Skip to Content
avatar image
Former Member

Doubt SAP IDM with Active Directory

Hi There

Sorry for send a particular email, but I saw your name on many forums about SAP.

I am implementing a SAP IDM and I have a doubt, If you have any information about this I would be very glad.

The question is:

I have a HR System, that contais a field about a Branch that new employee will work.

IDM can be read this field and creates a user in a respective Organizational Unit?

Like if the new user wil work in " Las Vegas Branch" the idm reads the field from HR data and automatically create the new user on Active directory in OU "Las Vegas"?

This is a overview about my challenge.

Thank for your attention.

  1. Regards.
Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • Best Answer
    Sep 27, 2013 at 06:00 PM


    This is easily handled, simple adjust the framework AD provisioning task so that the dn line reads something like:


    This would let you include a custom attribute as an OU value for the given repository. 

    Best thing to do is populate the Z_BRANCH attribute with the permissible values. This thread talks about some ways to accomplish this and goes into the scenario in more detail.

    Hope this helps!


    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Sep 28, 2013 at 02:31 AM

    Hi Miguel,

    If your branch name and OU name are same, you can user directly what Matt has suggested. i.e


    where Z_BRANCH is the new attribute that has to be created by you which populates the allowed OUs.

    You the OU name and branch name are different, the you have to maintiang the mappings in a table and read the OU from the table for that branch selected, using a script.

    Refer to my reply in the thread for, in details.



    Add comment
    10|10000 characters needed characters exceeded