UME Create user not  possible

Portal 7.0 sp10 2004s
ECC 6.0 sp 10  ERP 2005
Portal is connected to ABAP backend for user authenticity,
Data source configuration file is dataSourceConfiguration_abap.xml which should allow users created in the portal to be in the UME database only.
Problem, When creating users on the Portal they are automatically being created with a datasource of ABAP and are created in the ECC abap backend.
I have tried creating the users using the Visual Admin tool and it also created the users in the ECC abap backend
I have in the past been able to create users in the UME only in fact I could not create Backend ABAP users from the POrtal
Any help would be appreciated.
Thanks
sarah

Haydn
Thanks for your suggestion, I am still having problems
I changed the SAPJSF user that communicates from the portal to the abap backend to read only. I got an error, it is still trying to create an ABAP backend user
An error occurred in the persistence. The original message (possibly not translated) was: "BAPI_USER_CREATE1@RS2CLNT100: ID=01, NUMBER=491, MESSAGE=You are not authorized to create users in group". Contact your system administrator
From the SAP Note 718383 it states the following:
Supported changes to the data source configuration
The allowed change options depend on the currently active data source configuration. You can determine the current data source configuration with the J2EE ConfigTool.
In "cluster-data -> Global server configuration -> services -> com.sap.security.core.ume.service" check the property "ume.persistence.data_source_configuration".
Depending on the data source configuration file you use, the following changes are possible:
dataSourceConfiguration_abap.xml
No change is possible.
This configuration supports all usages (especially SAP Exchange Infrastructure and SAP Enterprise Portal) by making ABAP users and ABAP roles available as users and groups in the UME, and supports the creation of new groups in the UME (which are then stored in the local database) as well.
Any other suggestions would be appreciated,
Thanks
Sarah

Similar Messages

  • Create user not working!

    Hello Everybody:
    I am a beginner here. I was trying to create a user named turner, password as tur. I had following code.
    SQL> connect scott/tiger;
    Connected.
    SQL> CREATE USER turner IDENTIFIED BY tur;
    CREATE USER turner IDENTIFIED BY tur
    *ERROR at line 1:ORA-01031: insufficient privileges
    SQL>
    System did not like it. It says scott has insufficient privileges. How can I look what privilege does scott have?
    How can I add create user privileges to scott. Any response in this regards highly apprciated.
    Thanks. -Bal

    SQL>connect system/manager
    SQL>grant dba to scott
    So, scott can work as dba.
    Sys and system are the default database administrator users.
    Both users are created automatically when database is created.
    and They are granted the DBA role.
    Sys is owner of the database data dictionary.
    and his(her) password is change_on_install.
    System is owner of additional internal tables and views used by Oracle tool.
    Both sys and system are regual users, which are stored in the data dictionary.

  • "create user" not same as creating user from Administration?

    I have created users both from scripts and from the Administration pages and am getting different results.
    I created a user from a command line script (e.g., "create user <name> identified by <password>"), and then later granted the user all the privileges from the Administration -> Database users -> Manage Users page.
    I created a second user from within the Admin pages - this user has all the privileges and works fine.
    The user I created from the command line and then granted all privileges (including "DBA" and all explicit privileges) is NOT working correctly.
    Specifically:
    1. "select ... from ALL_OBJECTS" returns no records. (ALL_TABLES, ALL_INDEXES, and everything else that I try seem to work ok, but in order to see "ALL_OBJECTS", I have to explicitly qualify it with "SYS.ALL_OBJECTS".)
    2. When compiling PL/SQL procedures, etc. in that user schema, the built-in packages are not visible unless I explicitly GRANT EXECUTE on each package to the user (from a system account). At that point, they are accessible.
    I tried searching the forums for similar topics and didn't find any. I apologize if this is a redundant post, but it is driving me crazy.
    Can someone tell me how to make sure the script-created users get all the appropriate rights, and why when they are granted rights from the Admin screens, they still don't appear to have all the rights?
    I would strongly prefer not to drop the user account and rebuild it, as there are already 2200 existing objects (tables, procedures, indexes, etc.) in the user account.

    Please disregard this post. While investigating another issue, I discovered that the user account from which I had migrated 600+ tables had (for some unknown reason) empty copies of ALL_OBJECTS, USER_INDEXES, and USER_IND_COLUMNS in the user tablespace, so these got copied over with the other valid tables. Having "local" (and empty) copies was causing most of the issues.

