on 04-22-2006 1:13 AM
Guys, hope somebody can help me here.
My sapum.properties is set to use MSADS. But I by mistake commented out the servername, port, paths for groups and users.
The server will not start because of this change. Is there a way I can fix this. here is my sapum from the UI.
###############################################################################
SAP User Management Engine Configuration
###############################################################################
###############################################################################
Logging settings
###############################################################################
##The external class for the portal logger should be used.
##If trace file from native logging api should be used, set this property to "com.sap.security.core.util.imp.UMTrace_EX"
##and set properties "ume.trace.trace_level" and "ume.trace.debug_exception_level" to a severity level from 1 to 5.
ume.trace.external_trace_class=com.sapportals.portal.prt.service.usermanagement.util.UMTrace_620_Portal
###############################################################################
Data source settings
###############################################################################
##xml file that configures the persistence except roles
ume.persistence.data_source_configuration=dataSourceConfiguration_ads_writeable_db.xml
##xml file that configures the roles persistence which are coming from the pcd
NOTE: ume.persistence.pcd_roles_data_source_configuration AND ume.persistence.ume_roles_data_source_configuration
mustn't be used together.
ume.persistence.pcd_roles_data_source_configuration=dataSourceConfiguration_PCDRoles.xml
##xml file that configures the roles persistence which are coming from the ume
NOTE: ume.persistence.ume_roles_data_source_configuration AND ume.persistence.pcd_roles_data_source_configuration
mustn't be used together.
#ume.persistence.ume_roles_data_source_configuration=dataSourceConfiguration_UMERoles.xml
##specification of the default cache
ume.cache.default_cache=distributableCache
###############################################################################
LDAP settings
###############################################################################
##specifies the servertype NOVELL oder SUN
ume.ldap.access.server_type
##the ldap server name
##ume.ldap.access.server_name=NortDC.fngp.com,PlymDC.fngp.com
##the port of the ldap server
##ume.ldap.access.server_port=389,389
##the user used for connecting to the ldap server
##ume.ldap.access.user=FNGP
ADSUser
##the password of the user
##ume.ldap.access.password=
2hNbedUUwhwiKCN6wpZqXw\=\=
##true if ssl is used, false if not
ume.ldap.access.ssl=FALSE
##the path in the ldap server, where the users are found
##ume.ldap.access.base_path.user=OU\=FNGP,DC\=fngp,DC\=com
##the path in the ldap server, where the useraccounts are found; only nedded if a user object is not an account object
#ume.ldap.access.base_path.uacc=
##the path in the ldap server, where the groups are found
##ume.ldap.access.base_path.grup=OU\=Portal Groups,OU\=FNGP,DC\=fngp,DC\=com
##the data for the connection pool
ume.ldap.connection_pool.min_size=1
ume.ldap.connection_pool.max_size=10
ume.ldap.connection_pool.max_idle_connections=5
ume.ldap.connection_pool.max_idle_time=600000
ume.ldap.connection_pool.max_wait_time=60000
ume.ldap.connection_pool.monitor_level=0
ume.ldap.connection_pool.retrial=10
ume.ldap.connection_pool.retrial_interval=10000
ume.ldap.connection_pool.release_check_interval=120000
###############################################################################
###############################################################################
##specify if you want to user an internal or external connection pool
ume.db.connection_pool_type=jdbc/sapep
##if you are using an internal connectionpool please use the following properties to configure the connections
##specify the database driver
ume.db.jdbc_driver
##specify the database url
ume.db.jdbc_url
##specify the database user
ume.db.jdbc_user
##specify the user password
ume.db.jdbc_password
##if you are using an external cnnectionpool
##(connection pool of the j2ee engine) please use the following properties to configure the connectionpool
##the context factory of the j2ee connection pool
ume.db.connection_pool.j2ee.initial_context_factory=com.inqmy.services.jndi.InitialContextFactoryImpl
##the provider url of the j2ee connetion pool
ume.db.connection_pool.j2ee.provider_url=localhost
##setting of the internal database connection pool
ume.db.connection_pool.internal.minsize=1
ume.db.connection_pool.internal.maxsize=30
ume.db.connection_pool.internal.max_idle_connections=5
ume.db.connection_pool.internal.max_connection_idle_time=600000
ume.db.connection_pool.internal.max_wait_process_time=600000
ume.db.connection_pool.internal.monitor_interval=500
