Error creating a SAP endpoint
Article ID: 281869
Updated On: 04-10-2024
Products
Issue/Introduction
When trying to acquire a new SAP R3 endpoint, following error was reported in the Windows connector server
A remote server returned an error: org.apache.directory.shared.ldap.exception.LdapConfigurationException: JCS@BENTPIAMPRO01: SAP: INTERNAL_ERROR
Create SAP R/3 Endpoint "SAP TEST XXX XXX": Failed to execute CreateSAPR/3Endpoint. ERROR MESSAGE: SAP R3 Endpoint 'SAP TEST XXX XXX' creation failed: Connector Server Add failed: code 80 (OTHER-LdapConfigurationException): failed to add entry eTSAPDirectoryName=SAP TEST XXX XXX,eTNameSpaceName=SAP R3,dc=im,dc=etasa: JCS@ABCDEFGH001: SAP: Initialization of repository destination SAP TEST XXX XXX failed: Connect to SAP gateway failed Connection parameters: TYPE=A DESTINATION="SAP TEST XXX XXX" ASHOST=vmabcdefgh.domain.com SYSNR=01 PCS=1 LOCATION CPIC (TCP/IP) on local host with Unicode ERROR partner 'vmabcdefgh.domain.com:3301' not reached TIME Thu Apr 04 11:12:40 2024 RELEASE 753 COMPONENT NI (network interface) VERSION 40 RC -10 MODULE D:/xxx/xxx/xxx/xx/nixxi.cpp LINE 3449 DETAIL NiPConnect2: 1x.1x.1x.1x.:3301 SYSTEM CALL connect ERRNO 10060 ERRNO TEXT WSAETIMEDOUT: Connection timed out COUNTER (ldaps://ABCDEFGH001.domain.com:20411),
Environment
IGA 14.5
Virtual Appliance 14.5
Windows connector server
Cause
The service account used to create the endpoint was missing authorization in SAP.
Resolution
The SAP ERP (SAP R/3 or SAP S/4HANA) connector requires an SAP user that has the following privileges:
- Sufficient authorizations to carry out all the transactions listed under the following SAP menu: Tools, Administration, User Maintenance
- Authorizations S_RFC and S_TABU_DIS
Additional Information
Please review the tech doc related to SAP connector
https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-management-and-governance-connectors/1-0/connectors/other-connectors/sap-connector/security-for-the-sap-connector.html
Feedback