  • UME - Creating users in LDAP via Anonymous account

    I want to create users in LDAP via UME security API's. I am using
    IUserManagementEngine umService = (IUserManagementEngine) PortalRuntime.getRuntimeResources().getService( IUserManagementEngine.KEY );
    and saving/commiting values etc using IUserFactory and IUserAccountFactory. It throws an exception
    LDAP: error code 53 - 0000052D: SvcErr: DSID-031A0FC0, problem 5003 (WILL_NOT_PERFORM), data 0
    Inference - User doesnt have permission to create users in LDAP.
    I am in an anonymous portal and I am writing a custom application to create users in LDAP, so there is no logged in user to which extra rights can be added to.
    So to which user should I assign the extra rights to write to LDAP? How can I achieve this?
    Thanks for hints, Dhanz

    Hi,
    LDAP users are coming from external directory.
    Portal UME is differnt from LDAP.  UME users and LDAP users are differnt.
    You can created users in UME as long as you have user administration rights.
    But LDAP needs special permissions as the external user directory is integrated in portal.
    So you should have  full or write permission to that external directory through LDAP.
    Raghu

  • Login twice in same apex app by same user not possible

    Hi,
    In itself it is possible to login twice by same user in same appl.
    But when using both apps on diff pages eachtime the user is prompted to login again.
    Why is that and why cant'w we use the app twice by same user.
    It is possible to use same app by same user twice
    Thanks in advance,
    Hugo

    I think it is probably due to your cookie and the session state. I cannot use IE or FF to access the same application twice with the same id, otherwise if I do different searches or change pages, the sesiion in the other window gets confused and starts showing session state varibale from the other window. This is with two different windows (not tabs) of IE or FF running.
    But, I can easily use IE, FF, and Chrome to access the same application with the same credentials, and everything will work as if I logged in with three different ids. I barely remember this 'problem' from 'the old days', and cookies had something to do with it. It "may" have been that the solution (in some cases, depending on what you and the app are doing), was during the authenication process that every app creates and uses a cookie with the same name.
    Hope this helps some,
    Bill Ferguson

  • Error while creating user - not authorized to assign profiles or roles

    I have configured CUA according to the help.sap.com instructions.  I am getting this error (in TCODE SCUL)..
    +You are not authorized to assign profiles
    Message no. 01589
    You are not authorized to assign profiles to users or to cancel the authorization.+
    I can create the user, change the address data, and initial password.
    I get errors on assigning to a group, parameters, or the role and profiles. 
    We are on NW Mobile 7.1 (ABAP stack only) SP05.
    I've read Note "492589 - CUA:  Minimum authorizations for communications users."
    It mentions SP07.  Is this not compatible?

    > Run SU53 (immediately after you receive the error message) and check which authorizations that failed. You probably miss S_USER_PRO with activity 01 or 02 from your own roles.
    I think that will not work in his situation. The errors show up in SCUL so they may come from one or more of the CUA children. Running SU53 in the CUA master will (if that is the case) not provide the necessary info.

  • Created users not showing in beekeeper console

    Hi,
    After creating a user in the beekeeper console, this user does not show up in the "Users" entry. When I click on "Groups" (ALL_USERS), and then the members tab, I can see the user, and my succesfully registered device also shows up under Devices, but the Users entry just states "No Users".
    The beectl list_users command does show my user.
    Am I missing out on something here?
    Thanks!

    This problem should be fixed in 1.4.3. Did you upgrade, or is it a fresh install?
    If the user was created, does it at least appear if you issue "beectl list_users" ?
    --Ruben                                                                                                                                                                                                                                                                                                                                                                       

  • Active Directory, created users not showing up in list of all users

    I created a user name "test".  However, when I look at a list of all users I only have the 4 users that were created on installation.  When I search for "test"
    it shows up.  Why isn't my user showing up in the list of users?
    I am looking in Active Directory Administrative Center:
     <my Domain> (local) -> Users
    Global Search
    Sorry I cannot provide pictures; I am waiting for my account to be activated.

    You need to look to your search criteria to understand what might be wrong.
    This posting is provided AS IS with no warranties or guarantees , and confers no rights.
    Ahmed MALEK
    My Website Link
    My Linkedin Profile
    My MVP Profile

  • Download FF 9.01 as current user not possible

    As I've forgotten my master password, I would like to run Firefox 9.01 as 'current user'.
    After the download, I have ticked the appropriate box and then nothing happens.
    What can I do?

