Extract UME & LDAP users

Hello All,
I have to extract emails of all users that reside in portal UME and LDAP.
I have tried 2 snippets of code but both do not give me required result.
1. IUserFactory uf = UMFactory.getUserFactory();
         int count = 0;
          try
               {     ISearchResult result = uf.getUniqueIDs();
                    while (result.hasNext())
                    {     String uniqueid = result.next().toString();
                         String a = "null";
                           IUser user = uf.getUser(uniqueid);
                           String email = user.getEmail();
                           if( (email != null) && !(email.equals("SystemMailbox") ) )
                         {     response.write(email + ";");
                              count ++;
                           //if((email != null) && (email != "SystemMailbox") )
                      response.write("Total no = " + count);
          catch(Exception e)
          {     e.printStackTrace();
2. try {
           IUserFactory userFactory = UMFactory.getUserFactory();
           IUserSearchFilter searchFilter = userFactory.getUserSearchFilter();
           ISearchResult searchResult = userFactory.searchUsers(searchFilter);
           while (searchResult.hasNext())
           {     String uniqueid = (String) searchResult.next();
               IUser user = userFactory.getUser(uniqueid);
                response.write(user.getEmail() + "<br>");
             } catch (Exception e) {
               response.write(e.getMessage());
Please guide as to what is missing.
Awaitng Reply.
Regards,
PRanjan

Hi..
Check out this:::
[Getting email id of users in portal from user profile;
[Get portal users list]
[Re: get access to ALL Portal Users by Web DynPro App;
Hope it helps..
Thanks...

Similar Messages

  • Editing LDAP User attributes from UME interface

    Hi Gurus,
    We want to develop a solution with user management screens in WD. These screens will provide password reset and unlock functionality for users. Our users are stored in LDAP. Current connection to LDAP is in Read Only manner.
    I want to know
    1. How to enable the connection from UME to LDAP in read/write manner?
    2. What certificates need to be exchanged for write access? if any?
    3. What changes needs to be done in config file of UME?
    4. Which permissions should be granted for communication user to edit LDAP user attributes?
    Even after performing the change to read LDAP in read/write manner, will it be sure: If we lock user from UME, it will lock LDAP user? please comment.
    regards
    Kedar Kulkarni

    Hi,
    We are half way into our application between UME and LDAP. We have developed screens and tested in our internal server. In internal landscape, UME is connected to LDAP in read only fashion. So when we try to create User, it gets created in UME.
    But when we deploy same application into client landscape, we receive error as below:
    No data source feels responsible for principal. Please check the data source configuration
    Now we are not sure why this error is getting displayed.
    In client landscape there are 2 LDAPs connected to UME, with only one LDAP in read/ write access.
    Is there any way we can check which LDAP is being accessed by our code? Is there any concept of Default LDAP?
    Any code to access LDAP details will help us lot.
    regards
    Kedar Kulkarni

  • Adding LDAP User store to UME

    We need to authenticate users against an LDAP server.  This works fine from the workbench where the UME ContentSource is database_only.  However, the central WebAs (Netweaver 2004) was installed with ContentSource of r3_rw.  According to the documentation, a prerequisite to adding an LDAP user store is: "You have installed a SAP Web Application Server Java where the UME is configured to use the database of the J2EE Engine as data source."  Since our WebAS Java is not configured this way, is there any way, short of re-installing the server, to add an LDAP user store?  TIA,
    Steve

    Hi Steve,
    Once you choose an ABAP data source, there is no going back.
    You can however synchronize the ABAP with the LDAP server. Have the ABAP user management periodically import users from the LDAP server.
    -Michael

  • Add UME Role to LDAP User

    Hi,
    i'm having a problem with portal user management. We have a LDAP user called charlie81 in an Active Directory Server, which has a set of LDAP groups. We have also a UME Role (a role created in the portal) called "Manutenzione". Our target is to assign "Manutenzione" to charlie81 through the portal. I made it but when charlie81 is logged in, he can see only LDAP Roles; "Manutenzione" is not visible!!!! How can i resolve this problems? Do you help me, please? Thank you in advance, Carlo Paglia