ume.db.connection_pool.internal.connect_retrials=0
ume.db.connection_pool.internal.max_connection_usage_timel=600000
ume.db.connection_pool.internal.max_connection_usage_time_check_interval=60000
ume.db.connection_pool.internal.monitor_path=./
###############################################################################
###############################################################################
ume.r3.connection.master.client
ume.r3.connection.master.user
ume.r3.connection.master.passwd=g8EnrAsDbQw\=
ume.r3.connection.master.sysnr
ume.r3.connection.master.useXML=false
R/3 application name (only CRM and EBP are supported)
ume.r3.connection.master.application
End of required keys
Start of required-optional keys
One of following 3 options is required:
Option 1: application host name
ume.r3.connection.master.ashost
Option 2: (name used to map to the sapmsg.ini file.)
#ume.r3.connection.master.r3name=
Option 3: message server
#ume.r3.connection.master.msghost=<message server>
Required when options 2 and 3 are used (e.g. PUBLIC)
#ume.r3.connection.master.group=<group of message server>
End of required-optional keys
Start of optional keys
ume.r3.connection.master.lang=EN
number of connections to create in the connection pool
ume.r3.connection.master.poolmaxsize=10
Time in milliseconds to wait for available connection before error
ume.r3.connection.master.poolmaxwait=10000
###############################################################################
Security Policy
###############################################################################
ume.logon.security_policy.useridminlength=6
ume.logon.security_policy.useridmaxlength=20
ume.logon.security_policy.userid_in_password_allowed=TRUE
ume.logon.security_policy.oldpass_in_newpass_allowed=TRUE
ume.logon.security_policy.password_min_length=6
ume.logon.security_policy.password_max_length=10
ume.logon.security_policy.password_mix_case_required=0
ume.logon.security_policy.password_alpha_numeric_required=0
ume.logon.security_policy.password_special_char_required=0
ume.logon.security_policy.password_change_allowed=FALSE
ume.logon.security_policy.lock_after_invalid_attempts=6
ume.logon.security_policy.auto_unlock_time=60
ume.logon.security_policy.password_expire_days=99999
ume.logon.security_policy.cert_logon_required=FALSE
ume.logon.security_policy.cookie_life_time=172800
###############################################################################
security parameters
###############################################################################
path of your IAIK keystore
login.ticket_keystore=ticketKeyStore
Key pair alias with the Keystore ('sapportal' recommended for new install)
login.ticket_keyalias=TestKey
login.ticket_lifetime=8
url of the SAP trustcenter that signed the portal key (req. for RA functionality)
trustcenter=https://tcs.mysap.com/invoke/tc/usercert
logical adapter name of authenticating backend
credentials are checked against this specified repository (see repository_configuration_file)
login.authentication_server=Corporate Authentication Server
#authschemes conf xml file
login.authschemes.definition.file=authschemes.xml
ume.superadmin.activated=FALSE
(Comma separated) list of role xml files
#ume.roles.xml_files = *role.xml
###############################################################################
Self Registration ################################
###############################################################################
to enable self registration process. (default: true)
ume.logon.selfreg=true
ume.admin.selfreg_company=false
###############################################################################
Notification Mails ################################
###############################################################################
mail host, separated by semicolon if several hosts
ume.notification.mail_host=<mailhost1>;<mailhost2>;<mailhost3>
ume.notification.mail_host=nort-smtpsrv-1.fngp.com
Email sending mode
asynchronous is preferred especially when many emails are sent out
ume.notification.email_asynch=TRUE
Sending an email on the below events can be switched on(default)/off
ume.notification.create_request=true
ume.notification.create_approval=true
ume.notification.create_performed=TRUE
ume.notification.pswd_reset_request=TRUE
ume.notification.pswd_reset_performed=TRUE
ume.notification.unlock_request=true
ume.notification.lock_performed=TRUE
ume.notification.unlock_performed=TRUE
ume.notification.delete_performed=TRUE
ume.notification.create_by_batch_performed=TRUE
ume.notification.update_by_batch_performed=TRUE
ume.notification.create_denied=true
###############################################################################
anonymous user
###############################################################################
Defines which mode of anonymous logon is to be used. Default value is 1.
