Create user via UME API/LDAP
Hi,
I'm trying to create a user using the UME Api
IUserMaint umeUser = UMFactory.getUserFactory().newUser( uniqueId );
.... set properties on umeUser...
umeUser.commit;
The user created ok in our ldap server (Tivoli DS) but on the root dn, i.e. ou=companyX,c=se
Is there a way to create the user in another ldap-node, say ou=internetUsers, ou=companyX, c=se?
Hello Mattias,
You should set the property
<b>ume.ldap.access.creation_path.uacc = ou=internetUsers, ou=companyX, c=se</b>
Check this for more:
http://help.sap.com/saphelp_nw2004s/helpdata/en/63/14f5b51a6eff429f2d8b2063400e82/content.htm
This path is where new user accounts are created.
This path must be relative to the path defined in
ume.ldap.access.base_path.uacc
If this property is not defined, user accounts are stored in the path defined in
ume.ldap.access.base_path.uacc
Greeting,
Praveen Gudapati
Similar Messages
-
EMail Notification for the Newly Created users using UME API
Hi ,
In my application ,the user creation is handled by custom Admin module which uses the UME APIs. Upon creating the user, we need to send a notification mail to the user's email id which he provided in the Add new user form.
<b>Is there any direct APIs available to notify the user via email. I hope the Standard user creatin module in User Administration also uses the same UME APIs.</b>
Please let me know the possibilities.
Appreciate your help.
<b><b>Sample Code:</b>
<b>IUserFactory mUserFact = UMFactory.getUserFactory();
IUserMaint mUserMaint = mUserMaint = mUserFact.newUser(aUser.getLogin());
IUserAccountFactory mAccountFact =UMFactory.getUserAccountFactory();
IUserAccount portalAccount = null;
mUserMaint.setDisplayName(aUser.getLogin());
mUserMaint.setXXX();
mUserMaint.save();
mUserMaint.commit();
portalAccount = mAccountFact.newUserAccount(aUser.getLogin(), mUserMaint.getUniqueID());
mAccount.setPassword("XXXXXX");
aUser.setPassword(mPassword);
mAccount.save();
mAccount.commit();</b></b>
Thanks and Regards,
SekarHi,
I have used the Java Mail API directly send the notification upon new user creation.
Thanks and Regards,
Sekar -
How to create user in UME,
HI gurus,
In requeriment for project, the customer request is about a aplication to create user in the UME automaticall after fill a survey with questions of security, my questions are;
1. Exist a way for create users automatically ??, a RFC ? a Web Service ? or this step is strictly done for a human
(UME isn´t integrated with abap data source).
2. ¿ In KM exist a application that permit show a questionary, and questions and answers were filled from information hosted in tables z in R3 ?
THanks in advanceHi Pacheco Mauricio,
1. Exist a way for create users automatically ??, a RFC ? a Web Service ? or this step is strictly done for a human
(UME isn´t integrated with abap data source).
It is already answered by Erhan
1- There isnt a standart way to create user in portal. You can code a web service to create user using portal apis
using API's only you can create Application which help to create Users in Portal UME.
2. ¿ In KM exist a application that permit show a questionary, and questions and answers were filled from information hosted in tables z in R3 ?
2- And also there isnt a standart way to create a poll using ecc tables. But there is a way to create poll in portal.
SAP had provided a Poll Facility in Portal what Erhan suggested, but problem is you can at a time put only one question in a poll, but if you want some more functionality along with polls, you can go for Sweetlets which is third party tool.
But if you want to develop a Survey kind of application where you want different type of questions along with different answer options than you have to build application from scratch like how we develop Custom Web Dynpro Java Applications.
Regards,
Tushar Shinde. -
Hi All,
I am trying to lock and unlock the users using UME api's.
This is the code which I had used.
com.sap.security.api.IUser user = UMFactory.getUserFactory().getUserByLogonID("test");
String userId = user.getUniqueName();
IUserAccountFactory uaf = UMFactory.getUserAccountFactory();
IUserAccount ua = uaf.getUserAccountByLogonId(userId);
IUserAccount uma = uaf.getMutableUserAccount(ua.getUniqueID());
IUserFactory uf = UMFactory.getUserFactory();
uma.setLocked(true,0);
uma.save();
uma.commit();
uf.invalidateCacheEntryByLogonId(userId);
When I checked the status of this user "test" in user administration, the status is shown as locked. But when i tried to login with the user "test", I could login successfully.
Couldnt know how this happens. Any points to what is going wrong.
Thanks in advance.