    Which box do you mean?
    Can you attach a screenshot?
    *http://en.wikipedia.org/wiki/Screenshot
    Use a compressed image type like PNG or JPG to save the screenshot and make sure that you do not exceed the maximum file size (1 MB).
    Firefox doesn't require a Master Password to run.<br />
    Make sure that you download Firefox from the official Mozilla site.
    Do you mean the Windows password for the Administrator?

  • Creating UME DB user when DataSource is r/w

    Hi all,
    I'm having the following scenario:
    J2EE/portal is connected to ABAP server as UME datasource with Read/Write permissions.
    I want to create a UME DB user (not in the ABAP server).
    When I'm using the 'Identity Management' iview I don't have the option to choose where the user will be created (the user is always created in the ABAP server).
    Am I missing something?
    How do I create local (UME Database) users when the datasource file is Read/Write?
    Thanks,
    Omri

    Hi,
    with that configuration you can't create users in UME DB. You would need to modify the UME configuration file to do that with that configuration.
    Another option is to change it to the read-only version and create the ABAP users directly in the backend. That way all users you create in the portal will be stored in the UME DB.

  • Not able to create user in NW UME

    Hi Experts, I'm having NW 7.1 CE EHP1 SP05 AS JAVA Engine and SAP MII 12.1 is running on NW. I'm having the Super Admin Role and trying to create the new user in UME,but I'm getting the error while doing so. The complete error trace is as below: "Error Creating the User". The complete log detail is as below: Error creating user [EXCEPTION] com.sap.security.core.wd.exception.UmeUiException: at com.sap.security.core.wd.umeuifactory.UmeUiFactoryCompInterface.handleThrowable(UmeUiFactoryCompInterface.java:3072) at com.sap.security.core.wd.umeuifactory.UmeUiFactoryCompInterface.createEntity(UmeUiFactoryCompInterface.java:349) at com.sap.security.core.wd.umeuifactory.wdp.InternalUmeUiFactoryCompInterface.wdInvokeMethod(InternalUmeUiFactoryCompInterface.java:937) at com.sap.tc.webdynpro.progmodel.generation.ExternalControllerPI$ExternalInterfaceInvocationHandler.invoke(ExternalControllerPI.java:339) at $Proxy2071.createEntity(Unknown Source) at com.sap.security.core.wd.maintainuser.MaintainUserComp.saveModifications(MaintainUserComp.java:952) at com.sap.security.core.wd.maintainuser.wdp.InternalMaintainUserComp.saveModifications(InternalMaintainUserComp.java:689) at com.sap.security.core.wd.maintainuser.ModifyUserView.onActionSave(ModifyUserView.java:569) at com.sap.security.core.wd.maintainuser.wdp.InternalModifyUserView.wdInvokeEventHandler(InternalModifyUserView.java:550) at com.sap.tc.webdynpro.progmodel.generation.DelegatingView.invokeEventHandler(DelegatingView.java:131) at com.sap.tc.webdynpro.progmodel.controller.Action.fire(Action.java:72) at com.sap.tc.webdynpro.clientserver.phases.ProcessingEventPhase.doHandleActionEvent(ProcessingEventPhase.java:156) at com.sap.tc.webdynpro.clientserver.phases.ProcessingEventPhase.execute(ProcessingEventPhase.java:91) at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.processRequestPartly(WindowPhaseModel.java:162) at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.doProcessRequest(WindowPhaseModel.java:110) at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.processRequest(WindowPhaseModel.java:97) at com.sap.tc.webdynpro.clientserver.window.WebDynproWindow.processRequest(WebDynproWindow.java:514) at com.sap.tc.webdynpro.clientserver.cal.AbstractClient.executeTasks(AbstractClient.java:52) at com.sap.tc.webdynpro.clientserver.cal.ClientApplication.doExecute(ClientApplication.java:1547) at com.sap.tc.webdynpro.clientserver.cal.ClientApplication.doProcessing(ClientApplication.java:1361) at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.delegateToApplicationDoProcessing(AbstractExecutionContextDispatcher.java:154) at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.DispatchHandlerForAppProcessing.doService(DispatchHandlerForAppProcessing.java:35) at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.AbstractDispatchHandler.service(AbstractDispatchHandler.java:127) at com.sap.engine.services.servlets_jsp.server.deploy.impl.module.IRequestDispatcherImpl.dispatch(IRequestDispatcherImpl.java:95) at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.ExecutionContextDispatcher.dispatchToApplicationDoProcessing(ExecutionContextDispatcher.java:114) at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.dispatch(AbstractExecutionContextDispatcher.java:80) at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.dispatch(ApplicationSession.java:571) at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.dispatch(ApplicationSession.java:602) at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doApplicationProcessingStandalone(ApplicationSession.java:523) at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doProcessing(ApplicationSession.java:270) at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessing(ClientSession.java:729) at