Create new portal-user with webservice

Similar Messages

• Create a portal user with a specific Organizational Unit in the OID??

  I would like to split my portal users by Organizational Units in the OID.
  e.g.:
  ou=country1, cn=user1
  ou=country1, cn=user2
  ou=country2, cn=user3
  is it possible?
  is it possible trough the administer tab of Portal?
  Any experience ?
  feedback??
  Thanks
  Didier

  I think it is feasible.
  But not through Administer tab.
  Use your own api to add users (DBMS_LDAP.add_s + WWSEC_API.add_portal_user)
  cn=user1, ou=country1, cn=user_search_base
  cn=user2, ou=country2, cn=user_search_base
  or maybe try to change dynamically user_create_base, I don't know if it is possible or not

• New Portal User options are disabled when trying to create a new User

  Hi All,
  I am trying to create a new portal user profile using the administrator login. While doing that, I am getting all the options ( used to create the new user ) as disabled. Can anybody let me know the reason & solution of such a problem.
  or
  Anyone can provide me the document on how to create the new profile on portal. Thanks.
  Best Regards,
  Chander Kararia
  Edited by: Chander Kararia on Jan 15, 2009 7:26 AM

  Hi Chander,
  I just want to know if you are able to modify the attributes of an existing user. If not then you have been assigned the User Admin role (read only). Please check that. If yes then revert.
  Regards.
  Rajat

• Mapping between multiple portal user with single R/3 user

  Hi,
      It is possible to map  multiple portal user to the single R/3 user? If yes, than what is procedure to achieve it? It is possible to logon same time more than one portal user which is mapped with same R/3 user in production system?
  Thanks,
  Kundan

  you can always do that using user mapping in user admin->identity management
  where for each user details you get a tab  called user mapping.
  you have to create a R3 system in system admin and a give a system alias to it
  Use this system alias in user mapping /
  You can map multiple portal users with a single R3 user and can work parallelly.
  But make sure that you have proper license in doing that.
  Raghu

• Unbale to create new document part with same document number

  Number range assigned to the X Document Type is internal. I have created new document (0001) with Document Part 000 & Version 00. For same Document Number when i tried to create New Document part by mentioning Document Numner 0001, Document Part 001 and Version 00, it says Document Type X can be assigned to internal number range only.
  Even I tried with following selection....
  Document Number = Blank
  Document Part = 001
  Document Version = 00
  Template:
  Document = 0001
  Document Part = 000
  Document Version = 00
  Now system is creating document with new number i.e. 0002.  But we want to create another document part with same Document Number. What is the problem with internal number range for Document Number?

  Hi Pradeep,
  Following are the config parameter of the document type.
  CM Relevnce = blank
  Number assignmt= 01
  Internal Number Range =02
  External Number Range= blank
  Number Exit =MCDOKZNR
  Vers. No. Incr. =0
  Version Sequence = blank
  AlternativeScreen = blank
  Let me know if you need anything more.
  Edited by: JJSingh76 on Dec 7, 2010 7:25 PM

• CUA - Creating a test user with profile

  Hi All,
         I just set up the CUA in our newly installed solution manager which is the central system and another sandbox system with three  clients as the child systems.
  I referred to the follwoing for the setup:
  http://help.sap.com/saphelp_nw2004s/helpdata/en/cc/50b43be7492354e10000000a114084/frameset.htm
  One of the tests for checking the setup is to create a test user with profiles in the central system and distribute it to the child systems. I did the text comparision and saved the user; i still cannot see the user in the child systems.
  I checked SCUL and BD87. SCUL shows me grey. BD87 do not show any IDOC that were transferred.
  Could anyone help/direct me in fixing this.
  Thanks
  Shabna

  Hi,
      To make the test simpler I tried it again sending the test user to only one of the child systems. The RFCs between the systems are working fine. I checked /BD64, it shows the whole set up.
  When I check /BD87 of the central system I see the following error:
  "Could not find code page for receiveing system".
  Diagnosis
  For the logical destination XXXCLNTXXX, you want to determine the code page in which the data is sent with RFC. However, this is not currently possible, and the IDoc cannot yet be dispatched.
  Procedure for System Administration
  Possible causes are:
  1. The entry no longer exists in the table of logical destinations.
  2. The target system could not be accessed.
  3. The logon language is not installed in the target system.
  I can see the central system as well as the child systems in the logical systems table. And the RFC destination does note shown any errors in the connection as well as authorization test. What else do I check?
  Thanks
  Shabna

• Create multiple portal instances with only one database?

