We are implementing SAP GRC integration in SailPoint IdentityIQ using the legacy Risk Analysis integration module, based on client requirements.
The client’s primary use case for SAP GRC is SoD (Segregation of Duties) checks, but they also want to manage Firefighter access through the same integration.
While reviewing SailPoint Compass discussions, I found references indicating that the SAP GRC connector was enhanced in IIQ 8.4p3 and later to support Firefighter ID management in addition to Risk Analysis capabilities.
I would like clarification on the following points:
-
Can the SAP GRC connector support both:
-
Risk Analysis (SoD checks), and
-
Firefighter access management
simultaneously within the same implementation?
-
-
Is Firefighter functionality supported when using the legacy Risk Analysis integration mode, or does it require a different integration approach/module?
-
Are there any prerequisites, configuration changes, or specific SAP GRC versions required to enable Firefighter management in IIQ 8.4p3+?
-
Has anyone implemented this successfully in a production environment? If yes, are there any limitations or best practices to be aware of?
Any guidance or documentation references would be appreciated.