Regards,
Yoga
PS: Useful answers will be rewarded.hi,
you need to use the mutable user account.create one button and on the action of the button put the following code.
try
IWDClientUser wdUser = WDClientUser.getCurrentUser();
IUser user = wdUser.getSAPUser();
IUserAccount[] acct = user.getUserAccounts();
String userId = acct[0].getLogonUid();
IUserAccountFactory accountFactory = UMFactory.getUserAccountFactory();
IUserAccount account = accountFactory.getUserAccountByLogonId("cindranil");
IUserAccount mutableAccount = accountFactory.getMutableUserAccount(account.getUniqueID());
mutableAccount.setLocked(false,IUserAccount.LOCKED_BY_ADMIN);
mutableAccount.save();
mutableAccount.commit();
catch(Exception e)
wdComponentAPI.getMessageManager().reportSuccess("Error");
regards
Indranil
reward points if useful -
Create users via the CLI interface on a SX20
Hi
Are there some who know how to create users via the CLI interface on a SX20. You can do this via the web interface but I have many video installations where I need to create a user account. Therefore, it would be easiest if I can make it through the CLI interface.
Best regards
JesperUnless there's a very well hidden command somewhere, then no. As far as I know, this can only be done for the remote supportuser account;
xcommand UserManagement ?
xCommand UserManagement RemoteSupportUser Create
ExpiryDays: <1..31>
xCommand UserManagement RemoteSupportUser Delete
xCommand UserManagement RemoteSupportUser DisablePermanently
Confirm(r): <Yes>
xCommand UserManagement RemoteSupportUser GetState
/jens
Please rate replies and mark question(s) as "answered" if applicable. -
Unable to created users through UME on portal with AS ABAP as its data sorc
Hi,
Unable to created users through UME on portal with AS ABAP as its data source.
I have assigned SAP_BC_JSF_COMMUNICATION to the user SAPJSF but this only helps in editing the already existing users but not in creating new users on portal.
I have checked that that the role SAP_BC_JSF_COMMUNICATION is properly generated and has * in all authorizations. I have even assigned SAP_ALL and SAP_NEW to SAPJSF and another ID.
DO we need to make any config changes to make the database writable from portal. Please advise.
Thanks,Hi,
If your system is a AS ABAP + +JAVA System,, you have to do the following
1. Login to Client 001 using SAP GUI
2. Create a user id
3. Login to portal and you will be able to see the user.
4.Assign him the portal rights
If you want the portal to use seperate Database for USers, there is a setting in Visual admin, that you can change for the same, but i dont remember that -
"Password has expired" for user created via UME API
Hi,
I have written a service that processes new user accounts and uses the UME API to create them. The code works fine on my local Sneak Preview installation of EP6 SP16, allowing the created users to logon and forcing them to change their password on first login.
When I try and run this code on EP6 SP14 it completes without generating any exceptions but when I try and login I get the message "Password has expired" and cannot login or change the users password.
Does anyone know why?
I have the following UME settings for both servers:
ume.logon.security_policy.password_change_allowed = TRUE
ume.logon.security_policy.password_change_required = TRUE
ume.logon.security_policy.password_expire_days = 99999
The SP14 server also uses LDAP to authenticate users primarily and has the following setting:
ume.persistence.data_source_configuration = dataSourceConfiguration_ads_deep_readonly_db.xml
There are some other UME configuration differences but none that seem relevant to this problem.
Can anyone suggest what the problem might be?
Cheers,
Steve ArcherThe Xp machine is fine acessing the mb
its the macbook that is having a problem accessing the xp machine coz it says that the password has expired
but there is no password for the user on the xp machine that i am trying to access from my mb
so that would be:
xp to mb = fine all working
mb to xp = password expired even though no password required for the xp user -
Trouble Creating Users Via Web Form
I'm having trouble creating user in a 9i database via web front end.
I use the following sql to create the user
strSQL="CREATE USER"""+strUser+"""PROFILE ""DEFAULT"" IDENTIFIED BY ""HELLO"" DEFAULT TABLESPACE ""DATA"" TEMPORARY TABLESPACE ""TEMP"" ACCOUNT UNLOCK"
I then execute another two sql statments to grant "connect" thus
strSQL="GRANT ""CONNECT"" TO "+strUser+""""
strSQL="ALTER USER """ strUser"""DEFAULT ROLE ALL"
Whenever I try connecting using the new users details, but get an error message that the server had problems accessing the LDAP directory service(ORA-28030).
I'm happy that the SQL is correect as I created the account that I wanted using Enterprise Console and coppied the SQL it produced. I'm assuming that there's something in the background that is not being triggered when creating the user via the web front end.
Can anyone tell me where I'm going wrong?
Thanks
JasonMy apologies, I didn't realise HTML DB was a product. I thought it was a forum for questions regarding HTML and databases.