  Can someone create multiple portal instances with only one database?
  If so, how is this done, just by running the portal configuration wizard?
  How are most people running with multiple developers working on portal? Do they share a portal instance, or create their own?
  Thank you very much!
  Phillip

  i'm currently using 9ias rel 2(9.0.2) and i have install one infrastructure and two mid tier, hoping that this will create two portal, but it didn't. Can you please tell me how to do create two portal within one server.
  thanks and regards;
  andrew

• UWL launchInNewWindow open every time a new portal page with header

  Dear all,
  since SPS 16 of EP7 the UWL actions open allways an new portal window with header.
  In the xml configuration there is set
  launchInNewWindow="yes" but no value ="portal" is set so why open the uwl the complete window with header.
  Does anyone know a value to set no header, i found a value
  launchInNewWindow="SHOW_HEADERLESS_PORTAL"
  but this one didn't works for normal items with transaction launcher it seems to be for webdynpros.
  The action viewDetail open a new portal window in the same way.
  Best regards
  Thorsten

  hi,
  i guess... tht could b problem with WorkBound property mode property...b'coz normally whenver an application open in new window we set workbound property to 2 from it's default value 1.
  i don't know exactly where it is, but it is somewhere in
  System Administration -->System Configuration -->Services.
  Hope this helps you!!!
  regards,
  Jigar Oza

• Creating portal users with owner privileges?

  Hello,
  I need to let local adminstrators create users in the portal.
  This is based on instance-specific privileges, not global.
  Setting them to 'owners' of the group in the portal should let them add users.
  Once created and I log in as one of them I do not have the privileges of being an
  'owner', eventhough it's visible in the portal that I am an owner.
  Anybody?
  /

  Hi,
  To make the problem a little clearer.
  I want to have "local adminstrators" that can manage portal users i.e; delete, insert and update portal users.
  However I do not want these "local administrators" to be "Full administrators"- too dangerous.
  The "local adminstrators" should belong to the same group as the users they are set to administer. The
  only difference between a "local administrator" and a user of a group is that the "local administrator" have privileges
  to manage the other users of the group. If I have understood the concept right an owner have these privileges.
  I made them owners of the group, but this did not enable them to manage users.
  This must be a rather common approach, to have some users being able to administer other users without being a fullfledge DBA.
  Right now I'm looking into mapping them(the local administrators) to a different database schema with rights to manage users.
  I realize that to map them to another schema, then the checkbox "Use this schema for Portal Users" have to be checked when creating the
  schema. How do I check if this was checked and if it wasn't checked can I alter it now?
  Another thought is to dynamically upon meeting certain conditions making them Full Administrators, then after finishing the task
  reinstating them as normal users.. but this.. well hmm
  Thanks.
  /

