Use
As an alternative to maintaining the user mapping in the SAP system table USREXTID, the external authentication mechanism can provide the user’s ID for the SAP system directly when passing the user’s information to the PAS. This option is primarily useful when using either the LDAP bind for authentication or when using an arbitrary mechanism that sets the user’s ID in an HTTP header variable.
If you configure the PAS accordingly and the external authentication mechanism does not provide the user’s ID for the SAP system directly, then an error occurs. The user mapping table in the SAP system is not used as a fallback mechanism.
Prerequisites
Procedure
Result
The PAS obtains the user’s ID for the SAP system directly from the authentication mechanism instead of using the mapping table.