on 10-25-2012 9:29 PM
Hello all, I really need your help on this.
I don't think I totally understand how the password is supposed to work.
Configured IDM 7.2SP5. Connected to only one ABAP for now. Others to follow. I ran initial load. I setup password policy in IDM. My understanding is that doing this will generate initial password and send emails to users. I am not getting this. I have followed/setup self service password per document. I enabled both "MX_PASSWORD $FUNCTION.sap_core_encryptPasswordMD5()$$" and "MX_ENCRYPTED_PASSWORD $FUNCTION.sap_core_encryptPassword()$$" in the "WriteAbapUsers" of initial load. My users are not getting email (but email works when I assign privilege) to notify of initial logon password. Additionally, when I manually change the password in IDM UI, Users still unable to logon to ABAP client. Do the errors and warnings below play a role?
java.io.FileNotFoundException: /usr/sap/IDM/identitycenter/KEY/Keys.ini (No such file or directory)
Executing
sap_core_getPassword({DES3CBC}1:254768dc0ac56355-9db1bc435e72961a61f1179ff09d772a) got RuntimeException - undefined: Cannot convert null to an object. HINT: Check line 7 in the script sap_core_getPassword
Failed running function in string "$FUNCTION.sap_core_getPassword({DES3CBC}1:254768dc0ac56355-9db1bc435e72961a61f1179ff09d772a)$$".
Marking entry as failed. Exception was: undefined: Cannot convert null to an object.
Why is it looking for " /usr/sap/IDM/identitycenter/KEY/Keys.ini (No such file or directory)" instead of "/usr/sap/IDM/identitycenter/Key/Keys.ini (No such file or directory)"
I appreciate you in advance. Thank you.
Did you set up the path to Keys.ini in NetWeaver? I'm guessing you did not. Also make sure that the exact same Keys.ini is on all IDM systems that are running the MMC console or NetWeaver itself.
Matt
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
What I did so far is to check the "Enable password provisioning" in the ID Store. My understaanding is that this will force a initial password generation which will be emailed to the user. I then ran an ABAP initial load. but no emails with password. I also tried to change the password via the UI but got the error. I'm I missing a step?
Hello Matt, Thanks for your response
I am not aware a script that allows me to set an initial password. The best I see is the script "custom_initializePassword". I am yet to get this to work. My understand is once I check the password provisioning, IDM should generate a system password and email to users. No such email is getting out. Is there something I'm missing?
User | Count |
---|---|
93 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.