SAP Abap system as LDAP source/server?
Hello,
is it possible to configure a SAP Abap system as LDAP server so that I can read out the user information via LDAP?
We have a SSL-Gateway that needs to preauthenticate external users and we don't want to manage those users in two different systems.
Marc,
Are you thinking about Central User Administration (CUA). Then it is possible by LDAP.
Hope this helps.
Manoj
Similar Messages
-
Can we assign more then one abap system to one bpc server?
Hi my question is short an d simple.
can we assign more then one abap system to one bpc server?
Regards StefanStefan,
My understanding is that this is not possible. However, I believe you can have multiple BPC .NET servers and point them to different dialog instances of the same ABAP system. You would then put a load balancer in front of the .NET servers and requests will be distributed across the ABAP dialog instances.
Ethan -
Password change issue when updating user data in SAP ABAP system
Hi Guru's,
One of my reconciliation tasks part of the reconciliation job I've created is doing some strange password updates.
As you can see below the task selects all users part of my identity store that are part of the account attribute of the particular ABAP system.
Once these users are selected the task updates different data like username, validto, ... but the task is updating a lot of other things that are not part of the destination tab. What is causing the biggest issue is the password fields that are updated in the ABAP system like, password, productive password, ...
Can you please advise if I missed something and how to solve?
Thanks a lot,
LaurentHello Steffi,
Yes in the ABAP systems they have the same timestamp. No other jobs are running at the same time.
It is only happening to a few users depending on the ABAP system. On some ABAP systems there are only a few users for which the PW is reset and other systems 300.
Example below of a system where I updated all user. In my pass only the following attributes should have been pushed thru to the ABAP system.
However the valid from, accounting number and password have been updated as well.
Thx,
Laurent -
SAP file system restoration on other server
Dear Experts,
To check that our offline file system backup is successful, we are planning to restore the offline file system backup from the tape on to a new test server.
Our current SAP system (ABAP only) is in cluster with CI running on one node (using virtual host name cicep) & DB running on another node (using virtual host name dbcep).
Now, is it possible to restore the offline file system backup of the above said cluster server on to a single server with a different host name?
Please help on this.
Regards,
Ashish KhanduriDear Ashish
We want to include file system backup process as part of our backup strategy. To test the waters, we are planning to take a backup of the at filesystems level. Following are the filesystems in our production systems.
We have a test server (hostname is different), without any filesystems created beforehand.
I want to know:
1. Which filesystems will be required from the below:
/dev/hd4 4194304 3772184 11% 5621 2% /
/dev/hd2 10485760 6151688 42% 43526 6% /usr
/dev/hd9var 4194304 4048944 4% 4510 1% /var
/dev/hd3 4194304 2571760 39% 1543 1% /tmp
/dev/hd1 131072 129248 2% 85 1% /home
/proc - - - - - /proc
/dev/hd10opt 655360 211232 68% 5356 18% /opt
/dev/oraclelv 83886080 73188656 13% 11091 1% /oracle
/dev/optoralv 20971520 20967664 1% 4 1% /opt/oracle
/dev/oracleGSPlv 83886080 74783824 11% 18989 1% /oracle/GSP
/dev/sapdata1lv 833617920 137990760 84% 3189 1% /oracle/GSP/sapdata1
/dev/sapdata2lv 623902720 215847400 66% 82 1% /oracle/GSP/sapdata2
/dev/sapdata3lv 207093760 108510632 48% 24 1% /oracle/GSP/sapdata3
/dev/sapdata4lv 207093760 127516424 39% 28 1% /oracle/GSP/sapdata4
/dev/origlogAlv 20971520 20730080 2% 8 1% /oracle/GSP/origlogA
/dev/origlogBlv 20971520 20730080 2% 8 1% /oracle/GSP/origlogB
/dev/mirrlogAlv 20971520 20762848 1% 6 1% /oracle/GSP/mirrlogA
/dev/mirrlogBlv 20971520 20762848 1% 6 1% /oracle/GSP/mirrlogB
/dev/oraarchlv 311951360 265915600 15% 526 1% /oracle/GSP/oraarch
/dev/usrsaplv 41943040 41449440 2% 165 1% /usr/sap
/dev/sapmntlv 41943040 20149168 52% 565823 21% /sapmnt
/dev/usrsapGSPlv 41943040 25406768 40% 120250 5% /usr/sap/GSP
/dev/saptranslv 41943040 5244424 88% 136618 18% /usr/sap/trans
IDES:/sapcd 83886080 4791136 95% 18878 4% /sapcd
GILSAPED:/usr/sap/trans 41943040 5244424 88% 136618 18% /usr/sap/trans
2. Is it possible to directly backup the filesystems (like /dev/oracleGSPlv)? This requirement is because, when I backup (using tar) /oracle, all the folders in /oracle, like /oracle/GSP, /oracle/GSP/sapdata1 etc, are also backed up. I do not want it. I would like to backup the filesystems directly.
