Create user via UME API/LDAP

Similar Messages

• EMail Notification for the Newly Created users using UME API

  Hi ,
  In my application ,the user creation is handled by custom Admin module which uses the UME APIs. Upon creating the user, we need to send a notification mail to the user's email id which he provided in the Add new user form.
  <b>Is there any direct APIs available to notify the user via email. I hope the Standard user creatin module in User Administration also uses the same UME APIs.</b>
  Please let me know the possibilities.
  Appreciate your help.
  <b><b>Sample Code:</b>
       <b>IUserFactory mUserFact = UMFactory.getUserFactory();
       IUserMaint mUserMaint = mUserMaint = mUserFact.newUser(aUser.getLogin());
       IUserAccountFactory mAccountFact =UMFactory.getUserAccountFactory();
       IUserAccount portalAccount = null;
       mUserMaint.setDisplayName(aUser.getLogin());
       mUserMaint.setXXX();
       mUserMaint.save();
       mUserMaint.commit();
       portalAccount = mAccountFact.newUserAccount(aUser.getLogin(), mUserMaint.getUniqueID());
       mAccount.setPassword("XXXXXX");
       aUser.setPassword(mPassword);
       mAccount.save();
       mAccount.commit();</b></b>
  Thanks and Regards,
  Sekar

  Hi,
  I have used the Java Mail API directly send the notification upon new user creation.
  Thanks and Regards,
  Sekar

• How to create user in UME,

  HI gurus,
  In requeriment for project, the customer request is about a aplication to create user in the UME automaticall after fill a survey with questions of security, my questions are;
  1. Exist a way for create users automatically ??, a RFC ? a Web Service ? or this step is strictly done for a human
  (UME isn´t integrated with abap data source).
  2. ¿ In KM exist a application that permit show a questionary, and questions and answers were filled from information hosted in tables z in R3 ?
  THanks in advance

  Hi Pacheco Mauricio,
  1. Exist a way for create users automatically ??, a RFC ? a Web Service ? or this step is strictly done for a human
  (UME isn´t integrated with abap data source).
           It is already answered by Erhan
  1- There isnt a standart way to create user in portal. You can code a web service to create user using portal apis
           using API's only you can create Application which help to create Users in Portal UME.      
  2. ¿ In KM exist a application that permit show a questionary, and questions and answers were filled from information hosted in tables z in R3 ?
  2- And also there isnt a standart way to create a poll using ecc tables. But there is a way to create poll in portal.
            SAP had provided a Poll Facility in Portal what Erhan suggested, but problem is you can at a time put only one question in a poll, but if you want some more functionality along with polls, you can go for Sweetlets which is third party tool.
           But if you want to develop a Survey kind of application where you want different type of questions along with different answer options than you have to build application from scratch like how we develop Custom Web Dynpro Java Applications.
  Regards,
  Tushar Shinde.

• Locking  users in UME api

  Hi All,
  I am trying to lock and unlock the users using UME api's.
  This is the code which I had used.
                 com.sap.security.api.IUser user = UMFactory.getUserFactory().getUserByLogonID("test");
                 String userId = user.getUniqueName();
                 IUserAccountFactory uaf = UMFactory.getUserAccountFactory();
                 IUserAccount ua = uaf.getUserAccountByLogonId(userId);
                 IUserAccount uma = uaf.getMutableUserAccount(ua.getUniqueID());
                 IUserFactory uf = UMFactory.getUserFactory();
                 uma.setLocked(true,0);
                 uma.save();
                 uma.commit();
                 uf.invalidateCacheEntryByLogonId(userId);
  When I checked the status of this user "test" in user administration, the status is shown as locked. But when i tried to login with the user "test", I could login successfully. 
  Couldnt know how this happens. Any points to what is going wrong.
  Thanks in advance.
  Regards,
  Yoga
  PS: Useful answers will be rewarded.

  hi,
  you need to use the mutable user account.create one button and on the action of the button put the following code.
  try
  IWDClientUser wdUser = WDClientUser.getCurrentUser();
  IUser user = wdUser.getSAPUser();
  IUserAccount[] acct = user.getUserAccounts();
  String userId = acct[0].getLogonUid();
  IUserAccountFactory accountFactory = UMFactory.getUserAccountFactory();
  IUserAccount account = accountFactory.getUserAccountByLogonId("cindranil");
  IUserAccount mutableAccount = accountFactory.getMutableUserAccount(account.getUniqueID());
  mutableAccount.setLocked(false,IUserAccount.LOCKED_BY_ADMIN);
          mutableAccount.save();
          mutableAccount.commit();
          catch(Exception e)
               wdComponentAPI.getMessageManager().reportSuccess("Error");
  regards
  Indranil
  reward points if useful

