Configuring UME to
Use an LDAP Server as Data Source 
Purpose
There is no option to set up SAP User Management Engine (UME) to use an LDAP directory as data source during installation. Instead you have to install with a database and configure the UME manually after installation.
Prerequisites
· You have installed a SAP NetWeaver Application Server for Java where the UME is configured to use the database of the J2EE Engine as data source.
·
The LDAP directory
has a hierarchy of users and groups that is supported by UME.
The hierarchies supported by UME
are groups as
tree and flat hierarchy. For more information, see 
Organization of Users
and Groups in LDAP Directory.
· The administrator of the LDAP directory must create a user that UME can use to connect to the LDAP server. This user should have read and search permissions for all branches of the LDAP directory. If UME also needs to write to the LDAP directory, the user must additionally have create and change authorizations.
See also:
Process Flow
...
1. Enter connection data for the LDAP server.
2. Restart all cluster nodes.
4. Change user in secure storage (optional).
Result
You have connected UME to an LDAP directory.
We strongly recommend that you configure Secure Sockets Layer (SSL) between the UME and the LDAP directory. Some directories, such as Microsoft Active Directory Server, require an SSL connection if you want to create users on the directory. For more information, see Configuring SSL Between the UME and an LDAP Directory.
You should check
that the attribute mapping defined in the data source configuration file is
appropriate for the schema that you use in your LDAP server. For more
information, see Customizing a UME Data
Source Configuration ® <attributeMapping>.
In addition, you
can configure your LDAP directory for high availability. For more information,
see Configuring High
Availability of the LDAP Data Source.