3. Which unix backup tools are used to backup the individual filesystems?
4. How do we restore the filesystems to the test server?
Thanks for your advise.
Abdul
Edited by: Abdul Rahim Shaik on Feb 8, 2010 12:10 PM -
Crystal Reports for VS2010 using a custom SAP ABAP function module data source
I recently worked with Crystal Reports 2011 and was able to connect and retrieve data from our R/3 system via an ABAP function module. While researching other features, I found this version that can be installed into Visual Studio 2010. The parameters are not very user friendly in Crystal Reports so I was hoping to create a custom dialog to collect my report parameters.
Does anyone know if I were to install Crystal Reports for Visual Studio 2010, would I be able to design a front-end selection screen in a Visual Basic form and then pass the input to through the Crystal Reports connection to my ABAP function module to retrieve the data filtered on the back-end by the selection screen parameters and return the results to be reported in the Crystal Reports output?
I am using Visual Studio 2010 Professional Visual Basic with the .NET Framework 4.0 on 32-bit Windows 7. I was able to connect to our R/3 system in Crystal Reports 2011, so if I were to install Crystal Reports for VS2010, would there be a similar way of connecting to SAP?
Any assistance or direction would be greatly appreciated.
Thanks,
BryanHello Bryan
I don't know for sure, but I doubt this will work in CRVS2010. Only hope is that the utility available for download in this KBA will point you in the right direction.
- Ludek
Follow us on Twitter
Got Enhancement ideas? Try the SAP Idea Place
Share Your Knowledge in SCN Topic Spaces -
Problem during installing a new SAP ABAP system
Dear experts,
we are installing a brand new system, but we are facing a VERY strange error:
ERROR
2014-06-05 17:12:25.974 [sixxcstepexecute.cpp:896]
FCO-00011 The step StartListener with step key |NW_ABAP_DB|ind|ind|ind|ind|0|0|NW_CreateDBandLoad|ind|ind|ind|ind|createdbandload|0|NW_CreateDB|ind|ind|ind|ind|createdb|0|NW_OraDBCheck|ind|ind|ind|ind|ora|0|NW_OraDBMain|ind|ind|ind|ind|main|0|NW_OraDBStd|ind|ind|ind|ind|std|0|NW_OraClient|ind|ind|ind|ind|client|0|NW_OraNetworkSrv|ind|ind|ind|ind|server|0|StartListener was executed with status ERROR ( Last error reported by the step: Execution of the command "/oracle/<SID>/112_64/bin/lsnrctl stop LISTENER" finished with status TST_ERROR.).
There is a log file of the lsnrctl utility, here it is:
orae07> ls -la lsnrctl.log
-rw-r----- 1 root
sapinst
83 Jun 5 17:12 lsnrctl.log
orae07> cat lsnrctl.log
ld.so.1: lsnrctl: fatal: libclntsh.so.11.1: open failed: No such file or directory
The listener start and stop commands themselves work perfectly under the ora<SID> user: lsnrctl start and lsnrctl stop.
Please kindly advise on how to solve that unpleasant situation! Many many thanks in advance!Hi Symon,
It looks to be issue with Oracle instant client setup and configuration
Please refer SAP note to perform Oracle instant client setup
819829
Oracle Instant Client Installation and Configuration on Unix
Once this is done, stop listener and start it again.
Then resume with installation.
Hope this helps.
Regards,
Deepak Kori -
Provisioning problem for AD and SAP ABAP Systems
Hi,
We're using IDM 7.20 SP3 and successfully run he Initial Load for AD, NW 7.30 and ERP 6.0 Systems successfully.
