on 01-27-2005 11:55 AM
Dear all!
I'm using Web AS 6.20 ABAP and MS Active Directory Server based on Win 2003 Server.
i successfully implemented the synchronization of user data between SAP and the ADS.
My question: Is there a way to customize the users on Active Directory Server in regard to their SAP authorization (roles auth. objects etc.)?
Currently I don't have a clue how to do this.
Regards,
Christoph
can you explain your question with an example?
Hassan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Hassan!
Well, MS Active Directory Server doesn't provide (as far as I know) any solution to customize its Users in a SAP specific way. I'd like to use the ADS as a central user administration system and synchronize the USer Store with the SAP USer database tables. In SAP you customize your user assigning authorization objects to a user.
I'd like to know if - and how - you can administer the users assigning these sap authorization objects in the ADS.
Christoph
Have you searched on SDN for "Active Directory"? That turns up a number of results. I think your expectation might be backwards though, it's not how ADS exposes SAP specific data but how SAP uses ADS to store SAP specific data. My understanding (from quite some time ago so I am fuzzy on this) is that SAP can use ADS in much the same way it can use LDAP as an external user store.
The Security Newsletter from November 04 [https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.docs/documents/a1-8-4/sap security newsletter november 2004.pdf] mentions that a webinar is hosted on SDN about this exact topic, unfortunately I was unable to find a direct link.
Regards,
Marc g
User | Count |
---|---|
76 | |
9 | |
8 | |
7 | |
6 | |
5 | |
5 | |
5 | |
5 | |
5 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.