Unable to assign privilege from IDM to an ABAP SAP System connected to IDM
When i am trying to assign an privilege for an ABAP system i am receiving an error message that user is already exists. and the privilege assignment status is in failed status. When verified the assigned privileges to the user, found that the user is not having any related privilege assigned related to thar abap system. When verified in that sap abap system we found that, the particular privilege which we are trying to add, was already assigned to the user from very long time. That privilege is not assigned through IDM.
Unable to delete the privilege through IDM as the role is in failed status. We arent givine permission to delete the privilege directly from the sap abap system.
How to make the privileges statu as OK and make sure that privilege is assigned to the user
Yes, you can set them with bypass(you can directly read the user assignments from the ABAP system and set them in IdM with BYPASS), so you won''trigger the provisioning to the back-end system. Then when the privileges are assigned in IdM you can trigger de-provisioning and the roles will be remove from IdM&ABAP.