Configuration Parameters

Host on which the SAP Server is running.

Two-digit SAP system number. The default is 00.

Three-digit SAP client number. The default is 001.

Two-letter SAP client language. The default is EN.

SAP Administrator user.

SAP Administrator user password.

Select a rule from the dropdown list to specify a rule that is called for each object returned from SAP. The rule is given enough context to communicate with SAP to modify the default object or add custom attributes to each object.

For CUA system detection.

If selected, the account is unlocked when changing the password.

The account is unlocked at the time of set password, only if the account is locked by incorrect password attempts.

The name of the function module that you need to configure. The Default is SAILPOIN/SAIL_READ_TABLE.

Select this checkbox to configure and enable load balancing on this application.

SAP message server host.

Required for a logon load balanced connection.

Logon group name of SAP application servers.

SAP message server service or port number.

Select this checkbox to determine if partition aggregation is required.

Criteria to specify the range of users to be downloaded.

For example, If the range is specified as A-M, then this specifies that all the users whose User IDs are between A and M (including A and M) are treated as one partition and downloaded.

To specify more than one partition, separate the entries using a new line character. For more information, refer to Partitioning Aggregation.

Represents Secure Network Connection which also internally signifies jco.client.snc_mode in SAP. SNC is enabled if the mode is selected as ON whose value is 1. If SNC is off, the value is 0.

Represents the quality of protection level (QOP) which is defined as follows:

1 — Apply authentication only. This is the default.

2 — Apply integrity protection (authentication).

3 — Apply privacy protection (integrity and authentication).

8 — Apply the default protection.

9 — Apply the maximum protection.

In SAP, it relates to jco.client.snc_qop.

Represents SNC partner.

For example, provide input as p:CN=R3, O=XYZ-INC, C=EN in SAP. If SNC is configured, it relates to jco.client.snc_partnername.

Represent SNC name which internally signifies jco.client.snc_myname. It overrides the default SNC Partner Name.

The path to the library that provides SNC service. It internally signifies jco.client.snc_lib.

For example, the value to be passed:

• On Microsoft Windows: C:/sapcryptolib/sapcrypto.dll (the location of the cryptographic library)

• On UNIX: /opt/sailpoint/lib/custom/libsapcrypto.so (the location of the cryptographic library)

Select this checkbox to enable the application for SAP GRC policy violation checks.

This is a mandatory field if you select Enable SAP GRC. Enter the SAP GRC connector name that is configured on the GRC server for this application.