cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP IDM - Unable to copy AD accounts

Go to solution
Former Member

on ‎04-05-2013 11:34 AM

0 Kudos

We have just recently moved over to SAP IDM and have been told to no longer user AD.  Now i find this a little difficult having used AD for so many years but nevertheless we gave it a go.

Firstly the system is slow and according to SAP the ability to copy a current AD account from within IDM is not available which is a pain as when creating new accounts in IDM we have to manually add security groups which is a pain when some user have over 50.

Please can someone tell me if there is a way around this??????

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎04-09-2013 8:41 AM
0 Kudos

Hi Alex,

There are a couple of ways you could tackle this. The first is to look at the RDS offering from SAP which I believe includes the ability to copy a user. A better approach would be to build a role model where you group the AD groups together and then you can assign the role to the users instead. Hope that helps, let me know if you have further questions.

Ian

Show replies
Show replies
Former Member
‎04-09-2013 10:39 AM
0 Kudos

Hi Alex,


From what I understand, you want to move already created users from AD to IDM.

One way to do that is to connect AD and IDM and to make an initial upload  from AD to temporary table and from the temporary table to IDM. The way to do that is:

1. Create Repository to connect with Active Directory

2. Create Job in Job Folder to read user from AD(here you need 3-pass-s 😞

  • To Database(to create a temporary table)
  • From Ldap (to read users from AD)
  • To Database(to fill the temporary table with users)

3. Create second job in Job Folret (here you need only one pass to write to Idetity Store)

  • To Identity Store(in source tab - select users from temporary table and in destination tab - write to MX_PERSON)

BR

Simona Lincheva

Murali_Shanmu
Active Contributor
‎04-09-2013 11:33 AM
0 Kudos

If you are looking to copy user accounts within IdM, I agree with Ian's approach.

Below screenshot from SAP RDS Solution shows how you can copy Group assignments from One user/Identity to another user in IdM.

Answers (1)

Answers (1)

Murali_Shanmu
Active Contributor
‎04-07-2013 5:30 AM
0 Kudos

Hi Alex,

From what I gather, you were using AD to create users in the Past. With IdM now replacing AD, you have to create users from IdM. I understand that there is no standard functionality in IdM to copy an existing user to a new users.

Are you looking to copy User/Identity within IdM ?

You can have a look at this blog which explains how to copy roles/privileges from one user to a new user (which has been already created in IdM).  You would have to do something similar.

Cheers,

Murali.

Show replies
Show replies
Ask a Question