Change to User Mapping Strong encryption to weak encryption

Similar Messages

• EP6.0: Can't change the Users that are created earlier by somebody else

  Hi,
     I ( have super admin access) am trying to modify/delete some of the users that were created by some body else earlier.
  During Modify, it's not allowing me to change the following (grayed out)
  1> Last name
  2> First name
  3> email add
  Moreover I don't even see the password field where I can reset the password.
  Also when I change the validity period etc, for some reason, the old data come back again after some time.
  The user in question needs some additional access and need resetting of the password and I am not able to do the 2nd.
  Also please note that there is no issue with the User lock, I have checked that already.
  Thanks
  Arunava

  Have u Changed in User Mapping  ?
  Go to 'User Admn' - >User MApping -> search for the User u want -> Do edit .
  If u hav did any LDAP ,u can't change the Fname / Lname here as it's been configured .
  Regards,
  J
  Do Award pts if this's useful.

• Change user mapping when user is owner

  I have a DB on a SQL 2008 Server that I need to remove the user mapping for the SA account.  The creator/owner of the DB is actually a Windows account but the user mapping for the SA account are DBO role and DBO schema.  For some reason, this is the only DB on this server that has the issue.  Any help from one of you SQL gurus would be much appreciated as I am NOT knowlegeable on this topic.  I just need to remove this mapping for the SA account to this specific DB.

  Leks,
  I'm purely looking for a way to remove the user mappings for the SA account to this one DB.  I know SA has access to everything and that it uses the dbo account to connect to each DB.  I need a way to remove the user mappings.  It's that simple.  The way our dev team coded the website, having the user mapping in place creates lots of issues which I'm not going to provide here.  This is the only DB that has this mapping.  All other DB's on the server don't have the mapping and those web tools are working fine.
  Because SA has the dbo user account mapping on this DB, it will not allow me to edit the mappings.  Here is the error message.
  TITLE: Microsoft SQL Server Management Studio
  Drop failed for User 'dbo'.  (Microsoft.SqlServer.Smo)
  For help, click: http://go.microsoft.com/fwlink?ProdName=Microsoft+SQL+Server&ProdVer=10.0.2531.0+((Katmai_PCU_Main).090329-1015+)&EvtSrc=Microsoft.SqlServer.Management.Smo.ExceptionTemplates.FailedOperationExceptionText&EvtID=Drop+User&LinkId=20476
  ADDITIONAL INFORMATION:
  An exception occurred while executing a Transact-SQL statement or batch. (Microsoft.SqlServer.ConnectionInfo)
  Cannot drop the user 'dbo'. (Microsoft SQL Server, Error: 15150)
  For help, click: http://go.microsoft.com/fwlink?ProdName=Microsoft+SQL+Server&ProdVer=10.00.2531&EvtSrc=MSSQLServer&EvtID=15150&LinkId=20476
  BUTTONS:
  OK
  If anyone has a procedure for what I'm trying to accomplish here, it would be greatly appreciated.  There must be a way to remove/edit this mapping.  It's the only DB that has it.  Why?  I don't know because I didn't create this actual DB.

• Error occurred while reading the selected user mapping data

  Dear all,
  System Details:
  Ecc 5, nw04, ep6. QAS abap and JQE (sid) portal on seperate servers. UME option java database.
  Details:
  While mapping the user to SAP_WebDynpro_Xss i m getting the error mentioned in subject.
  My user id and passwords are correct and working fine in QAS system, what to check, please.
  Regards
  Imran

  Hello Imran,
  When you install EP you have 2 options: "Weak Encryption" and "Strong Encryption".
  If you choose the "Weak Encryption" option (as most of us do in development systems...),
  you should update a certain UME property, in order to avoid errors in user mapping.
  If that is the case:
  1. Navigate to <i>System Administration</i> -> <i>System Configuration</i> -> <i>UM Configuration</i>
  2. Choose the tab <i>Direct Editing</i>
  3. Set the property <i>ume.usermapping.unsecure</i> to TRUE.
  4. Save all changes
  5. Restart the J2EE engine.
  Hope that helps,
  Yoav.

