Saviynt unveils its cutting-edge Intelligence Suite products to revolutionize Identity Security!
Click HERE to see how Saviynt Intelligence is transforming the industry. Saviynt Copilot Icon
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Fiori app services/semantic objects not being updated as entitlements in SAP endpoints.

jayant
New Contributor III
New Contributor III

‎05/07/2024 07:10 AM

Hi,

We are running on version 24.3 currently and we have observed an issue where semantic objects/actions or Fiori app services are not being updated as entitlements in SAP endpoints due to which when SOD rulesets are uploaded for Fiori Apps, the Functions are not updated.

jayant_3-1715089905765.png

There is entitlement hierarchy being maintained for Tcode entitlement types as shown below, where the values are populating under the tcode folders and also under S_TCODE Auth Object.

jayant_2-1715088960538.png

However, the entitlement hierarchy is not maintained for Fiori apps and the values are populating only under the S_SERVICE folder under Auth Object.

jayant_1-1715088781660.png

How can Functions be updated in the SOD rulesets if entitlements are not updated in Saviynt.

Is there any format in which Functions have to be updated for Saviynt to be able to pick them up?

Is there any different process to run SOD analysis on Fiori apps?

Thanks.

Labels:
0 Kudos
3 REPLIES 3

rushikeshvartak
All-Star
All-Star

‎05/07/2024 07:42 PM

  • Does service account used in connector have access to all required tables in SAP ?

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.
0 Kudos

jayant
New Contributor III
New Contributor III
In response to rushikeshvartak

‎05/09/2024 05:54 AM

Yes, the service account has access to the tables that are required.

0 Kudos

jsatish
Regular Contributor II
Regular Contributor II

‎05/15/2024 10:24 AM

@jayant - Fiori App services will be available from v24.5. Adding the release note content

From Release v24.5 onwards, you can enable the import of data from SAP Fiori Services, including SAP Gateway: Service Groups Metadata and SAP Gateway Business Suite Enablement Service and Web Dynpro Applications as entitlements into EIC.

To do so, include the following tables in the comma-separated list as value of the TABLES parameter:

  • AGR_HIER_WDYA
  • AGR_HIER_IWSG
  • AGR_HIER_IWSV

For more information about the above SAP tables, see Prerequisites for Enrolling the Application.

EIC maps the imported data as entitlements within the TCODE entitlement type. To distinguish these entitlements, EIC prefixes the entitlements with the following keywords:

  • [WDY]: Identifies entitlements related to Web Dynpro Applications
  • [SVC]: Identifies entitlements related to SAP Gateway Services
0 Kudos
Copyright © 2024 Khoros, LLC