com.sap.tc.webdynpro.clientserver.session.ClientSession.doProcessing(ClientSession.java:256) at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:258) at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.delegateToRequestManager(AbstractExecutionContextDispatcher.java:202) at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.DispatchHandlerForRequestManager.doService(DispatchHandlerForRequestManager.java:38) at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.AbstractDispatchHandler.service(AbstractDispatchHandler.java:127) at com.sap.engine.services.servlets_jsp.server.deploy.impl.module.IRequestDispatcherImpl.dispatch(IRequestDispatcherImpl.java:95) at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.ExecutionContextDispatcher.dispatchToRequestManager(ExecutionContextDispatcher.java:140) at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.dispatch(AbstractExecutionContextDispatcher.java:92) at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.dispatch(AbstractExecutionContextDispatcher.java:104) at com.sap.tc.webdynpro.serverimpl.core.AbstractDispatcherServlet.doContent(AbstractDispatcherServlet.java:87) at com.sap.tc.webdynpro.serverimpl.core.AbstractDispatcherServlet.doPost(AbstractDispatcherServlet.java:61) at javax.servlet.http.HttpServlet.service(HttpServlet.java:727) at javax.servlet.http.HttpServlet.service(HttpServlet.java:820) at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:140) at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:37) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:466) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:291) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:396) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:385) at com.sap.engine.services.servlets_jsp.filters.DSRWebContainerFilter.process(DSRWebContainerFilter.java:48) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.servlets_jsp.filters.ServletSelector.process(ServletSelector.java:76) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.servlets_jsp.filters.ApplicationSelector.process(ApplicationSelector.java:240) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.httpserver.filters.WebContainerInvoker.process(WebContainerInvoker.java:78) at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.httpserver.filters.ResponseLogWriter.process(ResponseLogWriter.java:60) at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.httpserver.filters.DefineHostFilter.process(DefineHostFilter.java:27) at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.httpserver.filters.MonitoringFilter.process(MonitoringFilter.java:29) at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.httpserver.filters.MemoryStatisticFilter.process(MemoryStatisticFilter.java:43) at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.httpserver.filters.DSRHttpFilter.process(DSRHttpFilter.java:42) at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.httpserver.server.Processor.chainedRequest(Processor.java:425) at com.sap.engine.services.httpserver.server.Processor$FCAProcessorThread.process(Processor.java:250) at com.sap.engine.services.httpserver.server.rcm.RequestProcessorThread.run(RequestProcessorThread.java:45) at com.sap.engine.core.thread.execution.Executable.run(Executable.java:109) at com.sap.engine.core.thread.execution.CentralExecutor$SingleThread.run(CentralExecutor.java:314) Caused by: java.lang.NoSuchMethodError: com.sap.security.api.logon.ISecurityPolicyFactory.getSecurityPolicyByUniqueName(Ljava/lang/String;)Lcom/sap/security/api/ISecurityPolicy; at com.sap.security.core.jmx.impl.JmxModificationHelper.getSecurityPolicyFromAttributes(JmxModificationHelper.java:2531) at com.sap.security.core.jmx.impl.JmxModificationHelper.createEntity(JmxModificationHelper.java:1588) at com.sap.security.core.jmx.impl.JmxServer.createEntity(JmxServer.java:226) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:585) at com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:414) at javax.management.StandardMBean.invoke(StandardMBean.java:323) at com.sap.pj.jmx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:944) at com.sap.pj.jmx.server.interceptor.MBeanServerWrapperInterceptor.invoke(MBeanServerWrapperInterceptor.java:288) at com.sap.engine.services.jmx.CompletionInterceptor.invoke(CompletionInterceptor.java:400) at com.sap.pj.jmx.server.interceptor.BasicMBeanServerInterceptor.invoke(BasicMBeanServerInterceptor.java:277) at com.sap.jmx.provider.ProviderInterceptor.invoke(ProviderInterceptor.java:340) at com.sap.engine.services.jmx.RedirectInterceptor.invoke(RedirectInterceptor.java:340) at com.sap.pj.jmx.server.interceptor.MBeanServerInterceptorChain.invoke(MBeanServerInterceptorChain.java:330) at com.sap.engine.services.jmx.MBeanServerSecurityWrapper.invoke(MBeanServerSecurityWrapper.java:288) at com.sap.engine.services.jmx.ClusterInterceptor.invoke(ClusterInterceptor.java:813) at com.sap.pj.jmx.server.interceptor.MBeanServerInterceptorChain.invoke(MBeanServerInterceptorChain.java:330) at com.sap.security.core.jmx._gen.IJmxServer$Impl.createEntity(IJmxServer.java:534) at com.sap.security.core.wd.jmxmodel.JmxModelCompInterface.createEntity(JmxModelCompInterface.java:249) at com.sap.security.core.wd.jmxmodel.wdp.InternalJmxModelCompInterface.wdInvokeMethod(InternalJmxModelCompInterface.java:788) at com.sap.tc.webdynpro.progmodel.generation.ExternalControllerPI$ExternalInterfaceInvocationHandler.invoke(ExternalControllerPI.java:339) at $Proxy2070.createEntity(Unknown Source) at com.sap.security.core.wd.umeuifactory.UmeUiFactoryCompInterface.createEntity(UmeUiFactoryCompInterface.java:347) ... 77 more
    Thanks in Advance Suresh