But, when I add the priviledge of systems to a new user created via IDM UI, It is not provisioned successfully.
Job Log show the following errors:
[http://imageshack.us/photo/my-images/69/idmerror1.png/|http://imageshack.us/photo/my-images/69/idmerror1.png/]
The detail log is as follow:
JOB: Update context info
Provisioned entries - Successes: 1 Failures:0
MSKey AuditID Status Info
9910 682 OK AALASARLI1
JOB: SYNC
Provisioned entries - Successes: 1 Failures:0
MSKey AuditID Status Info
9910 682 OK 1608
JOB: Set task to error state
Provisioned entries - Successes: 0 Failures:1
MSKey AuditID Status Info
9910 682 FAIL uSkip Called to skip entry
JOB: Skip pending operation
Provisioned entries - Successes: 1 Failures:0
MSKey AuditID Status Info
9910 683 OK not-existing-mskey
JOB: Trigger notification: assignment failure
Messages Warning Executing sap_core_getSkippedOK() got RuntimeException - org.mozilla.javascript.EvaluatorException: uSelect(select top 1 avalue from idmv_value_basic_active where attrname='MX_ATTRIBUTE_VALUE' and mskey=not-existing-mskey) got exception com.microsoft.sqlserver.jdbc.SQLServerException: Incorrect syntax near the keyword 'not'. HINT: Check line 20 in the script sap_core_getSkippedOK
Provisioned entries - Successes: 0 Failures:1
MSKey AuditID Status Info
9910 683 FAIL Failed running function in string "$FUNCTION.sap_setContextVariable(NOTIFICATION_SUBJECT;Assignment failed!!<SKIPPEDOK>=$FUNCTION.sap_core_getSkippedOK()$$;<UIUSER_DISPLAYNAME>=$FUNCTION.sap_getDisplayName(manager)$$)$$". Marking entry as failed. Exceptio
any idea?Hi,
The entries created when I updated a user (person) and add a priviledge, following entries created in audit table
Task_name Provision_status mcmv_mskey Message mcmv_ProvStatus mcmv_taskid mcmv_privatetask IDStore
Modify Identity OK 1608 NULL 1100 2578 0 2
Provisioning Failed 9911 uSkip Called to skip entry 1101 601 0 2
Pending Operation Failed Failed 9911 Failed running function in string "$FUNCTION.sap_setContextVariable(NOTIFICATION_SUBJECT;Assignment failed!!<SKIPPEDOK>=$FUNCTION.sap_core_getSkippedOK()$$;<UIUSER_DISPLAYNAME>=$FUNCTION.sap_getDisplayName(manager)$$)$$". Marking entry as failed. Exceptio 1101 898 0 2 -
How to discable password change in SAP ERP (or any ABAP system)
Hello,
We have password synchronization between Sun Identity Management system and SAP ABAP systems. This ensures that the password is identical between the network ID and SAP ID. In order to avoid any issues, we would like to disable the ability of the users to change their password in the SAP system directly (on the initial logon page). This forces the users to go through Sun Identify Management system for resetting the password (desired behavior). Can you please suggest if there is a way to do this. I remember seeing an OSS note that meets the requirement a couple of years ago but now I can't find it.
Thanks
SriHi Sri Vandan,
Please check note number: 379081 if it helps for you. -
UME using SAP R/3 as Data Source
Hi,
We are trying to set User authentication to SAP R/3 system, not load balanced system, on the User Management Configuration values: Client=501, Userid=sapjsf, Password=pwd, sys id=RS1, Group and Message server= blank, Application server= server.company.com, Sys. number=00, Max pool=10, Max wait=300000.
When testing connection, I get this message:
(System ID): com.sap.mw.jco.JCO$Exception: (101) RFC_ERROR_PROGRAM: 'mshost' missing
(System ID & System Number): OK
Is this an error? since our SAP R/3 is not a load balanced system.
Did we miss any item for the setup, in dataSourceConfiguration_r3.xml? The SAPJSF "communication user" got the right sap role and authorizations.
Portal version : EP6 SR1
Regards
HuzaifahHi,
If u want to Use The SAP R3 System as Data source u may
do it from config tool if u got following message.
WARNING! You are not allowed to select dataSourceConfiguration_r3.xml as active configuration file.
