Show TOC Start of Content Area

Procedure documentation SU05 to SU01 User Migration in ERP E-Commerce Locate the document in its SAP Library structure

Use

For security reasons SAP recommends you migrate existing SU05 users to SU01 users because SU05 users cannot support the authorization concept or Single-Sign-On (SSO) functionality. You can set up your system  to perform a high number of checks on SU01 type users logging on to your applications, which is simply not possible with SU05 type users.

 

Prerequisites

You have SU05 users in your system which you wish to migrate and you are upgrading to a newer version of ERP E-Commerce.

 

Procedure

...

       1.      Log on to Extended Configuration Management (XCM) at http://<server>:<port>/<app name>/admin/xcm/init.do

       2.      Navigate to Start ® General Settings ®Customer.

       3.      Change the usertype parameter as follows:

       If the usertype parameter value is R3_SU05Customer_LoginCustomerNo change the value to R3_SU01User.

       If the usertype parameter value is R3_SU05ContactPerson_LoginContactPersonId change the value to R3_SU01UserContactPerson.

       4.      Save your entries.

       5.      Open your customer version of the backendobject-config.xml file.

       6.      Navigate to the parameter UserMigration (you can find the parameter at the place where the user type value is set in the data).

       7.      Set the value of the UserMigration parameter to X.

Caution

Note, you must enter the value X in uppercase.

       8.      Select the Delete flag in the UserMigration parameter if you want to delete the SU05 users after migration. This is not mandatory, but can help to keep stored user data to a minimum.

Note

For more information about changing the backendobject-config.xml file, see the SAP E-Commerce Development and Extension Guide on the SAP Service Marketplace.

It may be the case that you experience user password problems after migrating SU05 users to SU01 users. Basically, the SU05 user passwords may not be strict enough to meet your SU01 user password security requirements. If this happens the user automatically receives a message from the system asking them to change their password. They will be prompted to enter a new password that meets the SU01 security requirements.

Caution

If you have a version of R/3 lower than ERP 2005 your system is not able to check if a password meets SU01 password security requirements before creating the SU01 user. The system can only check the length of the password, but does not call the backend system to check for correctness.

If you are using an R/3 version lower than ERP 2005 and the system determines that the length of the password is too long (longer than 8 characters) the system prompts the end user to enter a new password. If the length is okay the system tries to create a new user with the existing password.

If the password does not match the SU01 requirements the system displays an error message telling the end used to contact the system administrator. If this happens the system administrator must create the user from scratch in the backend ERP system or in Web-Based User Management application and set a new initial password for the user. The system has not created an SU01 user at all for the SU05 user instead the system administrator creates it manually.

End of Content Area