Hi All,
We are using GRC 10 for our project. I can understand that end users will access NWBC link for raising GRC requests. We are using LDAP for authentication purpose.
To activate end user logon - Authentication LDAP/SAP HR/SAP ECC whatever it may be. I provide end users NWBC link and they should login to NWBC without entering any credentials and they should be authenticated by authentication data source.
Assume that i have activated end user logon for all the services related to end user logon in SICF and guest user GRCLOGIN [with SAP_ALL access] is configured in each of the 10 services in SICF for the EU Logon Pages to work. This GRCLOGIN user will be a system or communication user.
Now my doubts are:
1. If i give SAP_ALL to my system user and maintain it in all services, Will that enable all end users to get access to all the links in NWBC?
2. I want end users to access only few work centres and links in NWBC, If i authenticate them in the process mentioned above, how do i control the links that should be visible to them. Do i need to assign those corresponding roles to my system/Communication UserId?
3. If i have enabled end user logon and authentication is LDAP, can my users login to NWBC with LDAP userID and Password?
4. Whatever way i authenticate my users, once they login to NWBC, the links they will see ... will they be the same for all users if i use a guest Id to configure all services?
Basically my requirement was:
1. Authenticate users via LDAP [Users should be able to login to NWBC using LDAP credentials]
2. All users should be able to see the same workcenters and links. This i need to restrict by assigning the corresponding roles to the System/Communication user which i use to configure the SICF end user logon services.
P.S: Though some points are basic, I just want to confirm on these to have better understanding from end user point of view.
Regards,
Sai