(For Portal Patch less than SP13 u must download two data source file which is attached with note - 718383
and upload it to portal which is described in the note)
the following are the procedure which i apply ,
Go to System Administration -> System Configuration ->UM Configuration
Now Do not change Data source from Here.
Make sure your data source is "Database Only"
(dataSourceConfiguration_database_only.xml)
Now enter the following value under SAP System Tab.
Client : - Your sap system client
User:- Sap user
password: - password
System language:- your system language
Application server: - Host name or IP of sap system
System Number : - SAP instance number
Maximum Size of Connection Pool : - As per req.
Maximum Wait Time in Milliseconds :- 10000
Now, save the changes and shutdown the portal server.
Using Config Tool change the data source. Run the following
<drive:\> usr\sap\<sid>\JC<instance number>\J2EE\configtool\configtool.bat
(Make sure the portal system is shutdown)
Under Cluster Data -> Global Server Configuration -> services -> com.sap.security.core.ume.services
Now find the key: - ume.persistence.data_source_configuration
The default was : - dataSourceConfiguration_database_only.xml
change the value to :- dataSourceConfiguration_r3.xml
click on set and from flie-> apply
Now restart the portal server ur data source changer to SAP R3 System
Regards,
Kaushal -
Ws adapter only works with ABAP system?
Hello all
I am working with PI 7.1. We have used ws adapter where the corresponding sender or receiver is ABAP system. Now we're trying to use ws sender adapter from Java.
So ws CC and sender agreement is configured, wsdl is generated. In NWDS CE 7.1 we imported the wsdl, however when we tried to generate web service client from the imported wsdl (from context menu), we got error:
IWAB0399E Error in generating Java from WSDL: WSDLException (at /wsdl:definitions/wsdl:portType/wsp:Policy): faultCode=INVALID_WSDL: Encountered unexpected element 'Policy'.:
WSDLException (at /wsdl:definitions/wsdl:portType/wsp:Policy): faultCode=INVALID_WSDL: Encountered unexpected element 'Policy'.:
at com.ibm.wsdl.util.xml.DOMUtils.throwWSDLException(Unknown Source)
Why is that? does it mean ws adapter only works with SAP ABAP system? Anybody used ws adapter with non-abap sender?
Thanks
JaysonHi VJ,
thank you so much for your information. However do you have any official SAP statement saying that? I need to have some kind of proof to show the high-level manager about this.
Do you also mean that the receiver of ws CC must be also ABAP system?
We basically can not use soap adapter, because RM is required in our scenario which is only supported by ws adapter, not soap adapter.
Thanks
Jayson -
Filter on SAP ABAP Initial Loads
Hi all,
I'm trying to put a filter on the pass "ReadABAPuser" of an ABAP Initial Load. My SAP ABAP System has over 10000 users and I need only part of them.
I tried so to add "FILTER" entry (as on ReadABAProle for example) on Source tab of the pass "ReadABAPuser" with value "A*".
But seems the pass does not make attention of this FILTER and still request the full user list.
Do you have met this issue ?
Thanks for your help,
BenjaminHi Benjamin,
well, I've never worked with the pass attribute FILTER for the pass type "FromSAP". Therefore, I'm not sure about the following - but maybe it's a starting point for further investigation...
I believe that it works differently for different data types:
Roles: simple filter value which filters for the role name (you can use *)
Roles, if you connect to a CUA central system: not supported
Users: it seems to work with a multivalue name=value syntax.
Conclusion: I guess it is easier to filter users in the source tab of the ToPass "WriteABAPUsers".
Kind regards
Frank Buchholz -
Upload of Campaign and Leads from flat file into SAP CRM system
Hi Gurus,
We need to upload Campaign and Leads from our legacy systems to SAP CRM systems. The source data will be available in the form of flat files (tab delimited)
Please let me know the possible ways of doing this.
Reward points are assured.
Thanks in advance.Hi
you can use external list management functionality in CRM 5.0 useing the flat file tab delimited you can upload the contacts and create business partners followed by lead transaction types with business partners created and also external list management will allow you to create target groups for executing the campaigns in SAP CRM
please do reward points if helpful
regards
Dinaker vikas -
How can we trigger the notification from SAP backend system to SMP3.0.
