Overview

An adapter is an interface between a managed resource and the IBM® Security Identity server. The Integration for SAP GRC Access Control extends the IBM Security Identity Manager SAP NetWeaver Adapter.

In addition to the provisioning capabilities of the SAP NetWeaver Adapter, this integration sends access requests to SAP GRC Access Control for Separation of Duties (SoD) checks. The SAP GRC Access Control result allows a decision to be made on whether to provision the account. The provisioning step can be performed by either the SAP NetWeaver Adapter or by SAP GRC Access Control. The integration contains components that enable IBM Security Identity Manager to integrate with SAP GRC Access Control 5.3, 10.0, and 10.1.

This integration can also invoke the SAP GRC Access Control Risk Analysis web service on role assignments during an access request. It also enables rejected accounts and role assignments to be removed from the access request that was sent to the SAP NetWeaver Adapter.

The integration and configuration steps apply to SAP GRC Access Control 10.0 and 10.1.