cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

RSLDAPSYNC_USER and User Mappings

Go to solution
Former Member

on ‎04-05-2005 1:35 PM

0 Kudos

Not sure but I think the problem is how I have my user mappings.

I run the report and everything checks out with Green, however no matter what I try the directory objects is always 0 so no sync takes place.

Anyone had this problem before?

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

juergen_kremp
Explorer
‎04-05-2005 5:17 PM
0 Kudos

Dear Craig,

SAP Note 618095 documents which conditions an entry in the directory must fulfil in oder to be recognized as potential SAP user entry.

Extract: It must have all objectclasses that are configured in the mapping, and it must have the attribute that is configured as "filter-attribute" filled with a value that is suitable as SAP-username (especially shorter or equal 12 characters).

PS: The note also lists that the user selections in RSLDAPSYNC_USER cannot be applied to the LDAP search filter when finding the entries. This behavior is likely to change within one of the next Support Packages. A separate note will follow once this is available.

Kind Regards,

Juergen Kremp

Show replies
Show replies
Former Member
‎04-05-2005 8:00 PM
0 Kudos

Thanks you've got me at least going in a nice direction. I had a feeling the problem was in the mapping.

I will try it at work tomorrow.

Former Member
‎04-06-2005 9:09 AM
0 Kudos

Just read through the note, I made sure my object classes that were listed were mapped to sap fields.

I also changed the base root of my server to go further into the tree however, still get 0 objects found.

Former Member
‎04-06-2005 12:55 PM
0 Kudos

Turns out I had a problem with the objectClasses.

Former Member
‎05-25-2005 4:11 AM
0 Kudos

Hi Craig,

Hope you have solved your R/3 LDAP Synchronization.

I am facing the same problem, my LDAP COnnector is running and i am able to login with the user in transaction LDAP.

But when i do the Mapping and run the Syncronization report, it gives me 0 entries allways in LDAP and the number of users in R/3, but no synchronization is happening.

I am using the Object Calls as sAMAccountName (User id attribute in MS-ADS directpry server we use here).

We have not extended thee schema for having the seperate attribute for SAP user name.

i am using the following mapping structure

Structure Field Attribute

1 BAPIBNAME BAPIBNAME sAMAccountName

2 BAPIADDR3 FIRSTNAME givenname

3 BAPIADDR3 LASTNAME sn

I am making the first field as Filter, Import , Export , RDN Mapping

Remaining all are Import and Export

And in the Synchronization Step i made all variables as Import.

Is my mapping correct? Or is there any other thing i am missing out.

Please suggest. If possible can you please update with your mapping structure.

Thanks & Regards

Sumanth

sumanththunga@yahoo.com

Former Member
‎05-25-2005 6:14 AM
0 Kudos

Hi,

I changed the mapping as follows with objectclass = user.

1 USERNAME BAPIBNAME sAMAccountName

2 ADDRESS FIRSTNAME givenName

3 ADDRESS FULLNAME givenName

sn

4 ADDRESS LASTNAME sn

Then when i execute the sync report, now it shows the Number os users in Directory and in Database and both.

And also it has created the user which is only in Directory in to Database.

But When it tries to create the users in Directory, i am getting the LDAP_CREATE Failed error. the Error details are as follows.

Restriction violated

Message no. LDAPRC019

Diagnosis

One of the following events has occurred:

1. You have attempted to specify a value for the attribute "userpassword" which does not satisfy the server restrictions.

2. You have attempted to log on, but your access is locked.

And also when i try to login using the newly created user from directory into database, it gives me there is no password and could not login.

For making the LDAP Authentication default for all users where do i need to set it.

Please suggest me on the two errors.

Thanks & Regards

Sumanth

sumanththunga@yahoo.com

Former Member
‎05-25-2005 6:29 AM
0 Kudos

It sounds as though your user for connecting is not correct or your password length/format etc. does not match your LDAP.

THese are just thoughts though I'm out of the office and can't check anything at the moment.

Former Member
‎05-25-2005 6:40 AM
0 Kudos

Hi Craig,

Thanks for the quick response.

In the Mapping, do we need to set the password also to be mapped.

I am still investigating for the cause of the error.

May be when you are back to office, if any thing found in my steps, please suggest me.

Thanks & Regards

Sumanth

sumanththunga@yahoo.com

Former Member
‎05-26-2005 6:26 AM
0 Kudos

Hi,

I have debugged the sync programm.

In this case while trying to create the user in the MS-ADS, the following function LDAPRFC_ADD in the Function Module LDAP_ADD, is returning the LDAPRC value as 19.

This LDAPRFC_ADD is a call to the C-Interface.

Any Idea what is wrong, is there any other settings are required. All Authorozations are successful while checking in the debugging.

Thanks & Regards

Sumanth

Former Member
‎05-26-2005 8:26 AM
0 Kudos

Hi,

Some good progress.

I have added the "cn" as import and as well as "sAMAccountName" as export attributes with "givenName" and "sn" as export.

Then the Sync Programm has created the entries in Directory Server. And another way also the entries are gettign created in Database.

But, the users created in Directory Server are in Deactivate State, and also the password part is not clear in my assumptions.

For automatically Enabling and also for automatic authentication, what other parameters has to be added.

Please Suggest.

Thanks & Regards

Sumanth

sumanththunga@yahoo.com

Former Member
‎05-31-2005 8:22 AM
0 Kudos

Not tried all that yet I'll be back to work in a few days and I'll be able to play around then.

Former Member
‎07-14-2008 3:28 PM
0 Kudos

HI Friends

I am trying to create an user account both using LDAP transcation and LDAP_ADD FM . when I use LDAP transaction it gives me this error message :

"Another server is referenced'? when using LDAP_ADD FM it is returing ldapc as 65 for LDAPRFC_ADD'

RFC . wht is the problem ?? LDAP side or BAsis side?

please let me know

Sony

mathiashorn
Discoverer
‎06-03-2014 2:49 PM
0 Kudos

I know this is an old slot. But did you solve the LDAP RC 065. I´m facing the same problem.

Answers (0)

Ask a Question