    Dear all,
    I was searching the community because I had this same error and there was no answer of how it was fixed. So I'm sending how I fixed today in a customer environment.
    1. Go to portal  http://<portal>/webdynpro/dispatcher/sap.com/tcsecumewdumeadmin/UmeAdminApp
    - select configuration
    - folder "sap system based in abap"
    - do the conection test
    If the test fails, log on in client 001 and change user SAPJSF:
    - assign role SAP_BC_JSF_COMMUNICATION (only this one) and one profile that has permission to RFC logon
    - you can change the password too
    STOP/START ABAP+JAVA
    Go again to the portal above and test connection again. The tests should now be OK.
    2. Go to portal  http://<portal>/irj
    - Log on with administrator user
    Now you should be able to create an user.

  • How to create user in UME when using ABAP as datasource

    hi, everyone
    We are using ABAP as EP user datasource, when create user in EP, it says "Current user has user creation permissions in the UME, but cannot create users in the back-end system (data source). The original and possibly untranslated message was: "No active writeable datasource found for user creation, check your Persistence Configuration."
    But we can not create in UME neither, anyone know how to do this?
    Lee

    Hi,
    Solution would be to disconnect the UME from ABAP and reboot the portal, create the user in UME, and revert back to the UME/ABAP connection again... but this is not supported:
    Changing Data Source
    Once you have chosen this data source configuration, you cannot change to any other data source configuration. For details, see SAP Note 718383.
    Source: http://help.sap.com/saphelp_nw70ehp1/helpdata/en/45/af3ac012d32e78e10000000a155369/frameset.htm
    Ask the autorisation team of the ABAP stack that is connected to you UME to create the user for you is the only solution.
    Cheers,
    Benjamin

  • Not able to create users in portal.

    Hi all,
    Iam trying to create users in portal through User administration but the system says:
    "Current user has user creation permissions in the UME, but cannot create users in the back-end system (data source). The original and possibly untranslated message was: "No active writeable datasource found for user creation, check your Persistence Configuration.".
    I have tried creating in backend system and use in the portal , but the same user does not work there , it says Authentication failed.
    Iam using the admin user j2ee_admin having all the admin rights , i have done all the confuguration settings through this user id only.
    Please help.
    Regards,
    Akash

    Hi Akash,
    check if your data source configuration file is read-only in your ume properties. If it's read/write you may check in the ABAP backend if your communication user (per standard SAPJSF) has write-permissions.  He needs to have role SAP_BC_JSF_COMMUNICATION not SAP_BC_JSF_COMMUNICATION_RO
    see also note 905188
    Cheers,
    Anja

