User creation in Portal Connected to LDAP

Similar Messages

• User creation in portal

  HI,
  Can we change the registration flow in the portal, so that a mail is sent to the email address and only when the user clicks on the link in the mail, the user account becomes active. Until the user clicks on the link and activates his account the user account should not be active.
  Can we implement this in SAP EP?

  Hi,
  You could do it via the UME API, but you would have to code it yourself.
  You could create the user via the admin functionality (but with the standard email generation disabled for user creation) , and manually lock it, or create the user via a custom WebDynpro or JSP front end that users the UME API to create and lock the user.
  Then use a mail API to generate the email with a URL to a servlet running on the Portal server, which extracts an id of the user from the URL (either the username in unencoded form which is a bit dodgy, or using some unique number that you store against the user to be activated to associate the two) and again use the UME API to unlock the user.
  Should be fairly straightforward providing you are confident with:
  1 - Deploying a web application to J2EE engine containing a servlet.
  2 - Can figure out how to use the UME API
  3 - Can use a mail API like Javamail, which is straightforward
  Cheers,
  Steve

• User Creation In portal Using NWDS

  Hello Experts
  Is there any way we can create a job in SAP Netweaver Portal using NWDS for the user creation.
  Any pointers will be extremely helpful as I am new to this.
  I am using SAP Netweaver 7.3 SP 09.
  Thanks
  Utsav Mishra

  Hi,
  You can use the sample code.You can create an  Abstract Portal component in  NWDS and write the required code inside of it.
  Users can be created with the UserFactory newUser() method.
  IUserMaint represents a modifiable user object. You must issue
          a commit() in order to actually create the user.
  An associated account needs to be created for the User with
          newUserAccount() using the UniqueID of the new User.
  Take care to delete the user if an error occurs (catch the
          appropriate exception and handle it).
  // Create User
  String uid = "testuser01";
  IUserMaint newUser = UMFactory.getUserFactory().newUser(uid);
  newUser.setFirstName("Test");
  newUser.setLastName("User");
  newUser.setEmail("[email protected]");
  newUser.save();
  newUser.commit();
  try
  // Create User Account
  IUserAccount uacc = UMFactory.getUserAccountFactory().
  newUserAccount(uid,newUser.getUniqueID());
  uacc.setPassword("secret");
  uacc.save();
  uacc.commit();
  // NOTE: productive passwords cannot be set if the
  // account is created in a SAP System
  // continue process by trying to set password flag…
  // Now try to modify password change flag for the new user
  try
  IUserAccount uacc = UMFactory.getUserAccountFactory().
  getMutableUserAccount(uacc.getUniqueID());
  uacc.setPasswordChangeRequired(false);
  uacc.save();
  uacc.commit();
  catch (UMException ex)
  //trace warning: “Password is not productive and has to
  // changed during the first logon”.
  catch (UMException umex)
  UMFactory.getUserFactory().deleteUser(newUser.getUniqueID());
  //trace error: “User cannot be created because of an
  // error which occurred during the creation of the
  // corresponding account object”
  You can refer to the below URL for abstract portal component
  Creating an AbstractPortalComponent (SAP Library - Running an Enterprise Portal)
  Please reply in case you have any queries.
  Regards
  Veera

• Automating user creation for Unity Connection when sync'd with LDAP

  Hi
  Is it possible to automatically create users that sync with unity connection?
  I have a unity connection 7.0 server that is sync'd with LDAP and i use a ldap filter so that only users with a specific attribute are sync'd. I can see the users when i try to do an import but is there anyway that they can automatically be created

  No
  Check this check box so that Cisco Unity Connection gets basic information on Connection users from the LDAP directories that you specify on the LDAP Directory page. Data is synchronized only for the Connection users that you created by importing users from the LDAP directory. Connection does not automatically create new Connection users when new users are added to the LDAP directory.
  http://www.cisco.com/en/US/docs/voice_ip_comm/connection/7x/gui_reference/guide/7xcucgrg100.html#wp1069724
  HTH
  java
  if this helps, please rate
  www.cisco.com/go/pdihelpdesk

