Link ECC roles to Portal roles (Portal is using LDAP source for UME)

Similar Messages

• My iphone is linked with my pc and i want to use my laptop for the icloud

  My iphone is linked with my pc but i want to use my laptop and connet via icloud HOW????

  is your pc you mentioned the same as your laptop?
  here's a link
  http://www.apple.com/icloud/setup/pc.html

• Multiple LDAP Sources for Portal

  Per the HELP docs and other forum suggestions, I uploaded a new XML file and called it multildap_datasource.xml
  After uploading, it does NOT appear in the drop-down list of files to pick? Am I missing something here?

  Hi,
  Check if you get any error message.
  also check in the configuration adapter to see if the file uploaded.

• Portal Roles added to the LDAP group is not showing up for users

  Hello expert,
  I have implemented SSO for Enterprise Portal and MS LDAP.  It is working fine but when I assigned roles to the LDAP group instead of UME group, they are not taking effect when I refresh the browser.  My service account that I set up in the keytab file is a read only account for the LDAP.  Is there some permission issue that I have to do to be able to add Portal roles or groups to LDAP groups?

  Hi,
  By default the LDAP integration configuration file is readonly.
  In this case, is not possible to modify data in LDAP.
  You must to connect in read-write mode; and I think that, furthermore, you need to configure SSL between Portal and LDAP in order to use read-write mode.
  regards,

• To get the Roles, Worksets, iviews assigned to portal user using webdynpro

  Hi..
  I need to display the roles, worksets, pages and iviews that are assigned to a particular portal user using WebDynpro.
  I tried to search in SDN and found a few blogs on this... but all are for DynPages. I could not find any inputs on how to achieve this in Webdynpro.
  I am listing down the blogs for your reference :
  1) /people/prakash.singh4/blog/2005/07/28/browse-roles-folders-pages-iviews-assigned-to-a-user-ep6-sp9-and-higher
  2) /people/prakash.singh4/blog/2005/09/06/create-a-sitemap-for-your-portal
  Please provide me your suggestions on how to display the roles, worksets, pages and iviews that are assigned to a particular portal user using WebDynpro.
  Thanks and Regards,
  Sayan Ghosh

  Please use following code to get all roles assigned to user:
       IWDClientUser wdUser = WDClientUser.forceLoggedInClientUser();
       IUser user = wdUser.getSAPUser();
       String strRoleID = "", strRoleDesc = "";
       IRoleFactory iRoleFactory;
       iRoleFactory = UMFactory.getRoleFactory();
       // Get All the Roles of the User
       Iterator iteratorRoles = user.getRoles(true);//prtRequest.getUser().getRoles(true);
       // Loop through all the Roles
       while(iteratorRoles.hasNext())
            strRoleID = iteratorRoles.next().toString();
            try
                 strRoleDesc = iRoleFactory.getRole(strRoleID).getDescription();
                 wdComponentAPI.getMessageManager().reportSuccess("Role: "+strRoleDesc);
            catch(Exception e)
                 wdComponentAPI.getMessageManager().reportException("Exception e: "+e, false);

• Accessing ECC system via portal

  Hello,
  We are in the process of implementing netweaver 2004s components for one of our client.  In the landscape we have ECC6.0, BI 7.0 and XI 7.0.  We are planning to use Enterprise Portal for the SSO activation.  Presently the client is having windows active directory. 
  My question is if I need to integrate ECC6.0 with the EP for the SSO, is there any portal development effort is required?.  How do we access the ECC from the portal.  For each ECC tcode do we need to create any iviews?   Kindly advice.
  Regards
  Sachin

  Hi Sachin,
  You can easily do that. Create you transaction iview using "Session_Manager" transaction. This transaction will bring the user on initial screen as he gets in ECC after logging. Due to this Iview he will be able to see the menu bar as in traditional ECC screen. So from there the user can navigate to other transactions as well for which the user is authorized.
  You can create the transaction ivews from portal following these steps:
  1) Logon to portal with Content Administrator Role.
  2) Select Content Administration> Portal Content. On Right Side Select Portal Content.
  3) Right Click Portal Content>new>iview. On right side select Iview Template out of three radio buttons. Click Next.
  4) Select SAP Transaction Iview from the list of Iview Templates.
  5) Provide Iview Name, ID properties.
  6) Select SAP GUI Type say "SAP GUI for HTML" for HTML.
  7) Here Select your System Alias name to which you want to connect, TCode need to be accessed. Click Next and then Finish.
      If your system is successfully created and running then you will be able to preview the iview.
  I hope the information provided will be very useful to you..
  Regards,
  Sumit

• SUS Add External Link to Role

  SRM SUS 7.0
  Change a role > Add new folder in the Role Menu > Press Add Other Object > Press Web address or file path
  I want to create a link to display to our users/vendors in the SUS portal, so I would assume that creating a new folder in the role menu of the SUS specific role would then appear on the portal as well.
  However, this is not happening - how do you add a link to the SUS portal then?

