cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Integration of MS Active directory with SAP Identity management

Go to solution
Former Member

on ‎08-25-2009 1:29 AM

0 Kudos

Hello

I am implementing SAP identity Management 7.1with external tools MS active Directory with Single sign on using SAP IDM . Is there any documentation as to how do I connect SAP IDM with MS AD with the roles and their user provisioning process .

Also does anyone have a architectural work flow template on this process .

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎08-27-2009 3:23 PM
0 Kudos

I'd suggest taking a look at the included tutorials. NW IdM treats AD as just anothere LDAP. However you'll need SSL for password resets and to know how to deal with the essential AD attributes.

Bind ID which is usually the most troublesome thing is the complete domiain name of the administrator (cn=administrator,cn=users,dc=blah, dc=com)

Show replies
Show replies
Former Member
‎08-31-2009 2:05 PM
0 Kudos

Hi Mathew,

Can you please tell how we can get that document for integrating AD with IDM 7.1 ?

Former Member
‎08-31-2009 3:42 PM
0 Kudos

Sahad,

It should be included with the installation media.

There's one that referrs directly to AD and another one that refers to Directories in general.

Did not see them in the documentation library but their names are:

SAP-NW_IdM_IC_Tutorial_DirectoryServers.pdf

SAP-NW_IdM_IC_Tutorial_ActiveDirectory.pdf

Matt

Former Member
‎08-31-2009 4:35 PM
0 Kudos

Hi Matt,

Thank you for giving the names

Please while creating repository for AD, which option we need to select

a) ADS for SAP PF (Repository template for active directory for SAP provisioning frame work

or

b) Directory ( Repository template for LDAP)

Also how we can use SSL for AD . Is there any documentation which tells about using SSL for AD ?

Thanks in advance.

Former Member
‎09-01-2009 11:18 AM
0 Kudos

Hi,

you should use the ADS for SAP PF.

Information about how to install a certificate for AD can be found here:

http://support.microsoft.com/kb/321051

Best regards

Holger

Answers (3)

Answers (3)

Former Member
‎09-21-2009 4:50 PM
0 Kudos

THANKS A LOT

Show replies
Show replies
Former Member
‎09-02-2009 2:59 AM
0 Kudos

Does SSL works only for password reset in AD or does this password need to be added in attributes in Identity center ?

Also while integration MS AD can we create an automation process to update SSO for users .

Edited by: braveheart on Sep 2, 2009 3:59 AM

Show replies
Show replies
Former Member
‎09-02-2009 6:46 PM
0 Kudos

SSL is required for PW reset. It's also required if you're going to be doing password updates to SAP systems.

Former Member
‎08-27-2009 3:23 PM
0 Kudos

I'd suggest taking a look at the included tutorials. NW IdM treats AD as just anothere LDAP. However you'll need SSL for password resets and to know how to deal with the essential AD attributes.

Bind ID which is usually the most troublesome thing is the complete domiain name of the administrator (cn=administrator,cn=users,dc=blah, dc=com)

Show replies
Show replies
Ask a Question