• Error in Accessing User Mapping Data

  Hi,
  When i tried User Mapping by going to
  "UserAdministration -> UserMapping" , or
  "Personalize" -> "User Mapping"
  it gives the error msg ,
  Problem in accessing user mapping data for selected system.
  Due to this i am not able to create appointments or see the availability status of a user.
  Also, for your information i have Strong Encryption files installed.
  Pls help.
  Thanks in advance..

  Hi venkat,
  You need to change the default value in UME configuration
  System admin -> System Config -> UM Configuration -> Direct Editing
  ume.usermapping.unsecure=TRUE
  Regards
  PS: Please consider rewarding point

• User Mapping: Could not save logon data

  Hi
  I have installed EP6 NW04 SP9 on an AIX system with DB2 database and I'm trying to assign mapping data (user & password) to users through User Administration -> User Mapping option.
  When I try to save it, the portal shows the message: Could not save logon data.
  During the installation I imported the Cryptography toolkit with strong encription so the property ume.usermapping.unsecure is set to false.
  Would it be possible somebody to help me please.
  Thanks

  Hi,
  I have the same problem and the parameter 'ume.usermapping.unsecure' is TRUE and encryption is weak. So, in UME configuration, the portal is integrated with ADS using ADS Flat + Database.
  The version portal is EP6 SP 11!
  Help us, please!
  Thanks

• User mapping not available

  Hi all,
  I have installed EP SR1 . I am trying to map a system to a role. When i try to user mapping it asks for username ,pwd for the system.
  When i enter it and save it ,its throwing the following error.
  Any patches ?
  Portal Runtime Error
  An exception occurred while processing a request for :
  iView : pcd:portal_content/administrator/super_admin/super_admin_role/com.sap.portal.user_administration/com.sap.portal.user_mapping/com.sap.portal.userMappingAdmin/com.sap.portal.userMappingAdmin
  Component Name : com.sap.portal.usermanagement.admin.UserMappingAdmin
  User Mapping not fully available..
  Exception id: 02:31_12/07/05_0006_4483250
  See the details for the exception ID in the log file
  Regards
  Bharathwaj

  Hi,
  User Mapping, we have to install encryption packages, if you are not concerned abt security, one work around is
  goto System Config->UM Config-> Select Direct Editing Tab and change this valuefrom FALSE to TRUE.
  #Use usermapping without strong cryptography (IAIK). It is strongly recommended to keep the default value (FALSE). Only change this setting, if you cannot install a cryptography provider due to import and export regulations. Then, if this property is set to TRUE, the usermapping information will not be encrypted.
  (Type: Boolean, Default: 'FALSE')
  ume.usermapping.unsecure=TRUE
  You can refer to this link,
  /community [original link is broken]
  <b>I would recommend you to install the encryption packages.</b>
  If it helps and works and if you are happy with the solution,reward points.
  Thanks
  Senthil

• Portal Runtime Error while performing User Mapping  to SAP SRM

  Please find below the error I received while User Mapping from  Enterprise Portal to SAP SRM :
  Portal Runtime Error
  An exception occurred while processing a request for :
  iView : pcd:portal_content/administrator/super_admin/super_admin_role/com.sap.portal.user_administration/com.sap.portal.user_mapping/com.sap.portal.userMappingAdmin/com.sap.portal.userMappingAdmin
  Component Name : com.sap.portal.usermanagement.admin.UserMappingAdmin
  User Mapping not fully available..
  Exception id: 04:21_23/06/05_0073_8097650
  See the details for the exception ID in the log file

  Hi,
  yes, Karsten is correct. Just some background:
  "User Mapping not fully available.." finally means that user mapping is configured to use strong encryption, but the main crypto key for user mapping is missing. Usually, that's because "SAP Java Cryptographic Toolkit" and/or "JCE policy files for unlimited strength encryption" are not installed (or the server hasn't be restarted afterwards). The note will most likely help
  Best regards
  Heiko

• Configuration Issue in User Mapping ..

