JAZN user entries in LDAP

Similar Messages

• HELP !!!  "Cannot modify the user entry because no matching user was found"

  I have read all I have found about ISW (identity synchronization for windows).
  However I keep bumping into this exact same problem. I am desperate since I cannot seem to
  figure out the cause. Can someone please help a very desperate person ??
  On the AD side the user test5 resides in an OU called "Admin Users". Even if I add test5 into the windows OU of people it still does not work.
  Solaris 10, update 8
  Directory Server 6.3.1 (DS)
  Identity Manager 8.1.0 (IDM)
  System Identity Synchronization for Windows 6.0
  MySql 5.1.41 (CE)
  /// Warning message
  [28/Dec/2009:10:47:18.197 -0500] WARNING 19 CNN101 idmserver "Cannot modify the user entry because no matching user was found, action=Type: MODIFY SUL: SUL1 {Data Attrs: [REPL unicodepwd: ****]} {Other Attrs: cn: test five nsuniqueid: df2cb501-ef1e11de-8029a367-1c30f1b6 objectclass: top, person, organizationalPerson, inetorgperson, account, posixAccount, shadowAccount, machineuser, dspswuser dn: uid=test5,ou=people,dc=host,dc=company,dc=com changenumber: 27323}." (Action ID=CNN100-125D5CFBF36-13600, SN=5)
  /// SUL definition
  Sun Java System=> Directory source: dc=host,dc=company,dc=com Base DN: dc=host,dc=company,dc=com
  Windows => Directory source: host.company.com Base DN: dc=host,dc=company,dc=com
  /// unix ldap information
  root@idmserver /: ldaplist -l passwd test5
  dn: uid=test5,ou=people,dc=host,dc=company,dc=com
  givenName: test
  sn: five
  loginShell: /bin/bash
  machinegroup: admin
  uidNumber: 1427
  gidNumber: 10
  objectClass: top
  objectClass: person
  objectClass: organizationalPerson
  objectClass: inetorgperson
  objectClass: account
  objectClass: posixAccount
  objectClass: shadowAccount
  objectClass: machineuser
  objectClass: dspswuser
  uid: test5
  gecos: test five
  cn: test five
  homeDirectory: /net/host/vol/vol1/home/test5
  userPassword: {crypt}SQDp2i8F9mAyc
  // AD windows ldap information
  Dn: CN=test five,OU=Admin Users,DC=host,DC=company,DC=com
       objectClass: top; person; organizationalPerson; user;
       cn: test five;
       sn: five;
       givenName: test;
       distinguishedName: CN=test five,OU=Admin Users,DC=host,DC=company,DC=com;
       instanceType: 0x4 = ( IT_WRITE );
       whenCreated: 12/28/2009 16:46:55 Eastern Standard Time Eastern Daylight Time;
       whenChanged: 12/28/2009 17:29:52 Eastern Standard Time Eastern Daylight Time;
       displayName: test five;
       uSNCreated: 36921;
       memberOf: CN=Domain Admins,CN=Users,DC=host,DC=company,DC=com;
       uSNChanged: 36935;
       name: test five;
       objectGUID: 1210235b-61b4-4fd8-bc4b-7455d1e31554;
       userAccountControl: 0x200 = ( UF_NORMAL_ACCOUNT );
       badPwdCount: 0;
       codePage: 0;
       countryCode: 0;
       homeDirectory: \\server\profile$\test5\home;
       homeDrive: H:;
       badPasswordTime: 01/01/1601 00:00:00 UNC ;
       lastLogoff: 01/01/1601 00:00:00 UNC ;
       lastLogon: 01/01/1601 00:00:00 UNC ;
       pwdLastSet: 01/01/1601 00:00:00 UNC ;
       primaryGroupID: 513;
       profilePath: \\server\profile$\test5\profile;
       objectSid: S-1-5-21-2511962931-1144655276-2379676629-1153;
       adminCount: 1;
       accountExpires: 09/14/30828 02:48:05 UNC ;
       logonCount: 0;
       sAMAccountName: test5;
       sAMAccountType: 805306368;
       objectCategory: CN=Person,CN=Schema,CN=Configuration,DC=host,DC=company,DC=com;
  Edited by: mightbe on Dec 30, 2009 8:22 AM

  Hi,
  This might be a stupid question but what happens when you perform a recon against AD? Once complete does the index list the account as confirmed, unknown etc?
  Ant.