    Hi,
    What kind of role did you assign to the user? A portal role (source = portal role) or a "UME role" (source = UME database)?
    If it's a portal role, is it a standard or a custom role? If it is a custom portal role, make sure an entry point is defined or your role won't be visible. Here's a link to the documentation : [Defining Entry Points|http://help.sap.com/saphelp_nw70ehp1/helpdata/en/4e/3e703e632c7937e10000000a114084/frameset.htm].
    Regards,
    Pierre

  • Difference between UME and LDAP users

    Hi,
    I am facing a strange problem. In my Webdynpro application, I am accessing the portal user properties using the normal user management APIs. IUser object. On my local server, all the users are UME users and it runs fine.
    When I deployed my application on the central server which creates LDAP users by default, the code bombs saying the user is not authorized. When I recreate the user in UME, it is fine again. Are there APIs which I can use which work for both the user stores?
    Thanks in advance,
    Kiran

    Hi Kiran,
    I User object works for both the cases. Just try the below code.
    <%@ page import = "com.sap.security.api.IUser" %>
         private void getUser() {
              user = compRequest.getUser();
              userId = user.getUniqueID();
              userName = user.getUniqueName();
    It worked for me for getting the users from LDAP.
    Regards,
    Santhosh

  • UME - Creating users in LDAP via Anonymous account

    I want to create users in LDAP via UME security API's. I am using
    IUserManagementEngine umService = (IUserManagementEngine) PortalRuntime.getRuntimeResources().getService( IUserManagementEngine.KEY );
    and saving/commiting values etc using IUserFactory and IUserAccountFactory. It throws an exception
    LDAP: error code 53 - 0000052D: SvcErr: DSID-031A0FC0, problem 5003 (WILL_NOT_PERFORM), data 0
    Inference - User doesnt have permission to create users in LDAP.
    I am in an anonymous portal and I am writing a custom application to create users in LDAP, so there is no logged in user to which extra rights can be added to.
    So to which user should I assign the extra rights to write to LDAP? How can I achieve this?
    Thanks for hints, Dhanz

    Hi,
    LDAP users are coming from external directory.
    Portal UME is differnt from LDAP.  UME users and LDAP users are differnt.
    You can created users in UME as long as you have user administration rights.
    But LDAP needs special permissions as the external user directory is integrated in portal.
    So you should have  full or write permission to that external directory through LDAP.
    Raghu

