LDAP configuration for HR Portal in dual stack EHP4 - Best Practice

Similar Messages

• LDAP Configuration for ECC 6.0 ( ABAP Stack only)

  Hi,
  Can any one guide me with the steps for the LDAP Configuration for ECC 6.0 ( Abap stack only).
  Some of my observations are....
  I can see the LDAP Support in the Installation master at the following path.
  1. Additional Software Life cycle Tasks --> Application Server --> LDAP Support.
  But the prerequisites for this task is given as "You must have extended the LDAP schema for the sap data types before.".
  When i am goint thru service market place i came across the following note.
  Note 888848 - Notes on schema enhancement with RSLDAPSCHEMAEXT.
  Thanks,
  Tanuj

  Dear All,
  We are trying to configure the LDAP using with active directory .  In the
  step of "Synchronization of SAP User Administration with LDAP
  Directory"when executing the report"RSLDAPSYNC_USER" we are facing one
  error.
  Please find the trace file and error screenshot in the attachment.Please help us on
  priority.
  Please find the Trace log in the below:
  RFC destination : LDAP_LDAPSE-01
  Tracelevel      :      8,704
  F5: Shutdown F6: Clear list F7: Dump status F8: Refresh list
  [Wed Jun 26 11:15:38 2013]
  Slot 0 (WIPROTECH): >>> ldap_initU(host="abg-mumabc-dc1.abgplanet.abg.com", port=389)
  [Wed Jun 26 11:15:39 2013]
  Slot 0 (WIPROTECH): <<< ldap_initU() == <NOT NULL> := connected
  Slot 0 (WIPROTECH): >>> ldap_set_option(version=3)
  Slot 0 (WIPROTECH): <<< ldap_set_option() == 0
  Slot 0 (WIPROTECH): >>> ldap_simple_bind_sU(dn="poornataad", password: not initial)
  [Wed Jun 26 11:15:40 2013]
  Slot 0 (WIPROTECH): <<< ldap_simple_bind_sU() == 0 := success
  [Wed Jun 26 11:15:43 2013]
  >>>>Required attributes table
  Line    0: "CREATETIMESTAMP" (length 15)
  Line    1: "MODIFYTIMESTAMP" (length 15)
  Line    2: "SAPUSERNAME" (length 11)
  <<<<Required attributes table
  Slot 0 (WIPROTECH): >>> ldap_search_sU(base="CN=poornataad,CN=Users,DN=abgplanet,DC=abg,DC=com", filter="(&(OBJECTCLASS=user)(SAPUSERNAME=*))", scope=2)
  Slot 0 (WIPROTECH): <<< ldap_search_sU() == 91
  >>> ldap_msgfree()
  <<< ldap_msgfree()
  Slot 0 (WIPROTECH): >>> ldap_unbind_s()
  Slot 0 (WIPROTECH): <<< ldap_unbind_s() == 0
  Please find the error screenshot in the below.
  Regards,
  Dilip Sampath.CH
  +91-9619735957.

• Want to delete all the mails in the mail box configured for BPM Portal

  Hi All,
  Do you have idea to perform this activity.
  I want to delete all the mails in the Dev mail box configured for BPM Portal.
  Server and mailbox details as given below :
  Mail a/c = Y00123
  Mail server = sap.mail.com
  Thanks, Sanjay

  http://java.sun.com/developer/onlineTraining/JavaMail/contents.html
  http://www.jguru.com/faq/view.jsp?EID=17035
  if you know the password of the account, i think you can also access the mail using mail client, like you use outlook to deal with your company mail daily.

• NWDS for PI 7.4 Dual stack

  Dear All
  I am on SAP PI 7.4 dual stack which NWDS version should i use because i tried with both NWDS 7.3 and NWDS 7.31 also
  NWDS 7.3 its not connecting at all it says improper configuration
  NWDS 7.31 connected to ESR and but ID it says only for single stack.
  Can you please help
  Regards
  Sandeep

  Hi,
  There is no dedicated NWDS 7.40, the NWDS 7.31 is also to be used for NW 7.40 (see also the note 1791485).
  For NW server 7.40 SP<X> one has to use NWDS 7.31 SP<X+5>.
  Best Regards,
  Ervin

• Configurations for extracting portal activity data from netweaver portal.