• Authenticate Users Using an LDAP Server

  Hi,
  I did implement 'Authenticate Users Using an LDAP Server' according the link blow below.
  [http://www.oracle.com/technology/products/database/application_express/howtos/how_to_ldap_authenticate.html]
  It works OK to specific DN String, example 'cn=%LDAP_USER%,OU=Menahel,OU=Cmp,DC=ho,DC=discount'.
  We have a lot of domain rules, mean the users not located at the same DN.
  Is it possibale to use general DN string (base root) like 'cn=%LDAP_USER%,*,*,DC=ho,DC=discount?
  Thanks in advance,
  Shay

  Augusto, one thing to check (since it caught me out) is that your LDAP entries conform to the right format, namely
  "cn=Bob" etc
  When I was integrating HTMLDB LDAP against a Sun One Directory Server, it had me scratching my head for ages, until I realised that the LDAP entries had been created in the format of -
  "uid=bob" rather than "cn=bob"
  This might not be your problem, but it's worth checking anyway ;)

• AP Aging report - key date for user entry

  Hi All,
  We have a requirement to calculate aging buckets like 0-30,31-60,61-90...etc.
  I know the key date for this report is created on net due date in SAP standard report.
  In standard SAP report , key date is always a system date(SY-DATUM).
  What we need for this report is , we need to get all the invoices which are outstanding as of that date(the date which user enters).
  If user enters today's date(08/28/07) , he should get all the invoices outstanding till that date in aging buckets and if user enters some date in the past like 07/26/07, he should get all the invoices outstanding as of that date.
  Can  someone Pls tell me if aging buckets are calculated based on a user entry ?
  Regards,
  Kumar

  Hi Voodi,
  Aging in the standard report is being calculated like below...
  1.For open items
  Posting date<key date
  Item status = O
  2.Posting date < keydate and clearing date > key date and net due date with offsets on keydate ( key date + 1 - keydate+30 --- for 1-30 days) like wise for all aging buckets.
  in this scenarion , key date is always system date ie today's date.
  But user wants to get all the invoices based on his user entry...
  is this possible with the same standard key date variable or do we need implement any other logic???
  Regards,
  Kumar

• Check user entry in Customer Exit Variable in i_step2

  Hi Folks,
  at the moment I'm facing a challenging problem. In an BW Query i have a Customer Exit defined as "not ready for Input" to catch the Variable in I_Step = 2 and fill by a certain algorithm. When i change the CE Variable to "Inputready", the user can enter values, but i have no chance to react on these values as i_step = 2 will not b reached during execution- And this behaviour is correct. BUT is there any chance to Check user entries in an Customer Exit variable and change this somehow in des code?
  Thanks for all replies.
  BR,
  Maik

  Hi there,
  It is possibel depending on what you wish to accomplish.
  You can create two variables for the same characteristic.
  The first is an input ready variable for the user to enter the data and the second is a not input ready variable CE where you can in step 2 process the data entered from the variable ready for input.
  You can than fill the CE variable with any data, but you will have the variable restricted by the two variables (the ready for input and the CE).
  But for validating you could throw an error message based on the variable input ready.
  Diogo.

• R/3 users Authntication to LDAP?

  Hello,
  I have configured the LDAP Conenctor using Tx LDAP from R/3 4.7 running on AIX Server to MS-ADS LDAP Server.
  After making all the settigns i have run the report RSLDAPSYNC_USER for synchronizing the users between R/3 amd LDAP.
  Then the Users available in LDAP are getting Updated and Created in R/3, but the users in R/3 are not getting created. Its giving the LDAP_CREATE Failed, Restriction Violated For this I have posted in the previous thread.
  I want to know some of my assumptions are correct / wrong.
  1. If we do all these settings, when the User try to login he will be authenticated to LDAP?
  2. In MS-ADS the password length is more than 8 char we can have, but in SAP its 8 char, do we need to increase this field length.
  3. Or if the user changes the password in MS-ADS, do we need to run the synchronization again.
  4. We are assuming that if the LDAP configuration is finished then the users are not required to maintain or change their passwords in R/3 instead they can use the MS-ADS password and changes also in MS-ADS. Is this assumption right?
  Please Sugegst me.
  I am still investigating for the sync from R/3 to LDAP.
  The User available in LDAP is created in R/3 but there is no password allocated for him. Do i need to mention the password attribute also in the mapping, if so can any one please let me know the attribute and corresponding filed of R/3.
  Thanks & Regards
  Sumanth
  [email protected]