  Hi,
  Pls help resolve this issue..
  When i go to <b>" UserMapping "</b> option using the <b>"Personalize "</b> link , i get the following error msg..
  "There is a configuration issue which leads to problem when accessing user mapping data for the selected backend system"
  Also , if i go thru "User Administration -> User Mapping "
  then it says,
  --"There is a configuration issue which leads to problem when accessing user mapping data for the selected backend system  .
  Usually reason is user mapping being configured for Strong encryption, but necessary additional files might be missing.Check Security log file for information "--
  I am not able to solve this problem..Pls help
  Thanks in advance

  Hi Venkat,
  <b>Here the quick and dirty solution</b>:
  In your portal go to 'System Administration' -> 'System Configuration' -> 'UM Configuration' -> 'Direct Editing'.
  There locate the parameter 'ume.usermapping.unsecure', set it to 'TRUE' and restart your server.
  I would rather recommend to install the unlimited strength jurisdiction policy files.
  For more info on this, check this thread:
  JCE Jurisdiction does not allow Portal to start
  Hope this helps,
  Robert

• Not able to do user Mapping with the backend System

  Hello all,
  I am trying to Map a user to a windows based KM System but getting an error like
  "There is a configuration issue which leads to problems when accessing user mapping data for the selected backend system 'KM_Test_System'. Usually, the reason is user mapping being configured for strong encryption, but the necessary additional files being missing. Check the security log file for further information and hints on how to solve the problem."
  Can somebody tell me what could be the possible reason for this and how to handle this. I dont have access to the Portal server right now , so not able to see the security log.
  Thanks to all,
  Regards,
  Sarabjeet Singh.

  Hi Sarbjeet,
  I believe this links will help you understand and solve your problem:
  user mapping is not saved
  and
  http://help.sap.com/saphelp_nw04/helpdata/en/04/d246215f1d4f588d1d9c49391acb01/frameset.htm
  Hope this helps,
  Robert

• No fields in User Mapping

  Hi All,
  I am using ABAP+Java Stack. My data source is ABAP.
  Now i am Planning to to user mapping for that i went to System Administration --> System Configuration --> UME Configuration --> User Mapping here it is not showing the fields. IT is displaying a line saying that. 'Strong user encryption' like that.
  If i want to see the fields what i have to do.
  Regards,
  Phanikumar.

  Hi,
  You can do the user mappings in some other ways also
  1) click on personalized link then from detailed navigation select USER MAPPING.
  2) your portal url http://hostname:port/irj/index there select user administration from there also you can do user mappings
  other than this, as specified above, you need to have a system to select and to the mapping for particular system.
  regards,
  Pradeep

• User mapping is not saved

  Hi All,
        i am doing user mapping in personalization window,
  if i am enter my user id and password after that if i am click on save button, the logon data is not saved, so pls solve my problem.
  Regards,
  Jagadish Babu Kanikanti.

  Hi ,
  I am configuring a production Server with SP14.
  When i am in user mapping section, i find the error msg as below:
  <b>There is a configuration issue which leads to problems when accessing user mapping data for the selected backend system 'ESS'. Usually, the reason is user mapping being configured for strong encryption, but the necessary additional files being missing. Check the security log file for further information and hints on how to solve the problem.</b>
  I am not able to enter any user id / pwd ; The fields are greyed out.
  I did solve the same in the development server using :
  <b>Goto System administration-system Configuration-UM Configuration-Direct Editing.
  In that make the ume.usermapping.unsecure as TRUE.</b>
  But on seeing your reply stating this is not suitable for Production server, i am bit confused.
  Can you pls help with me an alternate solution..
  Thanks in advance,
  venkat.