• Error in user creation in portal

  While Creating a user named as  SLDADMIN in portal i am getting error the log file contains
  #1.5#0016E69E70D20069000006A80000143400044E33DA212183#1211884516747#com.sap.security.core.wd.maintainuser.MaintainUserComp#sap.com/tcwddispwda#com.sap.security.core.wd.maintainuser.MaintainUserComp.public void saveModifications( )#J2EE_ADMIN#76936#SAP J2EE Engine JTA Transaction : 0ffffffcb6812052b5#sapserver2.delhi_BS1_13330450#J2EE_ADMIN#da4e23e12bd711ddc1ac0016e69e70d2#SAPEngine_Application_Threadimpl:3_6##0#0#Error##Java###Error in the persistence
  EXCEPTION
  #1#com.sap.security.core.wd.exception.UmeUiPersistenceException: The UME/ABAP user management connector is set to read-only mode and therefore rejects the creation request for user SLDADMIN
  Please help

  Hi,
  You should control in ABAP via SU01 the user SAPJSF (JSF Service User).
  This user should can have 2 roles :
  For read-only access from the AS Java to the ABAP system, choose the role SAP_BC_JSF_COMMUNICATION_RO.
  For read-write access from the AS Java to the ABAP system, choose the role SAP_BC_JSF_COMMUNCIATION.
  You can have more information [here|http://help.sap.com/saphelp_nw04s/helpdata/en/9e/fdcf3d4f902d10e10000000a114084/content.htm]
  Best regards,
  Mathieu
  PS : reward points if helpful

• Formalised user creations in Portal

  How do I create users (already existing database users) in Portal 3.0 based on existing users?
  For instance if we want 600 users to use a site (an Intranet) in personalised way (so we cant use a universal user everybody can use), but dont what do create 600 (taking a whole week or so to create manually) users by hand then how do we do it assuming they already exist as database users?

  Hi Malik ,
  For your scenrio there is no ready made iview but these things can be achieved easily .We can get these values from the api and EP database tables .On a low level you can refer to
  http://help.sap.com/saphelp_nw04s/helpdata/en/fb/144120ea5b4e9c9385d493a578d6c9/frameset.htm
  Portal SP9: Portal Activity Report
  https://www.sdn.sap.com/irj/sdn/wiki?path=/display/snippets/getting%2blogged%2bin%2bportal%2buser%2bdetails%2bin%2bweb%2bdynpro
  https://www.sdn.sap.com/irj/sdn/wiki?path=/display/snippets/list%2bof%2blogged%2bon%2busers%2bin%2bthe%2bportal
  http://help.sap.com/saphelp_nw04/helpdata/en/20/b7ced1025f3245b43d23184fc0212f/frameset.htm
  https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a770132b-0901-0010-5a88-b228ccc7b7b6
  UME API:-Tihis api will give details about the user and no of login and failed attempts and all.
  https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/3641e490-0201-0010-c68f-e51221925714
  Thanx
  Pankaj

• Open connection to LDAP

  Hi,
  I need open a conenction to ldap to verify if user exists in group, but i haven't password of user ORCLADMIN or PORTAL. I need create a user what open a connection to ldap. A single user not connect sucessfull.
  with a single user a have the error:
  javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]
  the same code with user orcladmin connect sucessfull.
  thanks,
  Marcio Mesti

  Thanks group,
  but i resolve my problem alone.

• How to retrieve all users in the portal with UME API

  Hi everybody,
  I would like to know how to retrieve all the users from a portal, which uses LDAP as a source (there are users created in the portal as well)
  My code snippet is :
  IUserFactory userFactory = UMFactory.getUserFactory();
  UserSearchFilter searchFilter = userFactory.getUserSearchFilter();
  searchFilter.setDisplayName("*", ISearchAttribute.LIKE_OPERATOR, false);
  ISearchResult searchResult = userFactory.searchUsers(searchFilter);
  My problem is that with the code above, only the users created in the portal are displayed, and no LDAP users.
  Does someone know how to retrieve all the users whatever is the source?
  Regards
  Renaud

  prakash's code should work.
  however, mine code below doesn't user a search filter. it retrieves everyuser including users like indexadmin etc. Note:
  result.next().toString();
  returns a weird uniqueID used in the portal world.
  getUniqueName()
  gives your the usernames (sAMAccountName in Microsoft AD) people use to logon to the portal.
  try {
    IUserFactory uf = UMFactory.getUserFactory();
    ISearchResult result = uf.getUniqueIDs();
    while (result.hasNext()) {
      String uniqueid = result.next().toString();
      IUser user = uf.getUser(uniqueid);
      String userid = user.getUniqueName();
  } catch(Exception e) {
    //systemout

• Can I use SAP HR to drive ESS Portal user creation?