  • LDAP users Faicng Error While Accessing the ESS Iviews in Portal

    Hi,
    My Portal is SAP EP 7.0 SP20 And ECC 6.0 SP16.
    UME users able to access the ESS MSS Iviews.But only one LDAP User only access ESS/MSS Iviews Other getting the Below error.
    Critical Error
    A critical error has occured. Processing of the service had to be terminated. Unsaved data has been lost.     
    Please contact your system administrator     
    Syntax error in program CL_XSS_CAT_BUFFER=============CP        ., error key: RFC_ERROR_SYSTEM_FAILURE     
    Syntax error in program CL_XSS_CAT_BUFFER=============CP        ., error key: RFC_ERROR_SYSTEM_FAILURE:
    com.sap.tc.webdynpro.modelimpl.dynamicrfc.WDDynamicRFCExecuteException: Syntax error in program CL_XSS_CAT_BUFFER=============CP        ., error key: RFC_ERROR_SYSTEM_FAILURE
                    at com.sap.tc.webdynpro.modelimpl.dynamicrfc.DynamicRFCModelClassExecutable.execute(DynamicRFCModelClassExecutable.java:101)
                    at com.sap.xss.ser.xssmenu.fc.ModelHandler.onInit(ModelHandler.java:205)
                    at com.sap.xss.ser.xssmenu.fc.wdp.InternalModelHandler.onInit(InternalModelHandler.java:428)
                    at com.sap.xss.ser.xssmenu.fc.FcXssMenu.setPersonnelNumber(FcXssMenu.java:570)
                    at com.sap.xss.ser.xssmenu.fc.FcXssMenu.onInit(FcXssMenu.java:292)
                    at com.sap.xss.ser.xssmenu.fc.wdp.InternalFcXssMenu.onInit(InternalFcXssMenu.java:455)
                    at com.sap.xss.ser.xssmenu.fc.FcXssMenuInterface.onInit(FcXssMenuInterface.java:165)
                    at com.sap.xss.ser.xssmenu.fc.wdp.InternalFcXssMenuInterface.onInit(InternalFcXssMenuInterface.java:389)
                    at com.sap.xss.ser.xssmenu.fc.wdp.InternalFcXssMenuInterface$External.onInit(InternalFcXssMenuInterface.java:546)
                    at com.sap.pcuigp.xssfpm.wd.FPMComponent$FPM.attachComponentToUsage(FPMComponent.java:922)
                    at com.sap.pcuigp.xssfpm.wd.FPMComponent$FPM.attachComponentToUsage(FPMComponent.java:891)
                    at com.sap.pcuigp.xssfpm.wd.FPMComponent$FPMProxy.attachComponentToUsage(FPMComponent.java:1084)
                    at com.sap.pcuigp.xssutils.navi.FcNavigation.onInit(FcNavigation.java:314)
                    at com.sap.pcuigp.xssutils.navi.wdp.InternalFcNavigation.onInit(InternalFcNavigation.java:358)
                    at com.sap.pcuigp.xssutils.navi.FcNavigationInterface.onInit(FcNavigationInterface.java:145)
                    at com.sap.pcuigp.xssutils.navi.wdp.InternalFcNavigationInterface.onInit(InternalFcNavigationInterface.java:142)
                    at com.sap.pcuigp.xssutils.navi.wdp.InternalFcNavigationInterface$External.onInit(InternalFcNavigationInterface.java:278)
                    at com.sap.pcuigp.xssfpm.wd.FPMComponent$FPM.attachComponentToUsage(FPMComponent.java:922)
                    at com.sap.pcuigp.xssfpm.wd.FPMComponent$FPM.attachComponentToUsage(FPMComponent.java:891)
                    at com.sap.pcuigp.xssfpm.wd.FPMComponent$FPMProxy.attachComponentToUsage(FPMComponent.java:1084)
                    at com.sap.pcuigp.xssutils.roadmap.VcRoadmap.onInit(VcRoadmap.java:188)
                    at com.sap.pcuigp.xssutils.roadmap.wdp.InternalVcRoadmap.onInit(InternalVcRoadmap.java:162)
                    at com.sap.pcuigp.xssutils.roadmap.VcRoadmapInterface.onInit(VcRoadmapInterface.java:153)
                    at com.sap.pcuigp.xssutils.roadmap.wdp.InternalVcRoadmapInterface.onInit(InternalVcRoadmapInterface.java:144)
                    at com.sap.pcuigp.xssutils.roadmap.wdp.InternalVcRoadmapInterface$External.onInit(InternalVcRoadmapInterface.java:220)
                    at com.sap.pcuigp.xssfpm.wd.FPMComponent.doProcessEvent(FPMComponent.java:564)
                    at com.sap.pcuigp.xssfpm.wd.FPMComponent.doEventLoop(FPMComponent.java:438)
                    at com.sap.pcuigp.xssfpm.wd.FPMComponent.wdDoInit(FPMComponent.java:196)
                    at com.sap.pcuigp.xssfpm.wd.wdp.InternalFPMComponent.wdDoInit(InternalFPMComponent.java:110)
                    at com.sap.tc.webdynpro.progmodel.generation.DelegatingComponent.doInit(DelegatingComponent.java:108)
                    at com.sap.tc.webdynpro.progmodel.controller.Controller.initController(Controller.java:215)
                    at com.sap.tc.webdynpro.progmodel.controller.Controller.init(Controller.java:200)
                    at com.sap.tc.webdynpro.clientserver.cal.ClientComponent.init(ClientComponent.java:430)
                    at com.sap.tc.webdynpro.clientserver.cal.ClientApplication.init(ClientApplication.java:362)
                    at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.initApplication(ApplicationSession.java:782)
