cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

IdM - BPC 10.0 Integration Issue

Go to solution
Former Member

on ‎08-01-2014 7:08 AM

0 Kudos

Hi Everyone,

Our company is implementing BPC 10.0 and we have a specific team managing security in BPC. Once the security is assigned to a user in BPC then BPC is assigning the relevant BPC roles to users in SU01 in the backend (BW).

However we have connected BW to IdM and all the provisioning and de-provisioning in BW takes place via IdM.

Upon any changes to user in IdM, IdM is going into BW and wiping out the BPC roles which causing the users to lose access in BPC.

Has anyone faced this issue? Is there a work around?

Can we have IdM not touch the BPC roles in BW?

Please Help!

Thank you,

KV


Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎10-09-2014 2:10 AM
0 Kudos

Thank you Matt and Aman.

I have setup a custom ABAP update pass to address this issue.

The update pass reads all users and roles from the backend(BW) and manually assigns the ZBPC roles(assigned by BPC in BW) in IdM so IdM is aware of the BPC roles.

I have built a delta mechanism by writing the ZBPC roles to a temp table in IdM, compare them to the ZBPC role assigned in IdM and then add/remove the roles in IdM.

Show replies
Show replies
Steffi_Warnecke
Active Contributor
‎10-09-2014 8:35 PM
0 Kudos

Hello Kautilya,


if your last post contains the solution to your problem, would you please mark it as the correct answer and therefor close the thread. This way others can find it better.


Or is that just a workaround for you and you hope for another solution?



Regards,

Steffi.

Former Member
‎10-09-2014 10:37 PM
0 Kudos

Hi Steffi,

Done! Thank you.

Kautilya

Answers (2)

Answers (2)

Former Member
‎08-07-2014 3:03 AM
0 Kudos

Hi,

In BPC 10 role is generated when a new TEAM/DAP is created.

In Our Project , We Copied system generated roles into our Project roles.

We created one customised table where we maintain entry of these generated roles with Project role &

mapping program where we mapped this roles.

Then we assign those Project Roles in Business roles which were assigned to users.

So IDM stopped whipping out users

Aman

Show replies
Show replies
former_member2987
Active Contributor
‎08-01-2014 3:18 PM
0 Kudos

Kautilya,

Take a look at this and see if it helps:

Some people also put filters in to protect entries, but I'm not an ABAPper to comment on that.

Regards,

Matt

Show replies
Show replies
Ask a Question