8.3
While trying to provision new account for SAP GRC Application through access request I am getting below error
[ InvalidRequestException ] [ Possible suggestions ] Ensure that correct system name is provided. [ Error details ] Invalid request initiation system
I am passing firstname, lastname, userID , usertype, managerID and Email attribute through Create Provisioning Policy
Any lead would be appreciated.
Hi @asharma65
In the schema do you have system name mapping present ? Is sap team mentioning is this mandatory to be sent with a constant value during create account provisioning policy. Please check with sap team on the same.
Hello @vinnysail
System is present in schema, but it is not mandatory. If we are adding in provisioning plan it is creating line item for System which creates issue on SAP GRC side and if we are not passing value for sytem it is giving error as Invalid request initiation system
Hi @asharma65
The “Invalid request initiation system” error when provisioning SAP GRC accounts in IIQ 8.3 generally occurs because the required “System” attribute is not correctly passed in the provisioning request.
Please ensure the following:
Include the “System” attribute in your Create Provisioning Policy with the accurate system name recognized in SAP GRC. This system must be associated with the requested roles and usually the one with the highest priority.
Verify the SAP GRC application setup in IdentityIQ to confirm system priorities and role-system mappings are correctly configured.
Confirm provisioning workflows (SAP GRC Data Generator and SAP GRC Request Executor) are properly integrated and no modifications break the passing of the system attribute.
Check that the SAP GRC repository and role sync jobs have run successfully to keep system and role data up-to-date.
Passing only firstname, lastname, userID, usertype, managerID, and Email without the correct system will trigger this error.
For detailed reference on this attribute and workflow integration, please see:
https://documentation.sailpoint.com/connectors/identityiq/sap/grc/help/integrating_sap_grc/workflows.html
Hope this helps resolve the issue.
Issue was on SAP GRC application side and They fixed it by changing their API.