                    at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doProcessing(ApplicationSession.java:302)
                    at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessingPortal(ClientSession.java:761)
                    at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessing(ClientSession.java:696)
                    at com.sap.tc.webdynpro.clientserver.session.ClientSession.doProcessing(ClientSession.java:253)
                    at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:149)
                    at com.sap.tc.webdynpro.clientserver.session.core.ApplicationHandle.doProcessing(ApplicationHandle.java:73)
                    at com.sap.tc.webdynpro.portal.pb.impl.AbstractApplicationProxy.sendDataAndProcessActionInternal(AbstractApplicationProxy.java:869)
                    at com.sap.tc.webdynpro.portal.pb.impl.AbstractApplicationProxy.create(AbstractApplicationProxy.java:229)
                    at com.sap.portal.pb.PageBuilder.updateApplications(PageBuilder.java:1344)
                    at com.sap.portal.pb.PageBuilder.createPage(PageBuilder.java:356)
                    at com.sap.portal.pb.PageBuilder.init(PageBuilder.java:549)
                    at com.sap.portal.pb.PageBuilder.wdDoInit(PageBuilder.java:193)
                    at com.sap.portal.pb.wdp.InternalPageBuilder.wdDoInit(InternalPageBuilder.java:150)
                    at com.sap.tc.webdynpro.progmodel.generation.DelegatingComponent.doInit(DelegatingComponent.java:108)
                    at com.sap.tc.webdynpro.progmodel.controller.Controller.initController(Controller.java:215)
                    at com.sap.tc.webdynpro.progmodel.controller.Controller.init(Controller.java:200)
                    at com.sap.tc.webdynpro.clientserver.cal.ClientComponent.init(ClientComponent.java:430)
                    at com.sap.tc.webdynpro.clientserver.cal.ClientApplication.init(ClientApplication.java:362)
                    at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.initApplication(ApplicationSession.java:782)
                    at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doProcessing(ApplicationSession.java:302)
                    at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessingStandalone(ClientSession.java:741)
                    at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessing(ClientSession.java:694)
                    at com.sap.tc.webdynpro.clientserver.session.ClientSession.doProcessing(ClientSession.java:253)
                    at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:149)
                    at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doContent(DispatcherServlet.java:62)
                    at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doPost(DispatcherServlet.java:53)
                    at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
                    at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
                    at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
                    at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
                    at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:386)
                    at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:364)
                    at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:1039)
                    at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:265)
                    at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
                    at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175)
                    at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
                    at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
                    at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
                    at java.security.AccessController.doPrivileged(Native Method)
                    at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:104)
                    at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:176)
    Caused by: com.sap.aii.proxy.framework.core.BaseProxyException: Syntax error in program CL_XSS_CAT_BUFFER=============CP        ., error key: RFC_ERROR_SYSTEM_FAILURE
                    at com.sap.aii.proxy.framework.core.AbstractProxy.send$(AbstractProxy.java:150)
                    at com.sap.pcuigp.xssutils.xssmenu.model.MenuModel.hrxss_Ser_Getmenudata(MenuModel.java:171)
                    at com.sap.pcuigp.xssutils.xssmenu.model.Hrxss_Ser_Getmenudata_Input.doExecute(Hrxss_Ser_Getmenudata_Input.java:137)
                    at com.sap.tc.webdynpro.modelimpl.dynamicrfc.DynamicRFCModelClassExecutable.execute(DynamicRFCModelClassExecutable.java:92)
                    ... 76 more
    Thanks & Regrads,
    Subba Rao

    Hi,
    Now every user facing the same error while accessing ESS Iviews from Portal.
    in ST22 Dump is created.
    What happened?                                                                                |
    Error in the ABAP Application Program
    The current ABAP program "CL_XSS_CAT_TIME_SHEET=========CP" had to be
    terminated because it has
    come across a statement that unfortunately cannot be executed.
    The following syntax error occurred in program
    "CL_XSS_CAT_BUFFER=============CP " in include
    "CL_XSS_CAT_BUFFER=============CM00C " in
    line 50:
    ""L_CATSDB" and "L_CATSDBCOMM" are not mutually convertible. In Unicode"
    " programs, "L_CATSDB" must have the same structure layout as "L_CATSDB"
    "COMM", independent of the length of a Unicode character."
    The include has been created and last changed by:
    Created by: "SAP "
    Last changed by: "SAP "
    Error in the ABAP Application Program
    The current ABAP program "CL_XSS_CAT_TIME_SHEET=========CP" had to be
    terminated because it has
    |    come across a statement that unfortunately cannot be executed.
    What we need to resolve the above issue.
    Thanks & Regards,
    Subba Rao

  • How to enable only a subset of LDAP users to be able to login to OBIEE

    We have enabled LDAP authentication. Now every single LDAP user can login to Presentation server. That is an issue. Not all LDAP users are OBIEE users. Only a small subset of the LDAP users should be able to access OBIEE. We have a database table that lists all OBIEE users. This table however does not have user password information. User Password information is stored in the LDAP.
    so question is how do we limit OBIEE access to only OBIEE users and not all LDAP users.
    Thank you

    Thanks for your suggestion. If i understand it correctly, user will still be able to login to Presentation server but will not have access to any content using your solution approach. Did i get it right?
    In my current setup, user gets authenticated against LDAP, then i extract user group for that user and assign it to GROUP. Only those users gets assigned to GROUP who have access to OBIEE. We have secured RPD and Catalogs so that user must be a member of at least one GROUP to be able to access content.
    Right now, a LDAP user who is not present in OBIEE user table, is able to login to BI Presentation server but is not able to see any thing. Because user gets authenticated, but does not have any authorization rights. So far so good.
    I would like to take next step, where use login to BI Presentation server is denied if user id does not exist in the OBIEE user table ( but exists in the LDAP).
    Thank you

  • UME LDAP configuration XML file

    Dear Experts-
    I am configuring multiple LDAP as ume for EP 7.0 EHP2 . I am following the the document below.
    http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/8036faa9-3d95-2c10-e596-c7c97082f07e?QuickLink=index&overridelayout=true
    It mentions xml file to be dowloaded is  dataSourceConfiguration_multiLDAP_db.xml file but ther eis no such file. Can you please let me know where I can find this.
    The only ones I see are.
    Microsoft ADS readonly , deep and flat
    Microsoft ADS Deep & flat
    Novell LDAP Read only flat and deep
    Novell LDAP flat & deep
    DatasourceConfiguration_simens_deep_readonly_db
    Siemes LDAP servers Read flat & deep
    Just to let you know we are using MS ADS flat. Please  let me which which file I can choose to put the second LDAP data source.
    Thanks,
    John

    John,
    There is no such file (dataSourceConfiguration_multiLDAP_db.xml) delivered for configuring multiple LDAP data sources.
    You will need to download dataSourceConfiguration_ads_readonly_db.xml and modify as per your needs and upload it with your own custom name.
    1. Open the dataSourceConfiguration_ads_readonly_db.xml file using a text
    editor (other than Notepad) and locate the <dataSource.../> section for the u201CCORP_LDAPu201D.
    2. For each additional LDAP server, paste the copy into the document after the original
    </dataSourceu2026> ending tag for the CORP_LDAP source. Change the name of the data source for
    pasted copy to u201CCORP_LDAP_Xu201D or some other value. This value becomes a data source identifier
    for UME and prefixes the principal Ids.
    For each LDAP data source, locate the <privateSectionu2026> within the <dataSourceu2026> tag and
    enter the following lines if they are not present:
    <ume.ldap.access.server_name>SERVER_HOSTNAME</ume.ldap.access.server_name>
    <ume.ldap.access.server_port>SERVER_PORT</ume.ldap.access.server_port>
    <ume.ldap.access.user>DS_USER_NAME</ume.ldap.access.user>
    <ume.ldap.access.password>DS_PASSWORD</ume.ldap.access.password>
    <ume.ldap.access.base_path.user>USER_ROOT_IN_DS</ume.ldap.access.base_path.user>
    <ume.ldap.access.base_path.grup>GROUP_ROOT_IN_DS</ume.ldap.access.base_path.grup
    >
    Save this file with your custom name and upload it.
    Thanks,
    Shanti