  Yes, regenerated it, made a user comparison etc. Nothing seems to change in the role menu of the portal? I can't even see the new folder I created...

• ESS: ECC 5 and Portal 7.0

  Hi!
  Righ now for the Employee and Manager Self Services Scenario we have the following landscape installed:
  - SAP ERP Central Component 5.0
       SAP_BASIS     640     0013
       SAP_HR          500     0020
       EA-HR          500     0020
  - SAP Enterprise Portal 7.00 (Netweaver 2004s) Stack 08
  - ESS Business Package for ERP 2004 60.2 SP0 (deployed in the SAP Enterprise Portal 7.00)
  - MSS Business Package for ERP 2004 60.1 SP1 (deployed in the SAP Enterprise Portal 7.00)
  The installed XSS components are:
  - SAPPCUI_GP 100 SP11 (deployed in the SAP Enterprise Portal 7.00)
  - SAP_ESS 100 SP11 (deployed in the SAP Enterprise Portal 7.00)
  - SAP_MSS 100 SP11 (deployed in the SAP Enterprise Portal 7.00)
  In this landscape I have found some problems like the exception "com.sap.tc.webdynpro.services.exceptions.WDRuntimeException: Exit-Plug must no be triggered with an URL when running in portal. Use portal navigation instead to navigate to another application!" when we use the "Return to Overview Page" link after changing personal information.
  For the investigation that I have made this XSS components should have been deployed in a WAS Java 6.40.
  So the options now are:
  - 1) install a java add-in for the ECC and deploy on it the XSS components
  - 2) install a java stand-alone exclusively for this XSS components
  - 3) install an Enterprise Portal 6.40 and deploy the Business Packages and XSS components on it
  - 4) leave this as it is.
  For the option 4) can you tell us what are the know restrictions for the use of the XSS components in 7.0 Java? Is the above error just the only problem for this landscape?
  For option 2) The same XSS componentes on WAS Java can be used for both development and quality systems? Or there is a need to have distinct XSS components for each (development and quality) backend system?
  Just another question for option 3), in this scenario the portal where the Business Packages will be installed can be used for development and quality systems? Or there is a need to have distinct Business Packages for each (development and quality) backend system?
  Many thanks in advance!
  Best regards,
  Pedro

  Hi, Pedro.
  I Have the same problem, could you help me, i have portal 7.0 and ecc 5.0, xss components 100, but in this moment i don´t know what solution could be implemented in the enterprise.
  Is necesary that i have to install a web as 6.40 and install in this server the xss components, or there are other solution, maybe a patch  or a note.
  Thanks so much.
  Regards.

• How to link the reports to portal

  Hai Friends...
  I generated reports using discoverer plus and i viewed the reports using discoverer viewer . I am new to discoverer viewer.
  Any body done please give me steps for how to deploy the reports in discoverer viewer and how to link the reports to portal.I wouid appreciate any help.
  Cheers
  Gopi

  hi gopi,
  u can store ur reports in the database using Discoverer user edition. these stored reports can then be viewed in the discoverer Viewer. here i am assuming that u have configured ur discoverer viewer correctly.
  bye..
  naresh

• Link to download - Enterprise Portal Sneak Preview Version

  Hi Guys,
  Can somebody send me the link to download Enterprise Portal Sneak Preview Version.
  Thanks,
  mini

  Hi Mini
  I think you will find this link helpful
  https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a818849b-0b01-0010-6795-c0c3e6559a30
  Regards
  Ken

• Rules for AD Groups mapping with ECC roles in GRC

  Hi All,
  I'm actually looking at an option to define the Rules in GRC where i can map AD (LDAP) groups to ECC roles. Is it possible? Could you please let me know if i can achieve this with Rule Architect in GRC 5.3 OR by any other mean.
  Regards
  - V

  Gurus,
  Any thoughts on this?
  Regards
  Vaib

• Investigate - ECC roles for retirement.