Hi All,
Can any one help me to know is there any standard approaches available to get notification from SAP backend system to SMP3.O server after any event that has been triggered.
Any of suggestion related to above will be helpful.
Thanks,
AnjaliHi Ekansh,
I have few more question regarding push notification from backend.
Refferd Link:-http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/40ab6d83-b7b8-3010-65bc-d7a08f0f35f3?QuickLink=index&…
Pushing Notifications Made Easy!!! : Push a Notification
Have perform all the steps till creating RFC Destination to mobile platform by creating a new push service.
I just wanted to have a clarity on target host that we are specifying should also have SMP3.0 server installed???
Actually I am using http listener downloaded from membrane site which is running on that target host machine.
But I am unable to get any response in my listener.
Even wanted to know the necessity of exchange of certificate for SSL Connection.
SMP server Certificate exchange with SAP Backend and SMP server certificate exchange with HTTP Listener????
Because currently I am trying to have a notification from SAP Backend directly to HTTP Listener without having SMP server.
Can u please correct me where I am going wrong.
Thanks & regards,
Anjali Agrawal -
ABAP to FTP connect to non SAP UNIX system
Greetings~
I'm looking for a way (via function modules and/or BAPI) to transfer data in flat files from an SAP UNIX system to a non-SAP UNIX system using an ABAP program. I see FM's FTP_CONNECT and FTP_COMMAND however these seem to only work with UNIX systems running SAP as they require RFC_DESTINATION information. Anybody know which (if any) FM's can be used without the necessity of the target system running SAP/RFC?
Thanks!Hi Joseph,
Please refer the below program.
REPORT ZHR_T777A_FEED.
tables: t777a. "Building Addresses
Internal Table for Building table.
data: begin of it_t777a occurs 0,
build like t777a-build, "Building
stext like t777a-stext, "Object Name
cname like t777a-cname, "Address Supplement (c/o)
ort01 like t777a-ort01, "City
pstlz like t777a-pstlz, "Postal Code
regio like t777a-regio, "Region (State, Province, County)
end of it_t777a.
Internal Table for taking all fields of the above table in one line
separated by |(pipe).
data: begin of it_text occurs 0,
text(131),
end of it_text.
Constants: c_key type i value 26101957,
c_dest type rfcdes-rfcdest value 'SAPFTPA'.
data: g_dhdl type i, "Handle
g_dlen type i, "pass word length
g_dpwd(30). "For storing password
Selection Screen Starts
SELECTION-SCREEN BEGIN OF BLOCK blk1 WITH FRAME TITLE TEXT-001.
parameters: p_user(30) default 'XXXXXXX' obligatory,
p_pwd(30) default 'XXXXXXX' obligatory,
p_host(64) default 'XXX.XXX.XX.XXX' obligatory.
SELECTION-SCREEN END OF BLOCK blk1.
SELECTION-SCREEN BEGIN OF BLOCK blk2 WITH FRAME TITLE TEXT-002.
parameters: p_file like rlgrap-filename default 't777a_feed.txt'.
SELECTION-SCREEN END OF BLOCK blk2.
Password not visible.
at Selection-screen output.
loop at screen.
if screen-name = 'P_PWD'.
screen-invisible = '1'.
modify screen.
endif.
endloop.
g_dpwd = p_pwd.
Start of selection
start-of-selection.
To fetch the data records from the table T777A.
select build stext cname ort01 pstlz regio
from t777a
into table it_t777a.
Sort the internal table by build.
if not it_t777a[] is initial.
sort it_t777a by build.
endif.
Concatenate all the fields of above internal table records in one line
separated by |(pipe).
loop at it_t777a.
concatenate it_t777a-build it_t777a-stext it_t777a-cname
it_t777a-ort01 it_t777a-pstlz it_t777a-regio
into it_text-text separated by '|'.
append it_text.
clear it_text.
endloop.
To get the length of the password.
g_dlen = strlen( g_dpwd ).
Below Function module is used to Encrypt the Password.
CALL FUNCTION 'HTTP_SCRAMBLE'
EXPORTING
SOURCE = g_dpwd "Actual password
SOURCELEN = g_dlen
KEY = c_key
IMPORTING
DESTINATION = g_dpwd. "Encyrpted Password
*Connects to the FTP Server as specified by user.