  Hi,
  I need to fetch  the portal activity data from the portal into Solution Manager. I would like to know the configurations on the portal that will be needed in order to extract the portal actvity data . How will i proceed extracting the portal activity data?
  thanks and regards,
  Divya.

  Hi Divya,
  We can not say that Early Watch Alerts is same as the  the portal activity report.
  Its a diagnosis service, for the solution monitoring of SAP and non-SAP systems
  in the SAP Solution Manager. Its gives you the complete details of your System.
  If we talk about Portal then you can get the details like :
  1. Java Heap details
  2. Memory Uses
  3.Portal Objects access details (Like Activity report )
  4.Server Nodes details
     and many more things.................
  The Underlying concept is to ensure smooth operation of individual SAP Systems
  by keeping you informed of their status and allowing you to take action,
  before severe technical problem occurs.
  Check the below link for ewa:
  [SAP EarlyWatch Alert overview|http://www.mediafire.com/?gilijcnnwet]
  [SAP EarlyWatch Alert|http://help.sap.com/saphelp_sm40/helpdata/en/87/50cce344ae495bae240add66a28ed7/content.htm]
  [Using SAP EarlyWatch Alert|http://help.sap.com/saphelp_sm40/helpdata/en/5a/b27f17edb04a6882c59f6619a267b9/content.htm]
  Regards,
  Piyush

• List of activities for setting up ERP 6.0 with Best Practices

  Based on my understand if i were to plan for setting up an ERP 6.0 Landscape with Best Practices (Full Scope) i would consider the execution of following activities:
  Prepare EHP4 Landscape
  Install ERP 6.0 on DEV
  Upgrade DEV to EHP4 SP06
  Install SAP Best Practices v1.604
  Activate Full Scope of Best Practices on DEV
  Prepare QA (System Copy - DEV with BP Activated)
  Prepare PRD (System Copy - DEV with BP Activated)
  Register Landscape in Solution Manager
  Customization on EHP4
  Customize Best Practices Scenarios on DEV
  Transport Changes to QA
  Test Changes  on QA
  Transport Changes to PRD
  Upgrade to EHP5
  Upgrade DEV, QA and PRD to EHP5
  Install HCM Localization on DEV, QA and PRD
  Customization on EHP5
  Customize HCM Best Practices Scenarios on DEV
  Transport Changes to QA
  Test Changes  on QA
  Transport Changes to PRD
  Please advise if there is anything missing or incorrect.
  Thanks.

  Hi,
          I'm on a project with similar requirements. I follow this order in steps that you describe:
  Install ERP 6.0 on DEV
  Upgrade DEV to EHP4 SP06
  Install SAP Best Practices v1.604 on DEV
  Install QA
  Install SAP Best Practices v1.604 on QUA
  Install PRD
  Install SAP Best Practices v1.604 on PRD
  Activate Full Scope of Best Practices on DEV
  Register Landscape in Solution Manager
  Upgrade DEV, QA and PRD to EHP5
  Install HCM Localization on DEV, QA and PRD
  Customize Best Practices Scenarios on DEV
  Transport Changes to QA
  Test Changes  on QA
  Transport Changes to PRD
  I hope that this will be useful for you
  Best regards.
  Alejandro Cepeda.