• WGM creates new home folders with _unknown user/group, SA can't change it

  A little background:
  In our school we've got an xserve (about 1.5 yrs old), that was having issues last year. (the OD database pretty much ate itself). in august we did a clean install of 10.5, and updated to 10.5.3 (after suffering through the AFP/OD issues in 10.5.2). Because of the corrupt database from the last server, and the fact that a large number of our accounts have migrated through 4-5 iterations of servers from 9.2 on through 10.4.11, we created all new clean accounts by hand in WGM and moved the user files to the new home folders, changed user and permissions with SA to the new accounts and propogated that info to all the files for each home folder. everything has been going fine since then.
  until this week.
  the issue was discovered when we tried to create a new staff account (we created several accounts last week with no issue). in WGM everything looked fine. it created the account, assigned it to the proper group, and sucessfully created a home folder. the problem however was when we went into SA to change the permissions. we don't need everybody seeing everyone else's files, so we change the default group and everyone permissions to something more appropriate (don't even get me started on that gripe). When you navigate to the new home folder you just created in WGM, it shows the owner as _unknown (read/write) and group _unknown (read only... I think), Everyone (read only). Server Admin refuses to change the user or group. doesn't matter whether you use the 'show users/group' dialog and drag the account, or whether you edit it manually and insert the short name or UID. when you hit save, it stubbornly reverts back to unknown/unknown for user and group. we've tried creating accounts with different templates, no template, different account names and UID's, all with the same result.
  The odd part is that nothing in the OS has changed since we first set it up and created all the users. nothing installed, nothing updated...
  We've stayed at 10.5.3 due to the disaster in one of the updates (10.5.5 I think) that many of our other local districts had with network accounts not being able to see their own library folders due to permission issues, as well as the AFP causing 100% CPU use bug reported with 10.5.5
  A second, probably related issue is that when browsing home folders in Server Admin filesharing, any files our network users create seem to end up assignedunknown/unknown for user and group (as far back as October it seems). After searching around the net most of the day I came across a lot of info about the _unknown user issues for folks upgrading from 10.4, but these are all newly created 10.5 network users (not local) logging in and working in home folders on the server. The original owners can read/write/delete these files as normal.
  Any help would be most appreciated.

  ok... I find we were shot in the foot by one of our own.
  The quick answer: DO A GET INFO ON THE VOLUME WITH THE SHAREPOINTS! if the 'ignore permissions on this volume' box is checked... UNCHECK IT!
  Explaination: not sure how the ignore permissions box got checked, but I don't think it was done directly by human hands. we use Carbon Copy Cloner Ver. 3.something (not sure which at this point) to back up both our data (daily) and server (weekly) drives to remote storage. by striking coincidence, things started saving with _unknown user and group about the same time as crash reporter shows that CCC hosed itself. My guess is that CCC temporarily ignores permissions (as shown in the status when you do a clone) and then resets them to their original state. when it crashed, it looks like they were still set to ignore, so it happily set it back to that state every time it ran after that. not sure why the account creation issue suddenly turned up after so long... In any event, it turns out that if you have sharepoints on a server volume, AND you set the OS to ignore permissions on that volume, BAD things happen (I'm not sure it should even be an option on a shared volume, but that's for the engineering folks to figure out.) .... specifically, the symptoms above. if you login as root (yeah, I know that's something you should never do) and uncheck the ignore permissions box on the volume, then log into WGM, as root (yeah, yeah, I know... even worse) and set ALL of the Directory Administrator accounts to 'do not administer this server', and no change rights for the directory, save those settings, and then set them back to 'administer this server', and FULL rights to change the open directory, save again. and then WAIT until the drives stop going nuts... after that everything works fine.

• V7: How to create new authlessanonymous users

  in v7, I can no longer go into the desktop settings and setup the authless user (as stated in the v6.x documentation), so how can I do this?
  Obviously is can be done from the new samples installed by default.
  I've tried going into the new Org, creating a "newauthlessanonymous" with the password of "authlessanonymous" and last name of default (just like the default installed ones and how I would have done it in v6.x), but that doesn't seem to work.
  When I try to access the URL, it goes into an endless loop between ACM, IdM, and Portal redirecting back and forth.

  Try the following:
  Log in to the Portal Console (psconsole) as administrator
  Click on the Portals tab, then click on the name of the portal you want (i.e. portal1)
  Change the DN to TopLevel [Global] using the dropdown list at the top of the page.
  Scroll down to the table at the bottom of the page and add the new authless user,
  click the checkbox next to the new row and click the Set as Default button
  (if you want this to be the default, that is). Then click the Save button.
  You will probably have to restart your web container.
  Hope this helps...
  -jeff

• Creating new VM ends with Error code 3430 and 3040 in Hyper-V log. Does anyone have any insight into what might cause this?