Call function 'SAPGUI_PROGRESS_INDICATOR'
EXPORTING
text = 'Connecting to FTP Server'.
Below function module is used to connect the FTP Server.
It Accepts only Encrypted Passwords.
This Function module will provide a handle to perform different
operations on the FTP Server via FTP Commands.
call function 'FTP_CONNECT'
EXPORTING
user = p_user
password = g_dpwd
host = p_host
rfc_destination = c_dest
IMPORTING
handle = g_dhdl
EXCEPTIONS
NOT_CONNECTED.
if sy-subrc ne 0.
format color col_negative.
write:/ 'Error in Connection'.
else.
write:/ 'FTP Connection is opened '.
endif.
**Transferring the data from internal table to FTP Server.
CALL FUNCTION 'FTP_R3_TO_SERVER'
EXPORTING
HANDLE = g_dhdl
FNAME = p_file
CHARACTER_MODE = 'X'
TABLES
TEXT = it_text
EXCEPTIONS
TCPIP_ERROR = 1
COMMAND_ERROR = 2
DATA_ERROR = 3
OTHERS = 4.
IF SY-SUBRC <> 0.
MESSAGE ID SY-MSGID TYPE SY-MSGTY NUMBER SY-MSGNO
WITH SY-MSGV1 SY-MSGV2 SY-MSGV3 SY-MSGV4.
ELSE.
write:/ 'File has created on FTP Server'.
ENDIF.
Call function 'SAPGUI_PROGRESS_INDICATOR'
EXPORTING
text = 'File has created on FTP Server'.
To Disconnect the FTP Server.
CALL FUNCTION 'FTP_DISCONNECT'
EXPORTING
HANDLE = g_dhdl.
To Disconnect the Destination.
CALL FUNCTION 'RFC_CONNECTION_CLOSE'
EXPORTING
destination = c_dest
EXCEPTIONS
others = 1.
Regards,
Kumar Bandanadham. -
Password Replication to LDAP from SUS (ABAP system)
Hi,
We have integrated ABAP(SUS) system with LDAP. We want to replicate all the user accounts created in SUS to LDAP ( both user id and password). We need this password in LDAP because LDAP is used for authentication when the user is logging from out side the company by ISA server ( reverse proxy server ) and when the users are logging in internally from the network they will be authenticated against SUS system directly. So we need the user account created at both places with password.
Any help around this topic is much appreciated.
Thanks & Regards,
SeshuHi Yaramala Reddy,
I have done Synchronization of users created on ABAP with LDAP directory.
You can use LDAP tcode or LDAPMAP tcode to do the required settings for mapping the SAP User Data fields to the LDAP directory attributes.
Once the mapping is defined, then run the report RSLDAPSYNC_USER which will replicate all the users created on the ABAP side or viceversa.
You can also schedule the report dialy as a backgroundjob for delta synchronization.
Hope this helps.
Regards,
Kiran Kandepalli.
Maybe you are looking for
-
How can I call functions from a SWF loaded in to another SWF?
Hi there, Please excuse my ignorance, I am very new to actionscript and flash. I have 2 SWF's - a.swf and b.swf. I load b.swf into a.swf with the following code: var swfLoader:MovieClipLoader = new MovieClipLoader(); swfLoader.loadClip("b.swf", conta
-
I want to burn a mix of songs off of iTunes for my friend, and it initalizes then burn, but when it starts writing the first song, it cancels the burn. Any ideas? The type of blank cd's I'm using are Memorex. And, all my songs are from the music stor
-
Why is Bridge CS6 not opening images in PS CS6?
Recently, Bridge has stopped opening pictures in Photoshop CS6. Each time I try the screen signals that Photoshop has to close down. However, I can open the pictures in ACR 7.4, but again, those images will not open in Photoshop. If I use the Mini Br
-
iPhone 4 - - I was trying out the Alarm 4 free app. I set the alarm for 2 minutes into the future for a test. After one minute my phone naturally went to auto-lock and into sleep mode. At approximately the time the alarm should have activated I no
-
How to divide distinct records in a table into batches
Hi all, I need a small help . I have some 3 to 4 lakhs of records in table . I want to divide these records into batches by assigning some batchno to some set of records. i.e i'll query some distinct records those distinct records should be assigned