  • Error creating user in UME or visual administrator

    I am trying to create solman_admin userid in J2ee. I tried first in UME - Identity Management signing in as j2ee_admin when I click on create user I get
    Current user has user creation permissions in the UME, but cannot create users in the back-end system (data source). The original and possibly untranslated message was: "No active writeable datasource found for user creation, check your Persistence Configuration.".
    I then tried signing into the Visual Administrator with j2ee_admin and creating a user there but still get an error message cannot create user.  I believe the error message above is saying that j2ee_admin does not have access to update in ABAP?  Does anyone know how to resolve this problem?

    Hi
    You are rt, check for datasource used, probably it is database. change the UME datasource from database to ABAP and connect to your production client
    regards,
    Shyam.

  • NTLM Authentication : why is it not possible to create more than one NTLM realm ?

    Hello,
    I'm wondering why it is not possible to create more than one NTLM realm on a wsa.
    Can you explain exactly what is the blocking point ?
    Thanks in advance
    Regards

    Well, at this point (pre 7.5), there isn't an agent, the WSA is joined to the domain, just like a Windows box, it authenticates via that trust relationship.  From that point it is all based on how NT/Active Directory domains work.   As long as there is a trust between the domains, you can can auth users from as many domains as you like.
    There is an agent in the works.  The ADAgent will be released with 7.5.  The code is already available, it was released with the ASA ver 8.4, and it will be used to pass authentication info to the WSA.  At this point, current versions still require trust relationships between all of the domains touched.
    Taken from the setup guide: http://www.cisco.com/en/US/docs/security/ibf/setup_guide/ibf10_install.html#wp1054011
    Before you configure even a single domain controller machine using the
    adacfg dc create
    command, ensure that the AD Agent machine is first joined to a domain (for example, domain
    J
    ) that has a trust relationship with each and every domain (for example, domain
    D[i]
    ) that it will monitor for user authentications (through the domain controller machines that you will be configuring on the AD Agent machine).
    Depending on your Active Directory domain structure, the following scenarios are possible:
    1. Single Forest, Single Domain—There is only one domain, D[i] for all domain controller machines, which is one and the same as domain J. The AD Agent machine must first be joined to this single domain, and since no other domains are involved, there is no need to configure any trust relationship with any other domain.
    2. Single Forest, Multiple Domains—All the domains in a single forest already have an inherent two-way trust relationship with each other. Thus, the AD Agent must first be joined to one of the domains, J, in this forest, with this domain J not necessarily being identical to any of the domains D[i] corresponding to the domain controller machines. Because of the inherent trust relationship between domain J and each of the domains D[i], there is no need to explicitly configure any trust relationships.
    3. Multiple Forests, Multiple Domains—It is possible that domain J might belong to a forest that is different than the forest to which one or more of the domains D[i] corresponding to the domain controller machines belong. In this case, you must explicitly ensure that each of the domains D[i] has an effective trust relationship with domain J, in at least one of the following two ways:
    a. A two-way external trust relationship can be established between the two domains, D[i] and J
    b. A two-way forest trust relationship can be established between the the forest corresponding to domain D[i] and the forest corresponding to domain J

Maybe you are looking for

  • Vendor Master- CIN details Upload

    Hello Experts I want to upload the CIN details of the vendors. We are working on implementation of CIN, so please suggest what all things should be taken care. We are planing to go with LSMW, recording method. But when i tried that in ides, the pop u

  • I am having alot of trouble with svg files is there some one well versed with adobe svg file

    I am having alot of trouble with svg files is there some one well versed with adobe svg file

  • ABC Analysis in BW

    Hello Xperts, Can someone please let me know the steps of doing ABC analysis in BW. Thanks Rohit Parti

  • Tab not working properly for Datagrid ItemEditor ComboBox

    When you run the app type a1 in the find an App combo box then hit the tab key. Click in the 3rd row in the As Bs column and a combobox will show. Type a3 and then hit enter.  Notice that A3 is saved as the selected item and saved to the dataprovider

  • POI/import issue

    Hi! Has anyone used the POI project? I'm trying to use the Excel sheet and have import org.apache.poi.hssf.usermodel.*;but this is generating a compilation error saying that package org.apache.poi.hssf.usermodel doesn't exist. I can do this: import c