SAPGUI/Portal authenticate to Active Directory wit...

Former Member · ‎08-02-2007

Hi experts,

We have a scenario where the business wants to manage all the passwords via AD. I've been doing some reading and i see that it is possible to tell SAP to use the user store in AD.

Our problem is that the userid's are different in SAP and in AD. On SAP, it's the employee number and on AD it's a combination of the first and last names of the employee.

We do not want to change either of the userid's.

Is it possible to map the AD userid's with the employee number? The employee numbers are stored on AD, but we're not sure how to go about using this as an alias to the AD userid.

Any help will be appreciated.

Thanks in advance.

JPReyes · ‎08-02-2007

Hi Johann,

Yes, Its possible to use an attribute of LDAP (in this case employee ID) to do user mapping.

Read,

http://help.sap.com/saphelp_nw04s/helpdata/en/0b/d82c4142aef623e10000000a155106/frameset.htm

http://help.sap.com/saphelp_nw04s/helpdata/en/98/9b2f41893a6e24e10000000a155106/frameset.htm

I did it a couple of years ago... so if you have any issues i may be able to help you.

Regards

Juan

sascha_tubbesing · ‎08-02-2007

Hi,

I assume you have the following 3 systems:

SAP NetWeaver Portal

SAP ABAP System

MS ADS

You can configure the Portal system UME to the ADS. Now the portal users are the same as in ADS.

You can use the SAP ABAP System as a reference system for Logon Ticket. Meaning all portal users have to map their user/password ONCE to the ABAP system.

In this way it will be possible to have SSO with Logon Ticket from Portal to SAP ABAP system whithout further infrastructure.

Regards,

Sascha

SAPGUI/Portal authenticate to Active Directory with different userid's

Accepted Solutions (0)

Answers (2)

Answers (2)

Re: Send Keys on Windows / SAP / saving pdf file

EWM Picking based on route or ship-to party

Re: How to upload an image to Document Information...

Re: Transcation codes in S4HANA

Re: How to get Binary Value from Partner Directory...