• Create users via the CLI interface on a SX20

  Hi 
  Are there some who know how to create users via the CLI interface on a SX20. You can do this via the web interface but I have many video installations where I need to create a user account. Therefore, it would be easiest if I can make it through the CLI interface. 
  Best regards 
  Jesper

  Unless there's a very well hidden command somewhere, then no. As far as I know, this can only be done for the remote supportuser account;
  xcommand UserManagement ?
  xCommand UserManagement RemoteSupportUser Create
      ExpiryDays: <1..31>
  xCommand UserManagement RemoteSupportUser Delete
  xCommand UserManagement RemoteSupportUser DisablePermanently
      Confirm(r): <Yes>
  xCommand UserManagement RemoteSupportUser GetState
  /jens
  Please rate replies and mark question(s) as "answered" if applicable.

• Unable to created users through UME on portal with AS ABAP as its data sorc

  Hi,
  Unable to created users through UME on portal with AS ABAP as its data source.
  I have assigned SAP_BC_JSF_COMMUNICATION to the user SAPJSF but this only helps in editing the already existing users but not in creating new users on portal.
  I have checked that that the role SAP_BC_JSF_COMMUNICATION is properly generated and has *  in all authorizations. I have even assigned SAP_ALL and SAP_NEW to SAPJSF and another ID.
  DO we need to make any config changes to make the database writable from portal. Please advise.
  Thanks,

  Hi,
  If your system is a AS ABAP + +JAVA System,, you have to do the following
  1. Login to Client 001 using SAP GUI
  2. Create a user id
  3. Login to portal and you will be able to see the user.
  4.Assign him the portal rights
  If you want the portal to use seperate Database for USers, there is a setting in Visual admin, that you can change for the same, but i dont remember that

• "Password has expired" for user created via UME API

  Hi,
  I have written a service that processes new user accounts and uses the UME API to create them. The code works fine on my local Sneak Preview installation of EP6 SP16, allowing the created users to logon and forcing them to change their password on first login.
  When I try and run this code on EP6 SP14 it completes without generating any exceptions but when I try and login I get the message "Password has expired" and cannot login or change the users password.
  Does anyone know why?
  I have the following UME settings for both servers:
  ume.logon.security_policy.password_change_allowed = TRUE
  ume.logon.security_policy.password_change_required = TRUE
  ume.logon.security_policy.password_expire_days = 99999
  The SP14 server also uses LDAP to authenticate users primarily  and has the following setting:
  ume.persistence.data_source_configuration = dataSourceConfiguration_ads_deep_readonly_db.xml
  There are some other UME configuration differences but none that seem relevant to this problem.
  Can anyone suggest what the problem might be?
  Cheers,
  Steve Archer

  The Xp machine is fine acessing the mb
  its the macbook that is having a problem accessing the xp machine coz it says that the password has expired
  but there is no password for the user on the xp machine that i am trying to access from my mb
  so that would be:
  xp to mb = fine all working
  mb to xp = password expired even though no password required for the xp user

• Trouble Creating Users Via Web Form

  I'm having trouble creating user in a 9i database via web front end.
  I use the following sql to create the user
  strSQL="CREATE USER"""+strUser+"""PROFILE ""DEFAULT"" IDENTIFIED BY ""HELLO"" DEFAULT TABLESPACE ""DATA"" TEMPORARY TABLESPACE ""TEMP"" ACCOUNT UNLOCK"
  I then execute another two sql statments to grant "connect" thus
  strSQL="GRANT ""CONNECT"" TO "+strUser+""""
  strSQL="ALTER USER """ strUser"""DEFAULT ROLE ALL"
  Whenever I try connecting using the new users details, but get an error message that the server had problems accessing the LDAP directory service(ORA-28030).
  I'm happy that the SQL is correect as I created the account that I wanted using Enterprise Console and coppied the SQL it produced. I'm assuming that there's something in the background that is not being triggered when creating the user via the web front end.
  Can anyone tell me where I'm going wrong?
  Thanks
  Jason

  My apologies, I didn't realise HTML DB was a product. I thought it was a forum for questions regarding HTML and databases.
  Doh!!!
  Jason

• Portal: Password reset and unlock User via UME?

