Kontakt

Ansicht
Dokumentation

LDAP_DELAYED_AUTH_PREPARE - Delayed Authentication Step 1: Find in Directory

LDAP_DELAYED_AUTH_PREPARE - Delayed Authentication Step 1: Find in Directory

ABAP Short Reference   Fill RESBD Structure from EBP Component Structure  
This documentation is copyright by SAP AG.
SAP E-Book

Functionality

Prepare the "Delayed Authentication" for an SAP user against an external directory service.

Preconditions:

  • A directory service is maintained in ABAP customizing (transaction LDAP, function "LDAP Servers") with LDAP application "Delayed Authentication".
  • For this entry, a field mapping is maintained between an attribute of the SAP user master data (currently offered: SAP user name, alias name and E-mail address) against an attribute in the directory service (e.g. "uid" or "mail"). This attribute will be used to identify the user in the directory service.
  • At least one object class is maintained which must be present in the directory service entry to be recognized (typically "person" or "inetOrgPerson" or "user").
  • Unless for testing purposes, the directory service must be configured for transport layer security (either using the ICM LDAP Plug-In with security protocol <> "Unencrypted", or as fallback the LDAP Connector with port number 636).

When the function returns successfully, the given user could be identified (unambiguously) in the directory service, and in the next step, the user's password in the directory service can be verified (LDAP_DELAYED_AUTH_EXECUTE).

Example

Notes

The function of "Delayed Authentication" has no relation to the authentication of the user in the SAP system. See the similar comment in LDAP_DELAYED_AUTH_EXECUTE.

The functionality does not require additional user authorizations in the SAP system (RFC authorizations for calling those functions remotely are not part of this statement) when called with initial user name (use current user) and initial server name (use the default server for delayed authentication).

Further information





Parameters

EV_SERVERID
EV_TOKEN
EV_USER_DN
IV_ALLOW_INSECURE_LDAP
IV_SERVERID
IV_USERID

Exceptions

NOT_AVAILABLE_FOR_THIS_USER
SYSTEM_ERROR
SYSTEM_ERROR_INSECURE_LDAP

Function Group

SLDAP_DELAYED_AUTH

BAL_S_LOG - Application Log: Log header data   TXBHW - Original Tax Base Amount in Local Currency  
This documentation is copyright by SAP AG.

Length: 3115 Date: 20240523 Time: 070713     sap01-206 ( 42 ms )