  Hi Prakas,
  I Logged the OSS Message for Checking the Issues of Authentication to LDAP from SAP R/3.
  Please find the Below Clarifications and SAP Replies along with the SAP Notes.
  Questions Posted in OSS Message:
  We need to get confirmation that, is this LDAP is for Authenticating like EP or only for Having the Sync Data between both systems?
  Secondly when the Users are getting created in Active Directory, they are in Deactivate Mode, To make it automatically aactive do we need to set any settings in R/3 or Directory, for this we searched the Notes and Documentation, but could not succeeded.
  Please Suggest. Our main concern is can we achieve the Authentication From LDAP as like in EP -> LDAP in this R/3 or not? The Users are expecting to do authentication, instead to maintain the passwords at different
  places.
  Replies from SAP
  - login in this manner is not possible, see note 603208
  - syncing the password is also not possible.
  - in general, please read note 448360 about features provided in the
  LDAP area.
  0000448360  Requests in the LDAP environment (directory integration) 
  0000603208  Passwords during the LDAP user master synchronization 
  But, I think we can achieve Authentication in Another Way, NTLM Authentication, For this You Need to Do SAP GUI Client Maintenance Also.
  I am in Collection of More DEtails in this Area. Once I get all info and procedure i will update you.
  Regards
  Sumanth

• User entry in a query

  Hi All,
  I have a  query wherein I want to have a user entry but do not want the query result to be affected by it.
  The details of the query are such that in this query I am calculating Sales actuals by posting period (selecting constant months to make a quarter) and sales commitment  by a normal characteristic Fiscal quarter.
  Is it possible that I have a user entry for quarter and have that quarter (selected by the user) displayed in the query but at the same time display the entire data of the query?
  Please advise.
  Thanks and warm regards,
  Sharmishtha

  Hi Anil,
  In rows I have CGL Branch (user netry/multiple values), organizational division(zdivision/user entry) and sales district. In th columns I have Previous to previous year's sales(SALDR NOTECASH restricted with fiscal year/ user entry variable with offset -2) similarly I have previous year's sales. Then I have current year's Q4 sales. For this I have restricted the same key figure with fiscal year/user entry and posting period=jan,feb,mar). This is because ZBDMIS1 does not have ZFIQUART1(fiscal quarter). Then similarly I have to calculate for all the quarters of the current year. Alongside I also have to calculate the commitments for all the quarters. For this I created a cube in which I included ZFIQUART1 (and loaded thru flat file), as customer will give data in quarter. Finally I made query on the multiprovider. Now, in the query I created a new selection for commitment of Q1 and restricted Sales Commitment Value with fiscal quarter = quarter1 and similarly for all quarters.
  But the values of the Sales Commitment val is not coming at all.
  Also I wanted to put quarter as user entry. (just as a display of the selected quarter in columns, we don't want it to filter the data)
  Thanks and warm regards,
  Sharmishtha

• Current date as deafult for Calender Day and user entry

  Hello All,
  There is a select option for Calender Day for a BW query.
  This Calender Day should have a default as Current Date and User entry is also possible.
  I have used a Customer exit and written the following code under i_step = 1
  data: v_currdt like sy-datum.
  clear: v_currdt, vfl_range.
           if i_step = 1.
            vfl_range-sign = 'I'.
            vfl_range-opt = 'EQ'.
            v_currdt = sy-datum.
            vfl_range-low = v_currdt.
            append vfl_range to e_t_range.
           endif.
  Please inform if this code is incorrect, because I am not able to see the date at all.
  Cheers,
  KP

  Hi
  Check with this code!
  Implemented for the same function as you require.-
  if i_step = 1.
    case i_vname.
      WHEN 'ZZZZZZ'.
        IF i_step = 1.
          REFRESH e_t_range.
          CLEAR l_s_range.
          l_date1 = sy-datum.
          L_S_RANGE-LOW = l_date1.
          L_S_RANGE-SIGN = 'I'.
          L_S_RANGE-OPT  = 'EQ'.
          APPEND L_S_RANGE  TO E_T_RANGE.
        endif.
    endcase.
  endif.
  Regards
  M.A

