on 08-28-2014 8:39 PM
Hello community,
I am working with a team to help deploy Personas for our production systems. I was wondering if there was a way to provide access through PFCG roles in SAP? I know about the admin transaction and how to give access there, but we are trying to make gaining access to personas an automated process. Could there be a way to automically give access to everyone in SAP without ever having to look at the /persos/admin_ui transaction?
If both answers are no, here is one more thought: Could personas access be given through automatic user provisoning in IDM?
Regarding IDM and Personas access provisioning, in the meantime an excellent blog post was created explaining a possible way to handle this:
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
hi terrance,
Using PFCG roles, you can create groups (under mass Group Maintenance) and then provide PERSONAS authorization to that group.
For sync-up of users in that role on regular basis, check Tamas reply above.
Best Regards,
Sushant
Sorry, my update over assigning personas role directly to a group was incorrect.
Message was edited by: Sushant Priyadarshi
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
As Chinthan said, in standard Personas 2.0 it is not possible to do what you are looking for. However if automation is your goal, perhaps this can help:
If you want to automatically allow all users to access Personas, I can imagine creating a group based on a PFCG role that all users have, then automate this program to run daily. This would pick up the list of all users and assign the role RENDER_ONLY to them, for instance. The scheduled run will then take care of inserting all new users into the group and assigning Personas access at the same time. It won't do Personas role deletions though...
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Terrance,
Personas roles are independent of PFCG or IDM authorization to control what level of access should be provided to each user in Personas. Currently there is no way to use PFCG or IDM with Personas 2.0.
Thanks
Chinthan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
85 | |
10 | |
10 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.