on 05-07-2015 9:24 AM
The features blog says ...
"The synchronization program can be .... scheduled as a background job to run on regular intervals.... "
.... but it doesn't say how to do this.
Can anyone help?
Regards.
Patrick.
Anyone?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello,
Please check Personas 2.0 SP03 Features - SAP Imagineering - SCN Wiki, section "Synchronization of PFCG Role Users and Screen Personas Group Users". In the screenshot, you can see on top a button named "Apply in Background...".
Regards,
Nicolas
After following the screenshots from the guide referenced above, I was not able to successfully synch PFCG roles with Personas. I received an authorization error. Can someone help direct me in what I should request from our SAP security and/or configuration team to get this access set up please?
Note: I am testing SP3 in our QE3 environment.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Looks like adding this transaction to the admin role was forgotten when this feature was introduced with SP3.
My suggestion would be to change the transaction authorizations for the role /PERSOS/ADMIN_ROLE and allow all transactions that start with /PERSOS/ - so instead of just allowing /PERSOS/ADMIN_UI, change that to /PERSOS/* and activate the profile.
You can
* go to PFCG
* search for /PERSOS/ADMIN role (and make a copy if required)
* edit the role
* go to authorization tab
* click "change authorization data" button
* add /PERSOS/PFCG_SYNCH transaction in 2 places highlighted below
* click on save
* click on generate toolbar button
Assign the role to your user (if you created a copy) and you should be able to run sync program now.
Thank you both for assisting in getting access, that has been resolved.
I worked with the SAP Security analyst in my company to configure and test this feature and it doesn't seem to work how we interpreted. The only guidance I can find is the short paragraph in the Personas 2.0 SP03 Features article. Could someone provide an overview with more details of how this should work?
We were expecting the synchronization to match PFCG users with Personas group each time it run, which would include adding and removing users. For instance, we tested adding a user to a PFCG role and we saw it added to the Personas group. When we removed a users from a PFCG role it was not removed from the Personas. Should we expect this to occur?
User | Count |
---|---|
84 | |
23 | |
11 | |
9 | |
8 | |
5 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.