Hello SDN´s
We have tried very hard for the last days configuring the ume-xml for the following scenario:
- LDAP is used to authenticate the user
- AS ABAP is used to store the roles of the user (because they automatically becomes groups in the portal)
- the portal and the ABAP-system are on different servers
Given facts:
1) we canu2019t synchronize the roles of the ABAP system to the LDAP
2) we have to use the open-LDAP for the authentication
3) DataSources are readonly
4) User can have similar or different userid´s on the DataSources (Mapping required)
Therefore, we read the user and account information from the LDAP and groups/roles form the ABAP AS.
Result:
a) user with similar userid on LDAP and ABAP AS: These user were no longer able to log on to the portal
b) user with different id´s (mapped) on LDAP and ABAP: Can log on
Questions:
- Is it true that similar userid´s leads to inherent problems of the UME Persistence Manager?
- Did we set up a wrong config-xml?
- Is there any other way how we could authenticate to the LDAP and having the Roles of a user read from the ABAP system dynamically?
Thank you very much for your help
Sincerely, A. Hunziker