SAP NetWeaver Identity Management Implementation Guide - Transport

  • View
    226

  • Download
    1

Embed Size (px)

Text of SAP NetWeaver Identity Management Implementation Guide - Transport

  • 8/9/2019 SAP NetWeaver Identity Management Implementation Guide - Transport

    1/40

    SAP NetWeaver Identity Management

    Implementation guide- Transport

    Version 7.2 Rev 7

  • 8/9/2019 SAP NetWeaver Identity Management Implementation Guide - Transport

    2/40

  • 8/9/2019 SAP NetWeaver Identity Management Implementation Guide - Transport

    3/40

    i

    Copyright 2012 SAP AG. All rights reserved.

    Preface

    The productThe SAP NetWeaver Identity Management is a general purpose identity managementapplication which provides the functions and services needed to integrate distributed identity

    data in the system landscape to efficient, heterogeneous identity lifecycle management.

    The reader

    This manual is written for people who are to transport configurations between systemenvironments, e.g. test/QA environment to production environment.

    Prerequisites

    To get the most benefit from this manual, you should have the following knowledge andsoftware:

    Thorough understanding of the SAP NetWeaver Identity Management.

    SAP NetWeaver Identity Management 7.2 SP5 or newer is correctly installed and licensed.

    The manual

    The manual describes the issues that need to be considered when implementing an IdentityCenter configuration that should be prepared for a transport. You also find information about

    the necessary preparations and transport process.

    This tutorial is not a substitution for training.

    Related documents

    You can find useful information in the following documents:

    SAP NetWeaver Identity Management Identity Center tutorials and help file

    SAP NetWeaver Identity Management Solution Operation Guide

    SAP NetWeaver Identity Management Security Guide

    SAP NetWeaver Identity Management Identity Center Implementation guide Staging

    environment

    SAP NetWeaver Identity Management Migration guide Identity Management 7.1 to 7.2

  • 8/9/2019 SAP NetWeaver Identity Management Implementation Guide - Transport

    4/40

    ii

    Copyright 2012 SAP AG. All rights reserved.

  • 8/9/2019 SAP NetWeaver Identity Management Implementation Guide - Transport

    5/40

    iii

    Copyright 2012 SAP AG. All rights reserved.

    Table of contents

    Introduction .................................................................................................................................. 1

    The development environment and process ........................................................................................... 1

    Upgrading from SAP NetWeaver Identity Management 7.1 .................................................................. 4

    Section overview .................................................................................................................................. 5

    Section 1: Implementation considerations (Identity Center)....................................................... 6

    Repository definitions and job executions ............................................................................................. 6

    GUIDs .................................................................................................................................................. 7

    Global constants ................................................................................................................................... 8

    Global variables and job variables ......................................................................................................... 8

    Parameterized constants that contain passwords .................................................................................... 8

    Encrypted attributes .............................................................................................................................. 9

    Identity store references ........................................................................................................................ 9

    References to identity store entries ...................................................................................................... 10

    Attributes ............................................................................................................................................ 10

    Entry types ......................................................................................................................................... 11

    Tasks .................................................................................................................................................. 11

    Filters ................................................................................................................................................. 11

    Audit flags .......................................................................................................................................... 12

    Job scripts ........................................................................................................................................... 12

    Global scripts ...................................................................................................................................... 12

    Event agents ....................................................................................................................................... 12

    Dispatchers ......................................................................................................................................... 12

    Templates for notification messages .................................................................................................... 13

    Summary ............................................................................................................................................ 13

    Section 2: Implementation considerations (Virtual Directory Server) ..................................... 15

    References to external systems ............................................................................................................ 15

    Section 3: Preparing for transport ............................................................................................. 16

    Permissions ........................................................................................................................................ 16

    Preparing the Virtual Directory Server transport (optional) .................................................................. 17

    Creating repository constants of type job reference.............................................................................. 18

    Preparing the target system ................................................................................................................. 18

    Section 4: Performing a transport .............................................................................................. 20

    Exporting the configuration from the source system ............................................................................ 20

    Importing the configuration to the target system .................................................................................. 21

    Section 5: Post-transport tasks ................................................................................................... 22

    Post-transport configuration tasks (Identity Center) ............................................................................. 22

    More information ................................................................................................................................ 23

    Post-transport tasks (Virtual Directory Server) .................................................................................... 24

    Handling removed tasks ...................................................................................................................... 27

    Section 6: Copying a repository definition ................................................................................. 29

    Appendix A: Differences between Configuration Copy Tool and transport ............................ 30

    Appendix B: Removing identity stores from the target system ................................................. 34

  • 8/9/2019 SAP NetWeaver Identity Management Implementation Guide - Transport

    6/40

    iv

    Copyright 2012 SAP AG. All rights reserved.

  • 8/9/2019 SAP NetWeaver Identity Management Implementation Guide - Transport

    7/40

    1

    Introduction

    SAP NetWeaver Identity Management Implementation guide - Transport

    Copyright 2012 SAP AG. All rights reserved.

    Introduction

    The SAP NetWeaver Identity Management is often used in business critical operations. To beable to test and add new functionality, as well as software upgrades, it is important to have both

    a development and a test/QA (quality assurance) environment, which is similar to, but separatefrom the production environment. This separation of development, test and production

    environments is referred to as staging.

    In the development and test environments new functionality and configurations are created andverified, without the danger of disrupting the ongoing production. Once the solution is ready thecopy of the corresponding configuration, either a complete configuration or just a part of it, is

    moved to the test environment(s) (using the Configuration Copy Tool (Export/Import) ortransport) from the Identity Center Management Console. After thorough testing and

    verification in the test environment(s), the copy of the complete configuration can be moved tothe production environment using the tran

Search related