  Hello
  We are implementing a new instance of SAP HR and Portal for ESS and MSS and I am not sure of all the steps that need to be completed so any guidance / tips would be greatly appreciated.
  Company currently has an LDAP - but not used extensively. Not all employees currently in LDAP as not all have network ids. All employees will have a SAP account to enable ESS (via Kiosks etc).  ESS iViews in Portal will call SAP HR and possibly SAP BW.  We have an instance of SAP already and user admin maintained via CUA - this will continue.
  Scenario:
  My initial thoughts are that we try to use SAP HR as the leading system to drive the ESS Portal users and access.  Basically I want to create the user in SAP and assign them an ESS SAP role... then through syncronization have the user created in the Portal and have the correct ESS Portal assigned (in the Portal)
  My thinking so far is to go the following way;
  1) Create User Master Record in SAP (SU01)
  2) Hire employee into the org structure (via HR processes)
  3) Populate Infotype 0105 with SAP username
  4) Populate Infortype 1016 - with SAP role to be assigned to allow ESS access (not sure about this aspect) or role could be assigned in 1) above
  I am not sure of the next steps - I think there must be a way in an SAP table to map the ESS SAP role to the ESS Portal Role (is this via WP3R?)
  then I am hoping that a standard job can be run (is this RSLDAPSYNC_USER) that will create the user in the Portal (UME?) and assign the correct Portal role ?
  (obviously configuration needed)
  For MSS and HR Power users - we would continue to assign SAP roles via SU01.
  Can anyone assist with;
  - Is my thinking correct in terms of how this should / could work?
  - in SAP how can I map SAP Roles to Portal Roles ?
  - will syncronization in SAP create the user in Portal and assign the role ? what do I need to configure?
  Thanks in advance

  Dear Michale,
  I just dont know if this can throw some light on your prob.'
  In our Orgn we had around 250 ess users and 200 sapr/3 users. Some of the r/3 users also logon to ess via their r/3 uname and password.
  What we have done is like follows:
  1. Created a role for only the ess users ZHRESS. For this i asked the HR functional people with sap_all profile to do all the job which the ESS users are supposed to do and tracer the authorization via tcode st01. We created the role on the basis of this trace report.
  2. For the purely ESS users we created the users via tcode HRUSER and assigned then with the above role.
  3. For the R/3 users who are supposed to avail the ess facility we assigned them with the role ZHRESS role in addition to the other roles assigned to them to carry out their normal R/3 transactions. Then we mapped their R/3 uname to their employee no via PA30 infotype 105.
  4. Tcode HRUSER saved time  which would have consumed had we done it via su01 and moreover it picked Name etc data from the HR master table. In HRUSER tcode , setting the user attributes helps to define what roles the users are to be assigned, what should be their initial password etc.
  Pl let me know if it satisfies you querry.
  Regards

• Script the creation of Portal users in 10.1.2

  Is there an easier way to create multiple portal users in 10.1.2. I know the user is loaded into OID and I can use the ldap tools to bulk load users in OID but I think that the portal schema holds the OID references and permissions themselves. Just curious if there is a way to script creating multiple users into the Portal 10.1.2?
  Thanks

  user12002366 wrote:
  I know how to use ldapadd and etc. I was not aware that the portal database schema was synchronized based on the OID information.
  What process syncronizes the information?
  or am I confused and ldapadd will add the OID user to the Portal schema?I think ldapadd only does add users to OID and has nothing to do with adding users' meta data to the portal database.
  I also look for the info of how does the users info in the portal sync with OID's. Can this be accomplished by using the features of the Provision of OID, which is an out of the box feature? Or do we have develope our own function to achive this? Thanks.

