You can delete account definitions if they are not assigned to target systems, employees, hierarchical roles or any other account definitions.
|
NOTE: If an account definition is deleted, the user accounts arising from this account definition are deleted. |
To delete an account definition
Select the category SAP R/3 | Basic configuration data | Account definitions | Account definitions.
Select the category SAP R/3 | Basic configuration data | Account definitions | Account definitions.
Select the category SAP R/3 | Basic configuration data | Account definitions | Account definitions.
Select the category SAP R/3 | Basic configuration data | Account definitions | Account definitions.
Remove business roles from Remove assignments.
Select the category SAP R/3 | Basic configuration data | Account definitions | Account definitions.
Select the category SAP R/3 | Basic configuration data | Account definitions | Account definitions.
The One Identity Manager supplies the following basic data for user administration, by default:
Other basic data is read from SAP R/3 during synchronization, if configured, and cannot be editing in One Identity Manager. This merely allows assignment to an SAP user account. These include:
Certain user account properties can be defined as default for all user accounts through the configuration settings. These include:
The user account types are available in One Identity Manager by default. SAP R/3 recognizes the user account types listed below.
User account type | Meaning |
---|---|
Dialog (A) | Dialog user in a system. |
System (B) | Background processing within an system. |
Communication (C) | Communication between systems without a dialog. |
Service (S) | Common user account for anonymous system access, for example.
User account of this type should have heavily restricted access permissions. |
Reference (L) | Common user account for additional granting of permissions. |
The default user account type for new user accounts is specified in the configuration parameter "TargetSystem\SAPR3\UserDefaults\Ustyp".
To modify the default user account type
External authentication methods for logging on to a system can be used in SAP R/3. The One Identity Manager supplies the following types as user identifiers to find the login data necessary for different authentication mechanisms for external systems on an SAP system:
Type | Description |
---|---|
DN | Distinguished Name for X.509. |
NT | Windows NTLM or password verification with the Windows domain controller. |
LD | LDAP bind <user defined> (For other external authentication mechanisms). |
SA | SAML Token. |
To specify a default type for external identifiers
© 2023 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy