cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Access to SAP idM MMC via client tool or direct through server?

Go to solution
Former Member

on ‎07-11-2012 6:08 AM

0 Kudos

Hi IdM Expert

 

I am implementing SAP IdM for a client, our client has very restricted rule for getting server access. No anyone will be given server access other than Basis team member .  I could not get access IdM MMC access directly from server, the workaround is that I am able to  access MMC via the client tool.

However I have experienced following restrictions when I use client tool to access MMC:

Not able to run the trace for provision jobs,

Not able to perform Java script the trace,

Not able to import  provision framework, and

Not able to retrieve the error log

Just wonder if any people have good way to resolve these issue when use client tool.

Regards

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎07-11-2012 6:43 AM
0 Kudos

Hi Han

for setting up the environment you could use a dispatcher running on your client. This should solve your problems.

Regards

Show replies
Show replies
Former Member
‎07-12-2012 5:14 AM
0 Kudos

Hi Michael 

Could you please elaborate a bite more?

Current I can create new dispatcher via the client tool, however I could not start and stop the dispatcher as it required window admin access (which I current do not have either).

also I am very interested to know how you resolve the trace issue, for example when you trace the java script trace, you need to create java batch file to launch RT GUI , as far as I understand a person need to know the server directory for DJ_HOME and DSE_HOME to be able to create Batch file correctly. Given the fact I can not access the server, how to get the information?

Another issue I have noticed that I am not able to export the task and import the SAP provision framework via client tool, the log informs me that there is sync issue, just wonder how I should resolve that too?

Appreciate your help

Regards

Harry

former_member2987
Active Contributor
‎07-16-2012 4:49 PM
0 Kudos

Harry,

Assuming that the MMC administration console for IDM is installed on your workstation, create a dispatcher locally for you to use.

However, I don't know if this will work long term.  I think you're going to need to sit down and explain the IDM architecture to the BASIS team and let them know that as a fellow SAP Security professional you're going to need some access.  In these environments, I usually invite the BASIS people to work with me with to make the needed changes.

However for some of what you've mentioned above it could be database issues as well, again you'll need to work with the DBAs so that you'll have the correct permissions.

If you let us know the exact error messages you are getting we might be able to give you more specific guidance.

Matt

Answers (0)

Ask a Question