• Tray as appearing in the Portal User Creation screen

  Hi all,
  I am on WAS 6.40 SP15, NWDS 2.0.15 and EP 6.0 SP15.
  When I place 'tray' ui element in my application, I see one vertical line on the left side and horizontal line. I have to remove these lines.
  Can anyone suggest how to modify the 'tray' ui element so that I get a tray as appearing in the Portal User Creation screen.
  Regards
  Srinivasan T

  Hi,
  Then you will have to modify the standard UWL configuration file.
  If your task looks like a standard task (maybe you copied a standard task and modified it slightly), you have to find the ItemType corresponding to the standard task in the UWL configuration file then copy this ItemType and adjust it for you custom task. Please take a look at my last post in another thread : Re: UWL - how to approve purchase requisitions
  If your task is 100% custom then you'll have to find out what is behind the Approve and Reject buttons in the Business Workflow and modify the UWL configuration file accordingly. For instance if a function module is used to approve or reject the request you can define your approve and reject actions using the FunctionModuleActionHandler. You can find more information in the documentation : [Task Launch Customization|http://help.sap.com/saphelp_nw70/helpdata/en/36/dd4ad73c86412e81e9ce66eeb147e7/frameset.htm].
  Regards,
  Pierre

• User status shows active in portal for inactive LDAP users

  Hi all,
  Users listed in the LDAP as deleted or inactive are still listed in EP
  User Management as valid active users.
  1) is there any process or OSS note which can help us to get users
  inactive in portal user management to the corresponding LDAP inactive
  users?
  2) is there any chance that any inactive or deleted entries in LDAP
  should not be searchable from User admin Portal search?
  Any solution for the above problem?
  Please reply.
  Regards,
  haroon

  Hello there,
  i have the same problem: We have several domains that sometimes contain users with the same user-id. This happens, if a user is "moved" from one domain to another: A new user with the same user-id is created in the new domain and the user-status of the user in the old domain is set to "inactive".
  But SAP NetWeaver Portal (7.0 EHP 1) ignores this user-status flag and thus login (with SPNego / Integrated Windows Authentication, which does not send the domain of an identified user to the portal) fails.
  Is there a possibility to get the portal to "ignore" LDAP users (meaning no longer list them in the UME) that have their user-status flag set to "inactive"?
  Thanks for a reply in advance!
  Regards,
  René

• Portal User Creation Problem

  While Creating user in Portal i am getting following error Please help
  Current user has user creation permissions in the UME, but cannot create users in the back-end system (data source). The original and possibly untranslated message was: "No active writeable datasource found for user creation, check your Persistence Configuration.".
  Thanks
  Bhupinder

  Hi,
  If it is ABAP+JAVA stack, we have to create user only in ABAP stack only. We cannot create user in portal. Once we create user in ABAP stack , we can login to portal using that user.
  If there is permission probelm, please assign the permission to the respective user that is " manage_all" action.
  Please let me know if you have any clarifications.
  Regards,
  Bala.

• Can you restrict creation of user types in Portal?

  Hi,
  Is it possible to give a group of users the ability to just create 'Vendor' accounts in the Portal?
  While another group of users the ability to just create 'Contractor' accounts in the Portal?
  ...and other group of users to create just another 'type' of users in the Portal?
  Thanks,
  Sk

  Humm, it's seems a bit complex but try to based your drop down over a new object "UserType".
  See
  http://theidentityguy.blogspot.fr/2011/07/populating-rcdc-dropdownlist-with.html
  After that gives the right to view only object UserType "Vendor" for the set "All admins of Vendor"
  I never try this, it's only an idea :)
  Regards,
  Sylvain

• Error in LDAP user creation

  Hi Expert,
                  I have set up my user in LDAP today. Earlier it was in UME database, because of Two ID, I have deleted UME database .
  Now I am getting error like
  An unexpected error occurred while retrieving user mapping data for system "WebEx".
  Someone can help me to resolve this error?
  Thanks,
  Kundan

  Hi,
  the change of UME datasource went fine? Everything is working? Logon, logoff, user <-> group <-> roles?
  Where do you get the error? Did you configure user mapping for your users before changing the datasource to LDAP? Have you tried to recreate the user mapping for the WebEX system?
  br,
  Tobias