Hello Kashif,
For your Issue no:2, Check the following steps which are in bold. Might help you out.
Steps to be taken to check the Roles Availability for provisioning
1. Role has to exist in the Backend System
2. Role sync job has to be performed
3. Import roles in to BRM. Note: Role Authorization Source can be skipped if you do not want to maintain authorizations in BRM and just want to use roles for provisioning purposes only.
- Maintain the PRODUCTION status, and in order to do that
Go to IMG => Governance Risk and Compliance => Access control => Role Management => Maintain Role Status
- Make sure to check the PRODUCTION STATUS checkbox for the status (Recommended is PRD, but DEV and TST can be checked as production status based on the testing environment.)
4. Based on PRODUCTION STATUS settings configured in step 3, make sure each role status is set accordingly
- Go to Access Management => Role Management => Role Maintenance
- Search and Open the role , click on Additional Tab and then select Provisioning
- Make sure that the Role Status is set to Production or other status based on the settings performed in steps 3
5. Provisioning Allowed flag should be set to “Yes” for that system
6. Role Validity Period on the system should be current (valid) or should not be maintained
- To change the Validity period or Update it. Select the system, Click on "Set Default Period" button
- Change or update your Validity period
7. Make sure PROV scenario has been maintained for the system
Regards,
Rakesh Ram M
P.S: Since there are two issues, I suggest you to open two discussion threads so that anyone facing similar issue might directly open that specific discussion thread.