The following sections provide information about how the SAP GRC Access Control driver supports standard driver features:
The SAP GRC Access Control driver can be installed on the same operating systems supported by the Metadirectory server. For information, see Metadirectory Server
in System Requirements
in the Identity Manager 3.6.1 Installation Guide.
If you don’t want to install the Metadirectory engine and Identity Vault (eDirectory™) on the SAP server, you can use the Remote Loader service to run the driver on the SAP server, and have the Metadirectory engine and Identity Vault on another server.
The SAP GRC Access Control driver can be installed on the same operating systems supported by the Remote Loader. For information, see Remote Loader
in System Requirements
in the Identity Manager 3.6.1 Installation Guide.
Entitlements are a way to set up a list of criteria to grant or revoke access to resources. The SAP GRC Access Control driver contains two preconfigured entitlements: user account and role. There is no configuration required to enable these entitlements. The SAP GRC Access Control driver must use these entitlements to provision accounts.
The SAP GRC Access Control driver does not support password synchronization.
The Account Tracking feature is not supported with the SAP GRC Access Control driver.
The SAP GRC Access Control driver can be configured to work with the Identity Manager Role Mapping Administrator, which is a tool that allows you to map business roles to IT roles. The Role Mapping Administrator is included with the Novell® Compliance Management Platform Extension for SAP Environments. For more information, see the Identity Manager Role Mapping Administrator 1.0 Installation and Configuration Guide.