  I'm new to Portal and SAP.  I'm trying to find options to have a username unlocked and password sent to user based on a userid from our Portal logon page.
  The end user needs only to know their user ID, and based on this user ID I need their username to be unlocked, and a temporary password to be emailed to them (Looked up from their user ID via Database) 
  From what I've been reading UME can do this, but when I look into configuration of it I'm not seeing anything that can define this to show up on the Portal logon page.  Does this have to be developed and built in or linked as a separate page or is there a prefab one made already(nothing I could find showed evidence of this, although the documentation regarding UME hinted at this)?
  The end user doesn't need to answer security questions because to get access to the portal they already have to be on my secured network. 
  Any help would be great!
  Edited by: Andrew Urban on Aug 7, 2008 12:09 AM
  Edited by: Andrew Urban on Aug 7, 2008 12:10 AM
  Edited by: Andrew Urban on Aug 7, 2008 12:16 AM

  Andrew,
  This link might help explain what is possible with SAP Portal in terms of allowing the user to reset their password from the logon screen.
  http://help.sap.com/saphelp_nw04s/helpdata/en/45/7e6313d8780dece10000000a11466f/frameset.htm
  As for allowing a user to unlock their account from the logon page, there is no such functionality that I know of.  This would need to be developed.  We are doing something similar.  In our case, we are developing a module that allows user to retreive their user ID if they forget it.  This also is not functionality that SAP provides.  The user can specify their email address, and it emails them their user ID.  This is being developed in Web Dynpro for Java utilizing the UME APIs.
  - Andrew Castillo

• Steps Involved in creating Users thru the API

  Hi Mark or anybody from Oracle,
  Your solution to build a string for the
  XML and then parse it is ok. However I would
  like to do it programmatically instead of building strings containing the XML.
  What are the steps and exactly what attributes do you need to set for the User
  to be created programmatically.
  Here is the steps I have and It's giving me
  the following exception: IFS-30002 - Unable to create new library object.
  The objects needed to create a user are:
  1) DirectoryUserDef + set its attributes
  2) Folder Definition for User folder then add
  to parent folder in this case /home
  3) PrimaryProfileUserDefinition + set its attributes DirectoryUser and HomeFolder ?
  Can you elaborate on the exact steps to take
  and exact attributes to set.
  Thanks
  null

  #1 I would strongly recommend the XML based approach. It's much easier, and if we change the way the user / directory objects are organized in much less likely to require you to alter your code.
  Note that in order to create the objects programatically you're going to have to make sure that you have set ACLs and Owners correctly. It really is quite a complex process.
  At some later date we 'may' provide a simple Java API for creating users.
  In order to understand your error I need to catch the exception and print the stack trace as per the end of my code example for creating a user from an XML string.
  Please post the results of the stack trace and someone will attempt to respond to you.

• How to create user in UME when using ABAP as datasource

  hi, everyone
  We are using ABAP as EP user datasource, when create user in EP, it says "Current user has user creation permissions in the UME, but cannot create users in the back-end system (data source). The original and possibly untranslated message was: "No active writeable datasource found for user creation, check your Persistence Configuration."
  But we can not create in UME neither, anyone know how to do this?
  Lee

  Hi,
  Solution would be to disconnect the UME from ABAP and reboot the portal, create the user in UME, and revert back to the UME/ABAP connection again... but this is not supported:
  Changing Data Source
  Once you have chosen this data source configuration, you cannot change to any other data source configuration. For details, see SAP Note 718383.
  Source: http://help.sap.com/saphelp_nw70ehp1/helpdata/en/45/af3ac012d32e78e10000000a155369/frameset.htm
  Ask the autorisation team of the ABAP stack that is connected to you UME to create the user for you is the only solution.
  Cheers,
  Benjamin