  The new VM is being created via a P2V process run from SCVVM. It reaches a completion of 60% and dies. I asked about this in another question detail of the VVM can be seen at this link:
  http://social.technet.microsoft.com/Forums/en-US/virtualmachinemgrp2vv2v/thread/71aae7dc-13b5-46f1-b794-cc1b8085541f
  Running Win2008 R2 w/ Hyper-V role enabled & SCVVM 2008R2
  In any event I checked the Hyper-V logs to see if they might shead any light on the problem and there were two error messages associated with the attempted conversion. The first Event ID 3430
  Log Name:      Microsoft-Windows-Hyper-V-Worker-Admin
  Source:        Microsoft-Windows-Hyper-V-Worker
  Date:          5/23/2011 4:51:25 PM
  Event ID:      3430
  Task Category: None
  Level:         Error
  Keywords:     
  User:          NETWORK SERVICE
  Computer:      Virtual-Mgt.amrinc-corp.local
  Description:
  'test1' failed to set/change partition property: The system cannot find message text for message number 0xtest1 in the message file for 18568CA2-82E9-4A9F-B462-701D8FB4C447. '0x8007013D'.
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Microsoft-Windows-Hyper-V-Worker" Guid="{51DDFA29-D5C8-4803-BE4B-2ECB715570FE}" />
      <EventID>3430</EventID>
      <Version>0</Version>
      <Level>2</Level>
      <Task>0</Task>
      <Opcode>0</Opcode>
      <Keywords>0x8000000000000000</Keywords>
      <TimeCreated SystemTime="2011-05-23T21:51:25.956775200Z" />
      <EventRecordID>1</EventRecordID>
      <Correlation />
      <Execution ProcessID="3316" ThreadID="2716" />
      <Channel>Microsoft-Windows-Hyper-V-Worker-Admin</Channel>
      <Computer>Virtual-Mgt.amrinc-corp.local</Computer>
      <Security UserID="S-1-5-20" />
    </System>
    <UserData>
      <VmlEventLog xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://www.microsoft.com/Windows/Virtualization/Events">
        <VmName>test1</VmName>
        <VmId>18568CA2-82E9-4A9F-B462-701D8FB4C447</VmId>
        <ErrorCodeString>%%2147942717</ErrorCodeString>
        <ErrorCode>0x8007013D</ErrorCode>
      </VmlEventLog>
    </UserData>
  </Event>
  And the second Event ID 3040
  Log Name:      Microsoft-Windows-Hyper-V-Worker-Admin
  Source:        Microsoft-Windows-Hyper-V-Worker
  Date:          5/23/2011 4:51:25 PM
  Event ID:      3040
  Task Category: None
  Level:         Error
  Keywords:     
  User:          NETWORK SERVICE
  Computer:      Virtual-Mgt.amrinc-corp.local
  Description:
  'test1' could not initialize. (Virtual machine ID 18568CA2-82E9-4A9F-B462-701D8FB4C447)
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Microsoft-Windows-Hyper-V-Worker" Guid="{51DDFA29-D5C8-4803-BE4B-2ECB715570FE}" />
      <EventID>3040</EventID>
      <Version>0</Version>
      <Level>2</Level>
      <Task>0</Task>
      <Opcode>0</Opcode>
      <Keywords>0x8000000000000000</Keywords>
      <TimeCreated SystemTime="2011-05-23T21:51:25.956775200Z" />
      <EventRecordID>2</EventRecordID>
      <Correlation />
      <Execution ProcessID="3316" ThreadID="2716" />
      <Channel>Microsoft-Windows-Hyper-V-Worker-Admin</Channel>
      <Computer>Virtual-Mgt.amrinc-corp.local</Computer>
      <Security UserID="S-1-5-20" />
    </System>
    <UserData>
      <VmInitialize xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://www.microsoft.com/Windows/Virtualization/Events">
        <VmName>test1</VmName>
        <VmId>18568CA2-82E9-4A9F-B462-701D8FB4C447</VmId>
      </VmInitialize>
    </UserData>
  </Event>
  I have blownout the server and reinstalled the operating system and SCVVM and applied all the current updates to no avail. I have the exact same issue again. The problem seem to be at least on the serface an authority problem because I have no problem creating
  new VM via the P2V process on an old Virtual Server running on Win2003R2.
  Oh yes I can create new virtual machines on the system in question and move them to the library as was suggested to verify in a Blog post so I am really wondering what the problem is?
  Configuration Analyzer Just gave me a warning about reporting not being setup on the VVM which it isn't so no suprise there?
  Any information that might help me figure this would be greatly appreciated