• How can i use exisitng user data(Id, password) for user mapping

  Hi All,
  For User mapping , we can import user mapping data for many users from user administration. and for each user
  we can maintain mapping data in the standard format.
  eg:
  [User]
  uid=user2
  $usermapping$:BCE:user=ext_user2
  $usermapping$:BCE:mappedpassword=password
  i am clear till this point.
  this all works if we know the userid and passowrd on the system 'BCE'.the passwords on the system 'BCE', are encrypted . so there is no chance for me to know the passwords.
  so how can i use the existed userid/passowrd on the system 'BCE' for the mapped user and mapped password on the portal while doing usermapping.
  Thanks in Advance,
  Lakshmi

  Hi,
  I think this should work.
  1. Setup SSO with SAP logon tickets first. How to do this is described many places, e.g. http://help.sap.com/saphelp_nw04/helpdata/en/d3/41c8ecb31d11d5993800508b6b8b11/content.htm
  This SSO will not work at first, because the username is different in the back-end system. So what you need to do is to get the back-end username into the ticket (don't need a password because that is done by the SAP logon ticket)
  2. Create a portal component which uses the usermanagement API to create a usermapping which only consists of the username and a blank password. You can do this manually I think if you have no reference system defined.
  IUserMappingService umap =(IUserMappingService)PortalRuntime.getRuntimeResources().getService(IUserMappingService.KEY);
  //this is the currently logged in user. You might another user
  IUserContext user = request.getUser();
  //Get the existing data (think it can be null)
  IUserMappingData userMapping=umap.getMappingData(systemAlias, user);
  HashMap map = new HashMap();
                           map.put(IUserMappingService.UMAP_KEY_USER, backEndUserName);
  //add blank password               map.put(IUserMappingService.UMAP_KEY_PASSWORD, "");
  //store the values                    userMapping.storeLogonData(map);
  Voila, this should allow you to do SSO using SAP logon tickets, but with another name that you use against the portal. I am uncertain if this will work if you have multiple usermappings in the sap logon ticket
  PS since the sap logon ticket is issued at logon time, you need to relogon to get the changes done by the code
  Regards
  Dagfinn

