Skip to Content
0

Roles not assigned in roles tab in SU01 from SAP IDM 7.2

Feb 09, 2017 at 10:22 AM

89

avatar image
Former Member

Team,

While creating BW User from SAP IDM , all roles are assigned in the roles tab.

Later we have schedule one job which removes the roles & lock the in active users.

Again as Secondary step, User can request for the same system for his requirement from SAP IDM to reinitiate Unlock, Password reset & assignment of reference user & additional roles in the roles tab as a part of modification for the existing user.

So when he does it the User is getting Unlocked, Password is getting reset & reference user is assigned. We have only one issue that additional roles are not getting assigned.

Would also provide additional information that we have two customized global constants which hold the BW roles, which are being assigned well at the time of creation of User but this assignment of additional roles is not happening when IDM is trying to modify the user.

Please find the screen shot of Global Constants, User Modification logs & User Creation Logs for the User modification for the BW system. customized-global-constants.png user-modification-logs.png user-creation-logs.png .

Please help why the additional roles coming from Customized Global Constants are not being assigned when a user is getting modified ( Recreated in the back end system) but roles getting calculated from the customized global constants are being assigned at the time of User Creation. To add the only difference between the User Creation logs & User Modification Logs is the add Privilege log in the screen shot.

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Steffi Warnecke Feb 13, 2017 at 10:33 AM
0

Hello there,

the logs are good and well, but the destination tabs of the create and modify tasks would be really helpful. ;) The sections where those constants are used.

I see the first one (Z_BW_ROLES) includes roles from the name. The second constant seems to hold something else. Are those also business roles or privileges? Speaking from the IDM view, not the backend.

.

Regards,

Steffi.

Share
10 |10000 characters needed characters left characters exceeded