  • How to reset all ldap users locale in ep7

    Hi all:
       We have ep7. Our ep7 ume is connected to Windows Active Directory.   However, all users's locale is empty. Can I reset all these user's locale to en, is there any place for configure the default locale in UME LDAP ?

    Hi
              Please check SAP Note Number: 684741.
    Cheers.
    Please award points for helpful answers.

  • User status shows active in portal for inactive LDAP users

    Hi all,
    Users listed in the LDAP as deleted or inactive are still listed in EP
    User Management as valid active users.
    1) is there any process or OSS note which can help us to get users
    inactive in portal user management to the corresponding LDAP inactive
    users?
    2) is there any chance that any inactive or deleted entries in LDAP
    should not be searchable from User admin Portal search?
    Any solution for the above problem?
    Please reply.
    Regards,
    haroon

    Hello there,
    i have the same problem: We have several domains that sometimes contain users with the same user-id. This happens, if a user is "moved" from one domain to another: A new user with the same user-id is created in the new domain and the user-status of the user in the old domain is set to "inactive".
    But SAP NetWeaver Portal (7.0 EHP 1) ignores this user-status flag and thus login (with SPNego / Integrated Windows Authentication, which does not send the domain of an identified user to the portal) fails.
    Is there a possibility to get the portal to "ignore" LDAP users (meaning no longer list them in the UME) that have their user-status flag set to "inactive"?
    Thanks for a reply in advance!
    Regards,
    René

  • Guide me how to automate UME LDAP Configuration

    Hello colleagues,
    I am not sure if this is the right place for putting my question.
    We wanted to automate 'UME LDAP Configuration with Microsoft AD', because we have nearly 25 portals and has to be refreshed for every 3 months from different systems. Instead of configuring UME  every time, we wanted to automate it such that
    it can be done by one click for each portal.
    I am not aware, if it can be done through Webdynpro or Java API.
    Please let me know in which way we can achieve this functionality. If it is in Java then please let me know how to access UME APIs. Moreover Configtool will not save its data at O.S level, it stores in DB.
    Please guide me on achieving this.
    Regards,
    kasi

    Hi Nivas,
    thank you very much for your answer.
    Could you please let me know any APIs to use these functions
    I googled and found APIs for User management ( creating,deleting ,etc..) only.
    I could not find any APIs for LDAP settings in Configtool.
    I wanted to set these values ( which are specified in above link ) from out side.
    Regards,
    venkat
    Edited by: Venkata Kasi G on Mar 2, 2012 2:41 PM

  • UME LDAP Data - XML file not appearing

    Hi,
    I have configured the readonly ADS with DB for the user authentication. Now I want to restore back to the default datasource configuration (dataSourceConfiguration_database_only.xml). But in the dropdown box in the Configtool >> UME LDAP data under the "Directory Security" tab, I am not able see the config XML file for the DB only. I tried uploading the file, but its saying file already exists. After this I tried deleting the fils from the cluster_data\server\persistent\com.sap.security.core.ume.service and then uplaoded the XML file. Still this is not appearing in the List of Datasources available.
    Can you please let me know how shall I revert the Datasouce to DB only?
    Regards,
    Debasis

    Hi,
      Go to ConfigTool -> Global Server Configuration -> Services -> com.sap.security.core.ume.service.
    You can change the value of ume.persistence.data_source_configuration to dataSourceConfiguration_database_only.xml.
    Regards,
    Siva
    P.S: Award points if you find this useful.