1 = Anonymous logon with named anonymous users is used.
0 = Simple anonymous logon is used.
ume.login.anonymous_user.mode=1
Comma-separated list of guest users that are supported. These users must exist with this unique ids in the user repository. This parameter does only take effect if ume.login.anonymous_user.mode=1
ume.login.guest_user.uniqueids=anonymous
###############################################################################
user admin
###############################################################################
ume.admin.search_maxhits_warninglevel=200
ume.login.guest_user.defaultid=anonymous
login.ticket_issuer=FNN
ume.license.sysid=FNN
#Additional properties
#Sat Nov 13 17:49:49 EST 2004
ume.r3.mastersystem=
ume.r3.connection.master.r3name=
ume.r3.connection.master.msghost=
ume.r3.connection.master.group=
###############################################################################
LogOff
###############################################################################
ume.logoff.redirect.url=http://nortweb1.fngp.com/cleartrust/ct_logout.asp
ume.logoff.redirect.silent=false
#Additional properties
#Fri Apr 21 18:34:00 EDT 2006
#ume.ldap.access.server_port=389
#ume.ldap.access.user=FNGPEXT
adm_msb
#ume.ldap.access.password=xDhj3ijP/xaX74LzqzAPJw\=\=
#ume.ldap.access.server_name=Nortextdc.fngpext.com
#Additional properties
#Fri Apr 21 18:35:36 EDT 2006
#ume.ldap.access.base_path.user=OU\=FNGPEXT,DC\=fngpext,DC\=com
#ume.ldap.access.base_path.grup=OU\=FNGPEXT,DC\=fngpext,DC\=com
Thank You madhavi
Hi Madhavi,
What version are you using?
If you are using NW04, I would log into the configtool and click on the UME LDAP data icon. In the drop down list select the database only configuration (datasourceConfiguration_database_only.xml). The portal then should start up, you'll be able to log in as Administrator and uncomment these lines and then switch the UME datasource back to your original file.
There are other options, but to ensure other changes you've made to direct editing of the config file this may be the easiest.
Hope it helps,
Marty
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
search for the sapum.properties file in the \usr\sap subdirectory and uncomment the settings for the LDAP:
###############################################################################
LDAP settings
###############################################################################
##specifies the servertype NOVELL oder SUN
ume.ldap.access.server_type
##the ldap server name
ume.ldap.access.server_name=NortDC.fngp.com,PlymDC.fngp.com
##the port of the ldap server
ume.ldap.access.server_port=389,389
##the user used for connecting to the ldap server
ume.ldap.access.user=FNGP
ADSUser
##the password of the user
ume.ldap.access.password=2hNbedUUwhwiKCN6wpZqXw\=\=
##true if ssl is used, false if not
ume.ldap.access.ssl=FALSE
##the path in the ldap server, where the users are found
ume.ldap.access.base_path.user=OU\=FNGP,DC\=fngp,DC\=com
##the path in the ldap server, where the useraccounts are found; only nedded if a user object is not an account object
#ume.ldap.access.base_path.uacc=
##the path in the ldap server, where the groups are found
ume.ldap.access.base_path.grup=OU\=Portal Groups,OU\=FNGP,DC\=fngp,DC\=com
hth,
Michael
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
83 | |
10 | |
10 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.