• OID LDAP configurations for OIM

  Hi All
  I switched OID instances for OIM but still OIM still looking at the old OID instance although I updated the Directory Server under the IT resources
  Do I need to change any other configuration to reflect the new OID instance ?
  Thanks

  I exported oim-config.xml but I can't find an XML element for LDAP . only an element for Database called directDB
  Did I miss anything here ?
  Thanks
  Edited by: 599647 on Mar 3, 2012 5:02 PM

• UWL configuration for Federated Portals logging errors in defaultTrace

  Hi everyone,
  I've just finished configuring UWL for Guided Procedures on federated portals using the help provided in the links below:
  [https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/904ca240-63bc-2a10-1c98-de81b6a045bf|https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/904ca240-63bc-2a10-1c98-de81b6a045bf]
  [http://help.sap.com/saphelp_nw70/helpdata/EN/43/ef06a7860c7061e10000000a1553f6/content.htm|http://help.sap.com/saphelp_nw70/helpdata/EN/43/ef06a7860c7061e10000000a1553f6/content.htm]
  Everything is running very well except for the fact that exceptions for the GPsystem I created are showing up in the defaultTrace log. The message repeats itself several times:
  03/12/2009 , 15:56:12:234 , GPsystem    | ACCESS.ERROR        | null     |           | Permission=(com.sap.caf.eu.gp.model.permission.GPPermission GP.GET.WORKITEMS) , Error , /System/Security/Audit , com.sap.security.core.util.SecurityAudit , sap.com/cafeugpmodeleap , GPsystem
  These log traces repeat themselves so many times that they seem to be causing an unnecessary load on the system. Other that that, both the Guided Procedure and UWL are working perfectly. Does anyone have any idea as to why this might be happening?
  Thank you very much,
  Luis

  Hi
  UWL Configuration is not  proper so only this happening.
  Refer the [Link1|https://wiki.sdn.sap.com/wiki/x/IwBbAQ ] [Link2|https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/a3461636-0301-0010-3787-978f5ac8bd45] [Link3|http://help.sap.com/saphelp_nwce10/helpdata/en/05/fe8ef669674991a4205666694b9c85/content.htm] .
  Regards,
  Surjith

• The LDAP configuration for Oracle Service Registry 11g(OSR 11.1.1.2.0)

  Hi All,
  Please teach about user management in Oracle Service Registry(OSR).
  We want to manage all users in LDAP(OID).
  Questions
  Q1) How can we manage the user in OID?
  Q2) OSR default user(admin) will not be displayed on the security realm in WebLogic.
  Can we configure security realm in WebLogic?
  Regards & Thanks
  yoshida.

  Refer to this doc http://download.oracle.com/otndocs/tech/soa/OSR103ProductDocumention.pdf
  Section 6. External Accounts Integration

• How to plan for size of Flashback Recovery Area? Best Practices?

  Hello all,
  I've set up a 5 node RAC cluster, setting up ASM diskgroups for data, and one for FRA. (11Gr2 on RHEL5)
  I'm wondering if there are any rules of thumb or guides to know how large to make your FRA? This FRA disk group will serve as the FRA storage area for about 4-5 instances.
  What is a good way to figure how much storage I'll need to allocate to each instance...for say a 5 day retention window for each instance via RMAN?
  Thanks in advance for any advice and/or links,
  cayenne

  Philippe Florent wrote:
  Difficult to answer. You want to have a "real" FRA with the archivelog files, the rman backups right ?
  Do you want your backupsets to be compressed, do you want to backup as copy ? Do you want to use the flashback feature ? Do you know the total size of the archivelog files your instances will daily generate ?
  Best regards
  PhilThanks for the replies.
  Yes, I want to use the flashback feature. I wasn't planning to used compressed backupsets....I run hourly RMAN jobs to backup and remove archive logs....daily incremental rman jobs to do level=1 backups...and weekly rman jobs for level=0 incremental.
  Yes, I want to have a real FRA with archivelogs and use the rman backups.
  Not sure the total size of the archivelog files it will generate. Is there a way to check to see on an existing instance elsewhere what it uses for an example? Not sure how to tell how much is being generated...
  Right now, I've set aside about 230GB...as that these were all same sized disks on the ASM....so, starting with that, but I still have larger disks to add to this diskgroup if need be.
  Thank you in advance.
  cayenne

• CTS+ Configuration for Transporting non-ABAP objects in Portal Landscape using solution manage 7.1 sp8

  Hi,
  Currently we have cts+ already configured for our portal systems in our landscape through solution manager 7.0.
  Recently we had setup a new solution manager 7.1 and need to perform cts+ configuration using this new solution manager 7.1 as we are planning to remove our old solution manager 7.0 very soon.
  We are using NWDI system for transporting our portal transports.
  Please help me with steps on how to configure cts+ using solution manager 7.1 using NWDI.