• User entry variable with exclude values

  Hello All,
  I created a  user entry/ default value variable, which allows multiple single values and is optional entry. And I also got to exclude few values from this infoobject as well as have a variable.  When I select and exclude my value from selsction and run the report, I get a system error and the varibale is converted to mandatory entry. The detail error message is displayed below.  Any useful input will be awarded
  Diagnosis
  Variable &V1& is used in the query in such a way, that an optional entry is not possible.
  For example, you might be using an "Exclude", or the variable might be connected using OR to additional selections for &V2& in the global filter, but is still displayed in the columns selections.
  It is also not possible to use an optional parameter variable to fill an interval selection in either the from-field or the to-field.
  System response
  Procedure
  If you are able to accept the mandatory entry, you need not do anything. Otherwise you must work with several variables in the query. You can use an optional interval variable to do this.
  Procedure for System Administration

  Hello ,
  I did try creating a variable with the foll details:
  Variable Type : User Entry / Default Value
  Variable Represents : Multiple Single values
  Variable entry optional
  When I run the query it converts my variable to mandotary entry.  but I want to have optional user entry variable.
  Any help will be awarded

• How to show all the user entry variables in a workbook.

  Hi,
  My user need to see in the workbook all variables he had entered in the variable entry popup at the openning of the workbook.
  I know how to show all the variables, included the hardcoded variable in the query (with a text element, select the checkbox "Display All Statics Filters"), but I need only the user entry variables.
  There is a way to print only these variables?
  Thank you

  Thanks, but the problem is that this workbook is my Global default workbook used for all the queries. So I only want the user entry variables visible automaticly.
  There is a way to do that ?
  For information, i'm using Netweaver 7.
  Thank you

• How to Enable the LOV to query for partial user entries in af:query in an ADF search form

  Hi guys,
  I have faced one issue in creating a search form in ADF, in that I have used af:query and table region. and I have attached an lov vo to the base vo for the list of values and given UI hint as Input values with List of values. Now the issue is that I have given auto submit property as true so when I give some value suppose "Jan-14" and tab out it gives me all the correct results. but if I give like "Jan%" and then tab out then it does not give me any value. Could you kindly help me with some solution. I am using Jdev 11.1.1.6.0.
  Thanks,
  Tanmoy

  To enable the LOV to query for partial user entries, we can trap the 'LaunchPopupListener' event and add custom code there. Within the af:query component, just wondering how can we set property the 'LaunchPopupListener' for the search criteria ?

• How can i get user entry values at WAD

  Hi I need some user entry values display at wad?
  suppose i have x( user entry) if i will give x=1000
  on top need to show 1000 values?
  i need user entry boxes at wad level only
  ple let me know

  Hi,
  you have to set the checkbox "Display Variable Screen" in WAD. You can find if under:
  Web Template Parameters->Display Variable Screen
  Regards
  Erwin

• Add entry to ldap and not tnsnames

  Hi all.
  Oracle DB:
  Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - 64bi
  PL/SQL Release 10.2.0.4.0 - Production
  CORE 10.2.0.4.0 Production
  TNS for Linux: Version 10.2.0.4.0 - Production
  NLSRTL Version 10.2.0.4.0 - Production
  Oracle Reports Server:
  OAS 10g (9.0.4) Reports
  May seem elementary but having dificulty finding out where to add an entry for a new db so I can acces it from our report server.
  I didn't set up the Oracle Reports Server and am wondering how I can add an entry to ldap so I can access database running on seperate server.
  I can tnsping other dbs on same machine from report server: (unawlo1 and wlocdbt1 are running on same server and both exist in tnsnames.ora file on that server)
  [oracle@rcwlo-oas admin]$ tnsping unawlo1
  TNS Ping Utility for Linux: Version 9.0.1.4.0 - Production on 27-JAN-2010 11:30:25
  Copyright (c) 1997 Oracle Corporation. All rights reserved.
  Used parameter files:
  /u01/app/oracle/product/904oas/infra/network/admin/sqlnet.ora
  Used LDAP adapter to resolve the alias
  Attempting to contact (DESCRIPTION=(ADDRESS_LIST=(ADDRESS=(PROTOCOL=TCP)(HOST=rcwlo-ods10g.cdn.ray.com)(PORT=1521)))(CONNECT_DATA=(SERVICE_NAME=unawlo1)))
  OK (0 msec)
  [oracle@rcwlo-oas admin]$ tnsping wlocdbt1
  TNS Ping Utility for Linux: Version 9.0.1.4.0 - Production on 27-JAN-2010 11:30:32
  Copyright (c) 1997 Oracle Corporation. All rights reserved.
  Used parameter files:
  /u01/app/oracle/product/904oas/infra/network/admin/sqlnet.ora
  TNS-03505: Failed to resolve name
  Using LDAP adapter but not sure where I can add info for wlocdbt1 on the report server.
  Any help is appreciated.
  Thanks