  • UME: Ambigious users in user admin

    Hi all,
    This is a very basic doubt. I am hoping to get some in-dept understanding for the same.
    UME is integrated to LDAP (read-only).
    This is my understanding. If I were to create a Test user ID in the UME database same as any ID already existing in the LDAP Directory, that ID fails to log-in to the portal anymore. This particular UME ID can log in only if I BLOCK the ID from LDAP (which painfully requires a system restart).
    Here is where I am stuck. I have an LDAP ID. The same ID is seen/created as a test ESS user over the UME database. It logs in! How is this happening?
    Help!
    Rosun

    Hi Nikhil,
    The ID is a number: 718027. What would you mean by attached to a domain? In my case, all LDAP users are under a single domain.
    Thanks and regards,
    Rosun
    Edited by: Rosun Raj Kumar on Jan 10, 2011 6:19 AM

  • "Calculated UME LDAP id is null" error received during runtime.

    Hello All,
    I am new to this community and this is my first post.
    Therefore please pardon me for providing inadequate explanation/resources while mentioning my problem.
    I am trying to build a SOAP webservice in SAP NetWeaver Developer Studio 7.3. This webservice will be used for integration between SAP user management  (AS Java)  with Dell's Quest Identity Management (Q1IM).
    The webservice will be used for
    Fetching
    -> All UME Users
    -> All UME Groups
    -> All UME Roles
    Add/Delete
    -> User to/from Group
    -> User to/from Role
    Change
    -> User Account Details
    The current scenario is the webservice built in Java is ready and all the functional components are working fine during runtime except for one and that is when I try to retrieve all the UME Users.
    Below mentioned piece of code is for getAllUser function
        public  SAPUser[] getAllUsers() throws UMException {
        IUserFactory userFactory = UMFactory.getUserFactory();
        IUserSearchFilter searchFilter = userFactory.getUserSearchFilter();
        searchFilter.setDisplayName("*", ISearchAttribute.LIKE_OPERATOR, false);
        ISearchResult searchResult = userFactory.searchUsers(searchFilter);
        ArrayList<SAPUser> ar = new ArrayList<SAPUser>();   
        while (searchResult.hasNext())
        String uniqueid = searchResult.next().toString();
        if (uniqueid.startsWith("USER.PRIVATE_DATASOURCE.un"))
            IUser user = userFactory.getUser(uniqueid);
            IUserAccount[] userAcc = user.getUserAccounts();
            for (int i = 0; i<userAcc.length;i++)
            ar.add(new SAPUser(userAcc[i]));
        SAPUser[] users = new SAPUser[ar.size()];
      return ar.toArray(users); 
    Similar logic have been used for Groups and Roles and they are working fine.
    During runtime it gives following error
    Web service returned error. Fault Code: "(http://schemas.xmlsoap.org/soap/envelope/)Server" Fault String: "Calculated UME LDAP id is null"
    (Screenshot has also been attached)
    I tried searching for a solution on internet and specially on SAP SCN but couldn't come across any suitable option.
    Thereby my request to member-experts of this forum to please look into my matter mentioned above and provide some appropriate solution for it.
    Thanks in advance.
    Regards,
    Tanuj Jaitly

    Hi Soumya,
    Thanks for the valuable suggestion.
    Now I have another situation and this I would like to share with you and other experts in this forum.
    Apart from above scenario I was trying to fetch all the LDAP users as well, but due to large number of employees in my organization I received Connection Time Out. We thus changed our requirement.
    We now want to display those LDAP users which have UME roles and groups associated with their accounts. In other words LDAP users who can login to SAP Java portal to access their roles and groups.
    From UME API as getLastSuccessfulLogonDate()  and getPreviousSuccessfulLogonDate() are already deprecated I am unable to find any concrete solution.
    Request to please help. Thanks in advance.
    Tanuj Jaitly

Maybe you are looking for