Doh!!!
Jason -
Portal: Password reset and unlock User via UME?
I'm new to Portal and SAP. I'm trying to find options to have a username unlocked and password sent to user based on a userid from our Portal logon page.
The end user needs only to know their user ID, and based on this user ID I need their username to be unlocked, and a temporary password to be emailed to them (Looked up from their user ID via Database)
From what I've been reading UME can do this, but when I look into configuration of it I'm not seeing anything that can define this to show up on the Portal logon page. Does this have to be developed and built in or linked as a separate page or is there a prefab one made already(nothing I could find showed evidence of this, although the documentation regarding UME hinted at this)?
The end user doesn't need to answer security questions because to get access to the portal they already have to be on my secured network.
Any help would be great!
Edited by: Andrew Urban on Aug 7, 2008 12:09 AM
Edited by: Andrew Urban on Aug 7, 2008 12:10 AM
Edited by: Andrew Urban on Aug 7, 2008 12:16 AMAndrew,
This link might help explain what is possible with SAP Portal in terms of allowing the user to reset their password from the logon screen.
http://help.sap.com/saphelp_nw04s/helpdata/en/45/7e6313d8780dece10000000a11466f/frameset.htm
As for allowing a user to unlock their account from the logon page, there is no such functionality that I know of. This would need to be developed. We are doing something similar. In our case, we are developing a module that allows user to retreive their user ID if they forget it. This also is not functionality that SAP provides. The user can specify their email address, and it emails them their user ID. This is being developed in Web Dynpro for Java utilizing the UME APIs.
- Andrew Castillo -
Steps Involved in creating Users thru the API
Hi Mark or anybody from Oracle,
Your solution to build a string for the
XML and then parse it is ok. However I would
like to do it programmatically instead of building strings containing the XML.
What are the steps and exactly what attributes do you need to set for the User
to be created programmatically.
Here is the steps I have and It's giving me
the following exception: IFS-30002 - Unable to create new library object.
The objects needed to create a user are:
1) DirectoryUserDef + set its attributes
2) Folder Definition for User folder then add
to parent folder in this case /home
3) PrimaryProfileUserDefinition + set its attributes DirectoryUser and HomeFolder ?
Can you elaborate on the exact steps to take
and exact attributes to set.
Thanks
null#1 I would strongly recommend the XML based approach. It's much easier, and if we change the way the user / directory objects are organized in much less likely to require you to alter your code.
Note that in order to create the objects programatically you're going to have to make sure that you have set ACLs and Owners correctly. It really is quite a complex process.
At some later date we 'may' provide a simple Java API for creating users.
In order to understand your error I need to catch the exception and print the stack trace as per the end of my code example for creating a user from an XML string.
Please post the results of the stack trace and someone will attempt to respond to you. -
How to create user in UME when using ABAP as datasource
hi, everyone
We are using ABAP as EP user datasource, when create user in EP, it says "Current user has user creation permissions in the UME, but cannot create users in the back-end system (data source). The original and possibly untranslated message was: "No active writeable datasource found for user creation, check your Persistence Configuration."
But we can not create in UME neither, anyone know how to do this?
LeeHi,
Solution would be to disconnect the UME from ABAP and reboot the portal, create the user in UME, and revert back to the UME/ABAP connection again... but this is not supported:
Changing Data Source
Once you have chosen this data source configuration, you cannot change to any other data source configuration. For details, see SAP Note 718383.
Source: http://help.sap.com/saphelp_nw70ehp1/helpdata/en/45/af3ac012d32e78e10000000a155369/frameset.htm
Ask the autorisation team of the ABAP stack that is connected to you UME to create the user for you is the only solution.
Cheers,
Benjamin -
Error when create user via OIM web
Hi Gurus..
I hava some problem when I creating new user via web OIM, error appear while inpute the start date value.
Need help for you guys,
This is the error code.
<Error> <oracle.adfinternal.view.faces.config.rich.RegistrationConfigurator> <BEA-000000> <ADF_FACES-60096:Server Exception during PPR, #5
java.lang.NullPointerException
at oracle.iam.identitytaskflow.utils.UserManagerValidationUtils.handleAccountEndDateValidation(UserManagerValidationUtils.java:237)
at oracle.iam.identitytaskflow.utils.UserManagerValidationUtils.processDateValidations(UserManagerValidationUtils.java:589)
at oracle.iam.identitytaskflow.utils.UserManagerValidationUtils.processDateValidation(UserManagerValidationUtils.java:543)
at oracle.iam.identitytaskflow.common.components.UIInputDate$DateValueValueChangeListener.processValueChange(UIInputDate.java:135)
at javax.faces.event.ValueChangeEvent.processListener(ValueChangeEvent.java:134)
at org.apache.myfaces.trinidad.component.UIXComponentBase.broadcast(UIXComponentBase.java:675)
at org.apache.myfaces.trinidad.component.UIXEditableValue.broadcast(UIXEditableValue.java:210)
at org.apache.myfaces.trinidad.component.UIXSelectInput.broadcast(UIXSelectInput.java:216)
at oracle.adf.view.rich.component.fragment.UIXRegion.broadcast(UIXRegion.java:148)
at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:102)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.run(ContextSwitchingComponent.java:92)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:361)
at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:96)
at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:96)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.broadcastEvents(LifecycleImpl.java:902)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:357)
at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:186)probably yes but I am not so sure about that, I have checked the User.xml for make sure this but I can't found something wrong. any clue Shashank?