  Added to tnsnames.ora and still can't tnsping..
  WLOCDBT1 =
  (DESCRIPTION =
  (ADDRESS = (PROTOCOL = TCP)(HOST = RCWLO-ODS10g.cdn.ray.com)(PORT = 1521))
  (CONNECT_DATA =
  (SERVER = DEDICATED)
  (SERVICE_NAME = wlocdbt1)
  [oracle@rcwlo-oas admin]$ tnsping wlocdbt1
  TNS Ping Utility for Linux: Version 9.0.1.4.0 - Production on 27-JAN-2010 12:13:23
  Copyright (c) 1997 Oracle Corporation. All rights reserved.
  Used parameter files:
  /u01/app/oracle/product/904oas/infra/network/admin/sqlnet.ora
  TNS-03505: Failed to resolve name
  The rest are added and used by ldap so I would like to keep it consistent... Not sure how to add it...
  Edited by: Jamie CC on Jan 27, 2010 9:13 AM

• SAP exit  -- user entry variable

  Hello,
  In my report i need two columns: one is for displaying the value of the current period and the other one is for displaying the cumulated value up to the current period. The info object is 0FISCPER.
  1. The current period should be entered via user entry and based on this, an exit variable should pick up the year's cumulated value. Which variables could I use to fulfill these requirements?
  2. Furthermore i have looked in SE37 to find the code of SAP Exit variable "0FYTCFP". However, the FM for the variable doesn't seem to exist. Why? The variable however exists in table RSZGLOBV. How do I find the code?
  Thanks in advance,
  F C

  If you are gonna use fiscper as a variable parameter, your requirement would need a customer exit. 
  If i get it right, the first would column should be derived from the user entry which wont be possible with the suggested SAP exit as that would bring the current fiscalyear/period (based on sys date) not giving the user the option to enter the fiscalyear/period. And the second column should be a YTD for that particular year the user has entered as a input parameter. the suggested SAP exit will again be calculating based on ur system date not on the user input.
  the only way you can overcome this is if you have the flexibility to use fiscalyear and posting period seperately. if you can do that, you can avoid the customer exit. the procedure would be -
  You can create ur own variable of type user entry on fiscalyear and posting period.
  the first column would have ur KF further restricted by fiscalyear and posting period restricted by the variables you created ... so in the 1st column you would get the value for that period.
  in the second column, the selections would be same (KF further restricted by fiscalyear and posting period ) but while restrict posting period make it a value range - and in the range pick period 1 - the variable u created, that would give you the YTD from period 1 to the user entered period.

• User entries in report templates: a new entry added cannot be displayed

  Hi all,
  I have the following issue in the EH&S module. I added a new field as a user-entry in a specific report template (under transaction code CG43). It is a non-standard field added thanks to the user-entry functionality. After that, I got to transaction CBGL_MP01 in order to display a label and populate my user -entry field with a value and it happens that the object description cannot be seen. Have a look at my screenshot enclosed, please.
  This is happening under Delivery / Make-to-Stock scenario but the field is fully visible under GENERIC scenario.
  The thing is that, adding other fields (standard and non-standard) does not happen the same thing. It is only with this field. I am puzzled.
  I would appreciate any advice / comment / help on the matter, please.
  Thank you so much

  Hi
  But the same field is displayed on other scenario ?
  [This is happening under Delivery / Make-to-Stock scenario but the field is fully visible under GENERIC scenario.]
  In that case, there would be two possibilities
  1. Authorization : But you checked & its positive.
  2. Since its your custom made symbol, there may be some problem in fetching the description data (my guess. may be wrong).:
  So may be you check out the Program used for these particular Scenarios. Check label printing transaction program & Function module for Data Determination. (May be helpful.)
  Regards
  Subash Sankar