https://community.sap.com/t5/application-development-and-automation-discussions/mass-authorization-maintenance-in-java/m-p/9557367#M1753759 <HTML><HEAD></HEAD><BODY><P>Would you rather be able to define the UME role through Active directory and just have your Java stack look for that item and reduce the admin work in the Java system?</P><P></P><P><A href="http://wiki.sdn.sap.com/wiki/display/Security/User+Mappings+in+the+Authentication+Framework+of+SAP+NetWeaver+Application+Server+%28AS%29+Java#UserMappingsintheAuthenticationFrameworkofSAPNetWeaverApplicationServer%28AS%29Java-UserMappingOptionsforClientCertLoginModule" title="http://wiki.sdn.sap.com/wiki/display/Security/User+Mappings+in+the+Authentication+Framework+of+SAP+NetWeaver+Application+Server+%28AS%29+Java#UserMappingsintheAuthenticationFrameworkofSAPNetWeaverApplicationServer%28AS%29Java-UserMappingOptionsforClientCertLoginModule">http://wiki.sdn.sap.com/wiki/display/Security/User+Mappings+in+the+Authentication+Framework+of+SAP+NetWeaver+Application+Server+%28AS%29+Java#UserMappingsintheAuthenticationFrameworkofSAPNetWeaverApplicationServer%28AS%29Java-UserMappingOptionsforClientCertLoginModule</A></P><P></P><P>I don't have this setup, but I would think you could have it look for a group in AD and have Java map that to the role that you want.</P></BODY></HTML> Mon, 01 Jul 2013 15:14:32 GMT bxiv 2013-07-01T15:14:32Z https://community.sap.com/t5/application-development-and-automation-discussions/mass-authorization-maintenance-in-java/m-p/9557366#M1753758 <HTML><HEAD></HEAD><BODY><P>Hello all,</P><P>System is JAVA-only landscape (e.g. ESR). Identity management is configured to use LDAP (data source = Microsoft ADS Read-Only (Flat Hierarchy) + Database).</P><P>There will be around 300 users where we have to assign specifc UME role.</P><P>Question - is there a way of doing like 'mass maintenance', like upload from spreadsheet? </P><P>Thanks,</P><P>Terry</P></BODY></HTML> Mon, 01 Jul 2013 14:19:15 GMT https://community.sap.com/t5/application-development-and-automation-discussions/mass-authorization-maintenance-in-java/m-p/9557366#M1753758 Former Member 2013-07-01T14:19:15Z https://community.sap.com/t5/application-development-and-automation-discussions/mass-authorization-maintenance-in-java/m-p/9557367#M1753759 <HTML><HEAD></HEAD><BODY><P>Would you rather be able to define the UME role through Active directory and just have your Java stack look for that item and reduce the admin work in the Java system?</P><P></P><P><A href="http://wiki.sdn.sap.com/wiki/display/Security/User+Mappings+in+the+Authentication+Framework+of+SAP+NetWeaver+Application+Server+%28AS%29+Java#UserMappingsintheAuthenticationFrameworkofSAPNetWeaverApplicationServer%28AS%29Java-UserMappingOptionsforClientCertLoginModule" title="http://wiki.sdn.sap.com/wiki/display/Security/User+Mappings+in+the+Authentication+Framework+of+SAP+NetWeaver+Application+Server+%28AS%29+Java#UserMappingsintheAuthenticationFrameworkofSAPNetWeaverApplicationServer%28AS%29Java-UserMappingOptionsforClientCertLoginModule">http://wiki.sdn.sap.com/wiki/display/Security/User+Mappings+in+the+Authentication+Framework+of+SAP+NetWeaver+Application+Server+%28AS%29+Java#UserMappingsintheAuthenticationFrameworkofSAPNetWeaverApplicationServer%28AS%29Java-UserMappingOptionsforClientCertLoginModule</A></P><P></P><P>I don't have this setup, but I would think you could have it look for a group in AD and have Java map that to the role that you want.</P></BODY></HTML> Mon, 01 Jul 2013 15:14:32 GMT https://community.sap.com/t5/application-development-and-automation-discussions/mass-authorization-maintenance-in-java/m-p/9557367#M1753759 bxiv 2013-07-01T15:14:32Z