operation of a maintenance order or service order as the
account assignment object. As a result, you can allocate estimated, planned,
and current costs at operation level.
With the Enterprise Asset Management Part 2 (LOG_EAM_SIMP) business
function, you can use maintenance processes more easily.
Prerequisites
You have installed the following components with the version mentioned or
higher:
Component Component Only Required for the Following
Type Functions
Portal content Business Package for Generic EAM Create, change, and display linear
Functions reference patterns in the SAP
NetWeaver Portal or SAP NetWeaver
Business Client
SAP ESA ECC-SE 605, namespace Enhanced Enterprise Services for
Enterprise http://sap.com/xi/EA-APPL/SE/Global Linear Data, Process
Services Component Installed Base Data
Processing
Features
Enterprise Services
The following enhanced operations are available for processing linear data:
Process component Product Data Maintenance:
o IndividualMaterialERPChangeRequestConfirmation_In_V1
o IndividualMaterialERPCreateRequestConfirmation_In_V1
o IndividualMaterialByIDQueryResponse_In_V1
o IndividualMaterialERPCreateCheckQueryResponse_In_V1
Process component Installed Base Data Processing:
o InstallationPointERPCreateRequestConfirmation_In_V1
o InstallationPointERPCreateCheckQueryResponse_In_V1
o InstallationPointERPChangeRequestConfirmation_In_V1
o InstallationPointERPChangeCheckQueryResponse_In_V1
o InstallationPointERPByIDQueryResponse_In_V1
Configuring Emergency Access Management
Prerequisites:
A) Validate that GRC Plug-in is properly installed in satellite
If you are using GRC10.0 (GRCFND_A 10.0) then the valid plugin is GRCPINW V1000_731.
If you are using GRC10.1 (GRCFND_A 10.1) then the valid plugin is GRCPINW V1100_731.
B) Validate that GRC Plug-in User Exit is created per SAP Note
1545511 – “Firefighter User Exit”
Despite the Firefighter ID password is changed by the application each time you start the firefighter (you
can check it via change documents in the target system), Firefighter Ids need to be restricted from
Logging in into SAP System directly via SAP GUI. For this purpose either we need to create and modify
the SAP User Login Exit.
Please visit the SNOTE 1545511 for more information on “User Exit”
4008 0 YES
4010 0 SAP_GRAC_SPM_FFID
(SPRO > SAP Reference IMG > Governance, Risk and Compliance (Plug-In) > Access Control >
Maintain Plug-In Configuration Settings)
Click on New Entries and add the connector in Target Connector field and click on Save.
Only the users who have that role assigned in the target system will be available for selection in the GRC
Box as Firefighters IDs.
Create the Fire Fighter ID in the target systems with the below details:
Fire fighter ID: FF_XX_ID (XX might FI for Finance, MM for Purchasing team etc…)
LName : FI ID
Email: (XXXXX)@sapsecurityguru.com
Synchronization:
Go to ->SPRO->Governance, Risk and Compliance->Access Control->Synchronization Jobs:
Authorization Sync :
The synchronization updates the data for the following:
Select the connector name using F4 search and select sync either as Incremental or Full Sync mode.
Now launch the GRC application via NWBC, then search for the Firefighter ID and this should be
available in Firefighter ID list.
Enter the Controller name in “Owner” Field and select Owner type as “Fire Fighter Controller”
and save.
Assign Owners to Fire fighter Id:
Login in GRC System ->go to NWBC -> Access Management -> Superuser Assignment -> Owners
Select the Owner name in “Owner ID” field and click on Add button and the Select the fire Fighter id and
target system and save.
Select the Controller name in “Controller ID” field and click on Add button and the Select the fire Fighter id
and target system and set the Notification by as “Workflow” .Then click on Save button.
Assign Firefighter IDs to Firefighters:
Login in GRC System ->go to NWBC -> Access Management -> Superuser Assignment -> FireFighters
Enter the FF id user in “Firefighter” field .Then click on Add button and select the Fire Fighter Id and save.
Enter the Reason Code in “Reason Code” field -> Select the Status as active->Enter the description in
“Description Field”->Click and Add Button and Select the Target system.
Client = *
User = FF_*
Procedure:
Important Notes:
The FireFighter sync jobs should run one daily for all non-production systems. For production systems,
the FireFighter sync jobs should run twice a day. Two separate jobs will need to be scheduled, both at
different times to accomplish the production runs.
Make sure to space the running of the batch jobs out. You can use the SAP table TBTCO to view the
scheduled run times for all the FireFighter jobs.
Validate that Fire fighter has been configured successfully
Login in GRC system with Fire Fighter user id.
Execute the t-code GRAC_EAM.
Select the Target system and click on the Logon button to login using Fire Fighter.