Skip to Content
0

LDAP and GRC 10 Integration Information

Mar 20 at 08:06 AM

44

avatar image

Hi All,

Can anyone help me to know the way in below information.

There is a RFC connection in between LDAP and GRC system.

Is there any way where we can pull information of end user which are stored in LDAP server and we can pull all those information in SAP table and then reuse that information in some other way.

For E.g. I need a table where it can have information like User ID, User complete name, User email Address etc. and this information should map or pull or synchronize from LDAP server to SAP table.

Is there any standard or custom way to do this. Kindly provide your suggestions.

Many thanks in advance.

Arpit

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Ramesh Vithanala Mar 20 at 03:45 PM
0

Hi Arpit,

Yes we can connect LDAP to GRC AC 10.1.Do you have the RFC working between GRC and LDAP? Did you perform the field mapping b/w GRC AC fields and LDAP fields?Are you able to test the LDAP connectivity by doing a string serach?

When you do the repository object sync against the LDAP connector the user information will be updated in the GRACUSER table against the LDAP connector or you can pull the information runtime.

Thanks

Ramesh

Show 4 Share
10 |10000 characters needed characters left characters exceeded

Hi Ramesh,

Yes, There is a RFC Connection Maintained in between GRC and LDAP system, also there are Field Mapping setup in place between both.

I tried scheduling the Repository Sync and it successfully ran but still after completion of job no users were updated from LDAP to GRC

system.

I checked RFC connection between GRC-->LDAP and it was successful.

Can you please suggest what would be the reason.

Thanks,

Arpit

0

are you seeing any LDAP connector entries in GRACUSERCONN table after you run the repository synch?

0

Arpit,

Check the following SAP notes

2490936 - Issue with LDAP SYNC

1870788 - LDAP Repository Sync does not bring in any records( I am not sure what's your LDAP is?If its SUNONE then try)

1823253 - Maximum number of find results exceeded

Any SLG1 errors(user adapter empty) or ST22 dumps

Thanks

Ramesh

0

Check this too

2415164 - User search failed from LDAP data source

1) If issue is related with missing authorization then assign a role including S_LDAP authorization with ACTVT 03 and ACTVT 51 to the requestor user.

2) If authorizations are properly assigned then as per the way LDAP is configured to use, port number can be changed. Port number that can be used is mentioned in KBA - 2344229.

Thanks

Ramesh

0