  Hi Naveen,
  Please find given below BBPCRM & SAP_BW version..
  BBPCRM     500     0013     SAPKU50013     BBPCRM     BBP/CRM Supp. Pack.
  SAP_BW     701     0003     SAPKW70103     SAP Business Warehouse     Component Supp. Pkg.
  This problem is not only with  Bussiness process tab (T-Code: Solution_manage) also System monitoring Still i searching solution for this But once we are restarting System that time this problem is not occuring but after some time system is giving this DUMP
  Regards,
  Suresh

• Single stack vs. Dual Stack - Why does SAP recommend single stack?

  Hello SAP,
     I am a business partner who specializes in infrastructure consulting for SAP solutions.  The SAP Consultants I am working with recently have been recommending that customers install single stack systems.  I would like to know why? Are there problems with dual stack systems?  Is SAP changing things in a later release and they want customers to be prepared for the change?
    From an infrastucture point of view this recommendation combined with SAP NetWeaver architecture will result in an explosion of SID names which leads to an explosion of application server instances and DBMS instances and an explosion of installed servers.  I know it is possible to combine SIDs into a single DBMS using MCOD and to have multiple application servers in a single physical server, but there are issues with mulitple application server instances and MCOD use which make normal maintenance operations difficult.
    I think it would be much better for customers to install dual stack systems and simply adjust the SAP profile parameters to disable one stack or the other.  This way, you could still have 1 stack per application server instance and you would not be have to be creative with SAP SID names!!!  Creating a DBMS instance or installing an additional server is not a simple nor economical proposition.
  Regards,
  Zaz