  I am trying to investigate and find roles that can be retired in the ECC system. How do I come up with a list of roles that are ready for retirement (due to unuse or wrong naming convention, etc,etc)?
  What are the questions I should be asking?
  I have tried to follow the below approach, but it doesn´t seem to be effective enough:
  note- From hereon, when I mention roles, it means Z-Roles only.
  Please find the method I used to analysis the issue below:
  Requirement:  Investigate - ECC roles for retirement.
  (Self made points below)
  1. Document all roles in ECC, that have never been assigned to any user.
  2. Document all the roles in ECC, that do not have any users assigned to
  it since atleast one year.
  3. Document all the roles in ECC, that are forbidden to be assigned to
  any roles.
  4. Document all the roles in ECC, that do not follow the standard naming
  convention defined by the organisation.
  My question - Should I extend this list?
  Analysis:
  Transactions used extensively during analysis:
  SE16 Data browser
  SUIM User Information system
  S_BCE_68001425 Roles by Complex Criteria
  PFCG Role Maintenence
  Tables user extensively during analysis:
  AGR_AGRS  Roles in Composite Roles
  AGR_DEFINE  Role definition
  AGR_USERS  Assignment of roles to users
  Actions taken, to reach the solution:
  1. Single Roles - Without assignment in the last one year ( There has been no user assignment to these roles for atleast one
  year and no changes have been done to the role during this time.
  These roles are currently without any user assigned to them.
  2.Forbidden roles: These roles are not to be assigned to any users and it
  can be strongly recommended that they should be retired.
  There are currently no user assignement for this roles.
  3. Wrong Naming convention :  Roles that donot follow the
  standard role naming conventions (as defined). These roles should be
  retired.

  Hi..
  Last month we did this clean up activity. But after a lot of meandering here and there, like what has been stated, finally i decided to take help of the functional consultants of each module of SAP and removed all unwanted roles - from end users. It was a massive exercise, esp when roles were assigned indirectly,  but finally we could clean up a bit.
  But for some reasons, the back end team has kept the roles on the system and roles have not been deleted or completely removed from the system itself. May be as part of 2nd phase of clean up, we would do that.
  And also that was the reason why we felt - as to whether it is ok, to make any role as non-editable, and identify it, all those roles in one go, for a direct clean up at a later date. But I was not able to categorize that way.
  In case you have some other better ideas of cleaning up the system completely, please share your thoughts too. It would be very helpful.
  Thanks
  indu

• Linking a role to multiple positions

  Hi,
  I need to link a role to a number of positions.  I have tried creating an LSMW using transaction PO13, but I can't get it to work. 
  Can someone advise of a way I can link a role to multiple positions or advise of an alternative transaction that works better with LSMW.
  Thanks,

  >
  Pumza Mtshingila wrote:
  > Hi,
  >
  > I need to link a role to a number of positions.  I have tried creating an LSMW using transaction PO13, but I can't get it to work. 
  > Can someone advise of a way I can link a role to multiple positions or advise of an alternative transaction that works better with LSMW.
  >
  > Thanks,
  I'm assuming you would like to automate the process of assigning role/roles to multiple positions.  Use SECATT for transaction PO13. 
  -John N.

• RoboHelp project for LMS linked to roles

  Hi - I am a new user of RoboHelp and I have been assigned a
  project that involves taking our existing documentation written in
  MS Word and turning the documents into online help for our Learning
  Management System (LMS). We would like the on line help to be tied
  to our LMS permissions or roles/rights assigned to users. For
  example; for our end users we would like only topics related to end
  user support or if you are a manager we would like help to be
  visible that is related only to managers. All our users have a role
  with permissions in our LMS. Is this possible?
  Thanks in advance -
  Manola
  RoboHelp v6

  Hi
  The simple answer is no.
  Muse files are almost impossible to edit in Dreamweaver and remain compatible with Muse, they must also be hosted on the Adobe server. It is not even possible to migrate a site created in Muse to any other server, without more work than would be required to create a new site from scratch.
  PZ

• How to set a variable in portal session using web dynpro java.

  Hi,
  I have created a web dynpro application, which is running inside portal. I have created a role called "R1". Inside role R1, i have created 3 workset W1, W2 and W3. and inside each workset i have some pages and iviews.
  My requirement is when user logins to the portal , and when he clicks on role R1 for the first time, a login page should come (so that we can do revalidation), and when he enters his password again in that login page , then only workset W1, W2 and W3 should be visible/accessible to him and after successful revalidation, if he clicks again on role R1, in that particular portal session, than that login page should not come.
  for this, i thought i will set a variable in portal session, whenever user successfully revalidated himself, and if after successful revalidation he clicks again on role R1, i will check in doinit method of webdynpro whether variable is set or not (which i already set on successful revalidation), and if it is set then i will do Donavigation else i will present login page to the user.
  Can anyone tells me how to set a variable in portal session using web dynpro java.
  thanks
  Arush

  Hi,
  Try this:
  WDScopeUtil.put(WDScopeType.CLIENTSESSION_SCOPE, key, value)
  WDScopeUtil.get(WDScopeType.CLIENTSESSION_SCOPE, key)
  Ex:
  WDScopeUtil.put(WDScopeType.CLIENTSESSION_SCOPE,"Key1","Value1");
  String value1=WDScopeUtil.get(WDScopeType.CLIENTSESSION_SCOPE,"Key1").toString();
  /people/william.cui/blog/2007/02/12/sharing-session-context-between-parent-and-external-windows-running-on-same-host
  Regards,
  Charan