  I've looked at both threads, and there simply isn't enough information for me to tell you what is wrong.  Please collect a trace (instructions in General forum) and open a case with CSS.  CSS can provide more in depth analysis than what a forum
  post allows. 
  As a shot in the dark, I have seen the issue outlined in the following KB article cause this exact same error message and symptom,
  http://support.microsoft.com/kb/967902
  Best Regards, Mike Briggs [MSFT] -- posting provided "AS IS" with no warranties and confers no rights

• Synchronize portal users with R/3 automatically

  I am trying to find out more about how the portal will automatically create an user and assign it its relavent roles once the user has been created in R/3. I understand this is possible with ECC6? i have searched but cant seem to find what i am looking for.
  Any links/advice with be much appreciated.

  Hi,
  You can use the ABAP server as the data store for portal users. So all the user ids, roles & groups in the ERP system is available in portal.
  Please check the following link & sublinks for detail info.
  http://help.sap.com/saphelp_nw70/helpdata/en/49/9dd53f779c4e21e10000000a1550b0/frameset.htm
  Regards,
  Abhishek

• Creating active directory users with dscl

  Our mac workstations (OSX 10.8) are bound to a 2008 Active Directory server.  We are attempting to use some existing dscl scripts on the mac client computer to create Active directory users.  We can successfully read and change AD attributes of an existing user with dscl, but creating new users or new attributes for an existing user gives us an error.  Here are some examples.
  SUCCESSFUL READ OF AD USER ATTRIBUTE:
  root# dscl -u administrator  "/Active Directory/CXAD/All Domains" -read /Users/jholmes SMBHomeDrive
  Password:
  SMBHomeDrive: H:
  root#
  SUCCESSFUL DELETE OF ABOVE USER ATTRIBUTE
  root# dscl -u administrator  "/Active Directory/CXAD/All Domains" -delete /Users/jholmes SMBHomeDrive
  Password:
  root#
  FAILED ATTEMPT AT RE-CREATING THE DELETED ATTRIBUTE
  root# dscl -u administrator "/Active Directory/CXAD/All Domains" -create /Users/jholmes SMBHomeDrive
  Password:
  <main> attribute status: eDSInvalidRecordType
  <dscl_cmd> DS Error: -14130 (eDSInvalidRecordType)
  root#
  The same error occurs when attempting to create a new user.  Any ideas?  Thanks in advance for any suggestions.

  In the end I could not find them; account info is ONLY stored locally in Open Directory when they have mobile accounts.
  However, I found I could migrate their user directories in Terminal via ditto ( I connected the old macs via Firewire Target mode) , and when they log in all their stuff and settings are there.
  the command is: ditto /Volumes/<old mac hard drive>/Users/<username> /Users/<username>

• Creating NEW CLIENT,USER and PASSWORD Please

  Hi ..
  I am having this problem ,I am from SD-module. I am trying to work with sending and receiving IDOC's . Here i have problem with creating another logical system.could u please assist me in creating another client/user/password on my existed system.so that i can be able to send an idoc from one logical system to another logical system.i would appreciate your efforts.
  regards,
  SURIYA.

  Hi
  You can create a client using transaction code SCC4. Then you need to perform a client copy, use transcation SCCL to perform a local client copy from client 000 using SAP_ALL/SAP_CUST profile.
  Once you are done with you need to check whether the parameter login/no_automatic_user_sapstar is set to false (0). This can be achived in transaction code RZ10. You will have to restart the SAP server if the parameter value is altered(if not already 0).
  Once the parameter is set then u can login to the client using user SAP* and password "pass". For performing client copy u will log into the destination client that is the client newly created and using SCCL perform the client copy.
  Using BD54 u can create a logical system and in transaction SCC4 you can assign this logical system to the new client.
  Once you are done with client copy then DDIC user will also be there with the master password given during installation time.
  Using transaction SU01 you can create new users according to ur need and assign the roles/profiles as required.
  Once this is done you can peform the IDOC sending and recieveing activity in between those clients.
  If any more queries feel free to ask.
  Regards
  Sumit Jain
  [reward with points if the answer is useful]