Regards,
-Rius- -
Error creating user in UME or visual administrator
I am trying to create solman_admin userid in J2ee. I tried first in UME - Identity Management signing in as j2ee_admin when I click on create user I get
Current user has user creation permissions in the UME, but cannot create users in the back-end system (data source). The original and possibly untranslated message was: "No active writeable datasource found for user creation, check your Persistence Configuration.".
I then tried signing into the Visual Administrator with j2ee_admin and creating a user there but still get an error message cannot create user. I believe the error message above is saying that j2ee_admin does not have access to update in ABAP? Does anyone know how to resolve this problem?Hi
You are rt, check for datasource used, probably it is database. change the UME datasource from database to ABAP and connect to your production client
regards,
Shyam. -
Create user request from api OIM 11g r2
Hi,
I need to read a database and raise a request for creating uses. After approval the user needs to be created in OIM 11g R2.
I want to write a scheduled task which will read database columns and rasie a request to create users.
I dont want to use UnauthenticatedSelfService api.
Please suggest a way to achive that. any pointer / sample coede / suggestion is helpful.Here are links to creating a request for a role and a resource. https://java.net/projects/openptk/sources/svn/show/branches/Oracle/OIM11g/examples/java/OIMClient/src/oim/client/request?rev=1402
I would suggest you start with these and modify the parameters to be for a user. You will have to try some trial and error to get it working, unless someone already has it available. And so far, no one who is posting does. Give it a shot. You can always create an SR with oracle and ask for assistance.
-Kevin -
Creating users via the admin console
Hi,
I'm trying to create a user via the admin console. The user will have to
authenticate via Membership, and will require a username and password.
However, when creating the user via the admin console it does not allow you
to specify a default password (or by using the command line 'ipsadmin create
user /domain/user.xml', unless there is some XML field specified in the file
to do that? If so, what is it? Specify an attribute in the
"iwtAuthMembership-password"?) After creating a user via the console, I
tried logging in using a blank password and a password the same as the
username, but neither worked. Is this password set as default to something,
and if so to what?
Also, is there some existing means for a user who has already created a
membership account to change their password? If not, then I guess I will
have to develop some code to modify the "iwtAuthMembership-password"
attribute.
Thanks,
MarkHi,
After you have created the user via the console, then the user will be added to a particular role.From the console go that particular domain and then to the role under which the user was created.Then select the Users link you can see the users list.From that list select the user for whom a password is needed,then it will lead you to a screen where you can see a link named Authentication.Expand that link and click on the Membership link there you can enter the username and password for the user
Maybe you are looking for
-
How can I build a double scale chart using iPad Numbers? Is it possible??
Hi everyone, I would really like to know how I can create a double scale chart using Numbers app for iPad. Should I have the following data, how can I put together in the same charts? Year: 1-2-3-4 etc (Axis X); AuM: data1, data2, data3, data4 etc (A
-
I have bought one song that I can't use because it says my computer is not authorized to play it. However, my itunes account is only authorized on my one laptop so it seems to be a glitch. Anyone out there know how to get the song I paid for, to wo
-
Column numbers are changed in the generated xls report after fix
We are seeing a new issue with the solution provided by the support person for issue 302892066(PWC - Formatting is lost when exporting a report to excel format). The new issue, As a result of the fix for case 302892066, column numbers are changed in
-
Adobe Creative Suite 3 install on Lion
Hi... on the edge of buying a new Macbook Air and am realizing that the CS3 installer requires Rosetta. Wondering if anyone knows of a workaround, either software or hardware, that will keep me from having to shell out for an upgrade. I'm a light use
-
Outlook damaged/merged iphone contacts
Hi there, i've an issue my Outlook 2007 merged some of my contacts with no giustifications. Fortunally i restored an old backup on the iphone and now in the tab "iphone contacts" its everything ok but in the tab "icloud contacts" there are some merge