• Portal Runtime Error - User Mapping error

  Hi,
    I got below error in portal screen(EP6,SP12) when i navigated "User Administrator" -> "User Mapping".
    Thanks in advance for your kindly help.
  Portal Runtime Error
  An exception occurred while processing a request for :
  iView : pcd:portal_content/administrator/super_admin/super_admin_role/com.sap.portal.user_administration/com.sap.portal.user_mapping/com.sap.portal.userMappingAdmin/com.sap.portal.userMappingAdmin
  Component Name : com.sap.portal.usermanagement.admin.UserMappingAdmin
  The exception was logged. Inform your system administrator..
  Exception id: 06:16_27/05/05_0005_2051150
  See the details for the exception ID in the log file
  in defaultTrace1.trc, there is error as below.
  #1.5#000C2900F78900140000002600000A900003F813C8396092#1117188777281#com.sap.portal.portal#sap.com/irj#com.sap.portal.portal#Administrator#733#####Thread[PRT-Async 1,5,PRT-Async]##0#0#Error#1#/System/Server#Java###Exception ID:06:12_27/05/05_0004_2051150
  [EXCEPTION]
  #1#com.sapportals.portal.prt.component.PortalComponentException: Error in service call of Portal Component
  Component : pcd:portal_content/administrator/super_admin/super_admin_role/com.sap.portal.user_administration/com.sap.portal.user_mapping/com.sap.portal.userMappingAdmin/com.sap.portal.userMappingAdmin
  Component class : com.sapportals.portal.prt.component.usermanagement.UserMappingAdminComponent
  User : Administrator
       at com.sapportals.portal.prt.core.PortalRequestManager.handlePortalComponentException(PortalRequestManager.java:969)
       at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:343)
       at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:136)
       at com.sapportals.portal.prt.core.async.AsyncIncludeRunnable$1$DoDispatchRequest.run(AsyncIncludeRunnable.java:377)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sapportals.portal.prt.core.async.AsyncIncludeRunnable.run(AsyncIncludeRunnable.java:390)
       at com.sapportals.portal.prt.core.async.ThreadContextRunnable.run(ThreadContextRunnable.java:164)
       at EDU.oswego.cs.dl.util.concurrent.PooledExecutor$Worker.run(PooledExecutor.java:729)
       at java.lang.Thread.run(Thread.java:534)
  Caused by: java.lang.NullPointerException
       at java.util.Hashtable.put(Hashtable.java:393)
       at java.util.Properties.setProperty(Properties.java:102)
       at com.sapportals.portal.prt.component.usermanagement.MappingFieldParser.addElementToCreds(MappingFieldParser.java:177)
       at com.sapportals.portal.prt.component.usermanagement.MappingFieldParser.parseFieldItem(MappingFieldParser.java:155)
       at com.sapportals.portal.prt.component.usermanagement.MappingFieldParser.parse(MappingFieldParser.java:58)
       at com.sapportals.portal.prt.component.usermanagement.UserMappingDataModel.interpreteUserMappingFields(UserMappingDataModel.java:929)
       at com.sapportals.portal.prt.component.usermanagement.UserMappingDataModel.getCredentials(UserMappingDataModel.java:638)
       at com.sapportals.portal.prt.component.usermanagement.UserMappingDataModel.getCredentials(UserMappingDataModel.java:236)
       at com.sapportals.portal.prt.component.usermanagement.UserMappingView.addLogonScreenFields(UserMappingView.java:238)
       at com.sapportals.portal.prt.component.usermanagement.UserMappingView.createUserMappingGrid(UserMappingView.java:498)
       at com.sapportals.portal.prt.component.usermanagement.UserMappingAdminView.doContent(UserMappingAdminView.java:63)
       at com.sapportals.portal.prt.component.usermanagement.UserMappingAdminComponent.doContent(UserMappingAdminComponent.java:180)
       at com.sapportals.portal.prt.component.AbstractPortalComponent.serviceDeprecated(AbstractPortalComponent.java:209)
       at com.sapportals.portal.prt.component.AbstractPortalComponent.service(AbstractPortalComponent.java:114)
       at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:328)
       ... 7 more

  Hi Kuoming,
    The usermapping error is because you have installed portal with weak encryption. You can fix the usermapping error by reading the following forum question.
  /thread/24177 [original link is broken]
  Please post any EP question in the following forum
  /community [original link is broken]

• Portal Runtime Error - User Mapping

  Hi
  I installed EP6 SP9, KMC and TREX successfully. I logged into the portal and created a system to connect to R3 and also the system alias. When I tried to do the user mapping I get the following error:
  Portal Runtime Error
  An exception occurred while processing a request for :
  iView : pcd:portal_content/administrator/super_admin/super_admin_role/com.sap.portal.user_administration/com.sap.portal.user_mapping/com.sap.portal.userMappingAdmin/com.sap.portal.userMappingAdmin
  Component Name : com.sap.portal.usermanagement.admin.UserMappingAdmin
  User Mapping not fully available..
  Exception id: 12:06_31/03/05_0003_3886350
  See the details for the exception ID in the log file
  Please help.
  Sriram

  This was also discussed several days ago in this forum - please search the forum before posting.
  Did you install the strong encryption libraries? Without those libraries then usermapping cannot be stored securly in the DB and thus you see the error - by default ume.usermapping.unsecure is set to false, for VERY GOOD REASON. If you allow unsecure usermapping the the user/pwd data is stored in BASE64 strings in the DB - this is hardly secure.
  Only set ume.usermapping.unsecure to true in non-productive environments.
  Nick