     I am a business partner who specializes in infrastructure consulting for SAP solutions.  The SAP Consultants I am working with recently have been recommending that customers install single stack systems.  I would like to know why? Are there problems with dual stack systems?
  The problems are:
  - difficult to size and maintain - Java + ABAP will fight for resources (memory,CPU) and there´s not much one can do to tune if either ABAP or Java as dual stack instance on a single box is running nuts (for whatever reason).
  - System copies via R3load - if you want to copy a huge system (let´s say ERP 6.0 + Java stack) you need to use sapinst + R3load to do the copy. Imagine if the system is 1 TB or bigger, this is very time consuming
  - Upgrades are complicated - if you upgrade a dual stack system you need to run two PREPARES and two upgrades at the same time - there are sync points each upgrade wait for the other to finish --> difficult to plan in sense of runtimes and even more notes/preparation to do (a dual stack SolMan upgrade from 3.2 to 4.0 had almost 100 notes (technical!) and two upgrade preparation guides...)
  - interdependencies - example: you run ERP + EP + BI-Java on one system. You upgrade your BI (which is on a different box) to a new support package. Since the BI-Java need to be in sync with the BI ABAP support package you need to upgrade the EP too - and since there´s a direct dependency (doublestack system) you will need to install support packages on your ERP. So you finally end up in having dependency chains that a total different system (BI) will force you to upgrade/patch your ERP. And if you have e. g. a CRM connected to the same EP you will need to patch that too...
  Is SAP changing things in a later release and they want customers to be prepared for the change?
  No - the possibility of having a dual stack installation will be still there.
    From an infrastucture point of view this recommendation combined with SAP NetWeaver architecture will result in an explosion of SID names which leads to an explosion of application server instances and DBMS instances and an explosion of installed servers.  I know it is possible to combine SIDs into a single DBMS using MCOD and to have multiple application servers in a single physical server, but there are issues with mulitple application server instances and MCOD use which make normal maintenance operations difficult.
  I agree - MCOD is not a good solution for this problem.
    I think it would be much better for customers to install dual stack systems and simply adjust the SAP profile parameters to disable one stack or the other.  This way, you could still have 1 stack per application server instance and you would not be have to be creative with SAP SID names!!!  Creating a DBMS instance or installing an additional server is not a simple nor economical proposition.
  There are 36 * 36 * 36 (minus a few reserved) names for SIDs- this should be enough - also for the biggest customers
  Of course one could install both and disable the one you don´t need - but this won´t help in dependency thing. If you e. g. install a dual stack instance for CRM and disable the Java part, you can nicely run it. In case of an upgrade, you will need to upgrade the Java part too (see above) although you don´t use it. The upgrade will detect the doublestack and wait for the java instance to be upgraded too. Same is true vice versa. And believe me: you don´t want that
  In fact it is better to separate - that´s at least our experience. The main no-go for such a configuration on our side was the dependency thing. Since they are there and you can´t do much about them we decided to have a 1:1 relationship for ABAP backend and Java "frontend". You will get more instances (and names and databases) but you can patch applications independently from each other. So an implementation of a  BI patch won´t imply that you finally also patch your ERP production and other systems that connect to that portal.
  There are virtualization techniques available to not need more boxes, you can consolidate them on one machine as if you were installing a dual stack so that is not really an issue. This depends, of course, on the platform and database you use (e. g. Oracle does not support production installations in VMWare). We use for our Java instances Solaris on Opteron (or Intel 64bit) and zones/containers and for the ABAP part we use Linux + Xen. Both virtualization methods come with the OS (so no additional $$$) and both are supported by SAP.
  The propagated advantage of having a dual stack installation (shared memory access etc.) is so small that it doesn´t outban the additional complexity - which is definitely there.
  I hope those arguments will help to understand SAPs (and the consultants) position - get back if you want more
  Markus

• 6VPE and Dual Stack Core?

  Hi,
  I've been following this discussion on a MPLS migration to IPv6.
  https://supportforums.cisco.com/thread/2181573
  I have the following customer requirements:
  - Dual stack IPv4/IPv6 across the entire network including the core.
  - Run 6VPE between the PE routers
  Is it true to say that this is not a supported configuration? 6VPE only runs on a native IPv4 core?
  Thanks
  Sean

  6VPE is a tunneling technology to allow you to run IPv4 and IPv6 over an IPv4-only core and provide dual-stack at the customer edge.  The customer is blissfully unaware that there is anything other than dual-stack - or better described as IPv4 and IPv6 capabilities - at their demarcation.
  If you configure your entire core with dual-stack, there isn't really a need for 6VPE.  What you will need is a solution for LDPv6 or what is sometimes referred to as MPLSv6 (http://blogs.cisco.com/tag/ldpv6/).
  cheers.

• Patching dual stacks ABAP + JAVA simultaneously

  Hi,
  I would like to know if I can patch ABAP and JAVA on a dual stack system at the same time. According to the patching document I can run an SGEN when the JSPM is running but it does not tell me why I can not patch a dual stack system simultaneously. I have discovered that the JSPM restarts the dispatcher in order to update itself. After this initial step the ABAP stack should remain available providing the kernel has been manually updated.
  Does anyone have any advice on this?
  Thanks,
  James

  Hi,
  I had a similar case where I had to install a java stack for an already existing CRM system running on Windows/SQL Server.
  I installed a different SID for Java on the same host and I installed the Java database as a second database in the same SQL server engine.
  Therefore I shared the hardware resources but still had 2 separate stacks as best practice.
  Regards,
  Olivier

• CSS Setting for Oracle Portal

  Has anyone example css configuration for Oracle Portal ?

  The CSS does not have any specific Oracle Internet Directory (OID) Mibs or Oracle Portal , or directory Mibs per say. It does however comply to standard MIB II Mibs vendor extinctions to configure with SNMP.