• Error when create user via OIM web

  Hi Gurus..
  I hava some problem when I creating new user via web OIM, error appear while inpute the start date value.
  Need help for you guys,
  This is the error code.
  <Error> <oracle.adfinternal.view.faces.config.rich.RegistrationConfigurator> <BEA-000000> <ADF_FACES-60096:Server Exception during PPR, #5
  java.lang.NullPointerException
      at oracle.iam.identitytaskflow.utils.UserManagerValidationUtils.handleAccountEndDateValidation(UserManagerValidationUtils.java:237)
      at oracle.iam.identitytaskflow.utils.UserManagerValidationUtils.processDateValidations(UserManagerValidationUtils.java:589)
      at oracle.iam.identitytaskflow.utils.UserManagerValidationUtils.processDateValidation(UserManagerValidationUtils.java:543)
      at oracle.iam.identitytaskflow.common.components.UIInputDate$DateValueValueChangeListener.processValueChange(UIInputDate.java:135)
      at javax.faces.event.ValueChangeEvent.processListener(ValueChangeEvent.java:134)
      at org.apache.myfaces.trinidad.component.UIXComponentBase.broadcast(UIXComponentBase.java:675)
      at org.apache.myfaces.trinidad.component.UIXEditableValue.broadcast(UIXEditableValue.java:210)
      at org.apache.myfaces.trinidad.component.UIXSelectInput.broadcast(UIXSelectInput.java:216)
      at oracle.adf.view.rich.component.fragment.UIXRegion.broadcast(UIXRegion.java:148)
      at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:102)
      at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.run(ContextSwitchingComponent.java:92)
      at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:361)
      at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:96)
      at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:96)
      at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.broadcastEvents(LifecycleImpl.java:902)
      at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:357)
      at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:186)

  probably yes but I am not so sure about that, I have checked the User.xml for make sure this but I can't found something wrong. any clue Shashank?
  Regards,
  -Rius-

• Error creating user in UME or visual administrator

  I am trying to create solman_admin userid in J2ee. I tried first in UME - Identity Management signing in as j2ee_admin when I click on create user I get
  Current user has user creation permissions in the UME, but cannot create users in the back-end system (data source). The original and possibly untranslated message was: "No active writeable datasource found for user creation, check your Persistence Configuration.".
  I then tried signing into the Visual Administrator with j2ee_admin and creating a user there but still get an error message cannot create user.  I believe the error message above is saying that j2ee_admin does not have access to update in ABAP?  Does anyone know how to resolve this problem?

  Hi
  You are rt, check for datasource used, probably it is database. change the UME datasource from database to ABAP and connect to your production client
  regards,
  Shyam.

• Create user request from api OIM 11g r2

  Hi,
  I need to read a database and raise a request for creating uses. After  approval the user needs to be created in OIM 11g R2.
  I want to write a scheduled task which will read database columns and rasie a request to create users.
  I dont want to use UnauthenticatedSelfService api.
  Please suggest a way to achive that. any pointer / sample coede / suggestion  is helpful.

  Here are links to creating a request for a role and a resource.  https://java.net/projects/openptk/sources/svn/show/branches/Oracle/OIM11g/examples/java/OIMClient/src/oim/client/request?rev=1402
  I would suggest you start with these and modify the parameters to be for a user.  You will have to try some trial and error to get it working, unless someone already has it available.  And so far, no one who is posting does.  Give it a shot.  You can always create an SR with oracle and ask for assistance.
  -Kevin

• Creating users via the admin console

  Hi,
  I'm trying to create a user via the admin console. The user will have to
  authenticate via Membership, and will require a username and password.
  However, when creating the user via the admin console it does not allow you
  to specify a default password (or by using the command line 'ipsadmin create
  user /domain/user.xml', unless there is some XML field specified in the file
  to do that? If so, what is it? Specify an attribute in the
  "iwtAuthMembership-password"?) After creating a user via the console, I
  tried logging in using a blank password and a password the same as the
  username, but neither worked. Is this password set as default to something,
  and if so to what?
  Also, is there some existing means for a user who has already created a
  membership account to change their password? If not, then I guess I will
  have to develop some code to modify the "iwtAuthMembership-password"
  attribute.
  Thanks,
  Mark

  Hi,
  After you have created the user via the console, then the user will be added to a particular role.From the console go that particular domain and then to the role under which the user was created.Then select the Users link you can see the users list.From that list select the user for whom a password is needed,then it will lead you to a screen where you can see a link named Authentication.Expand that link and click on the Membership link there you can enter the username and password for the user