Sync users from s/4 hana to IAS and vice versa for UUID sync

 

Connect Identity Authentication service to On-Premise System

In SAP S/4HANA, user name is usually used to access the system and user name is unique. In BTP, email is used to access the system and email address is unique for each user. When configuring SSO between BTP and S/4HANA system, we need a common identifier across the landscape. Usually, email or Global User ID(UUID) are used to uniquely identify a user. For Task Center integration, only Global User ID is supported. The UUID is automatically generated for every newly created, imported or provisioned user in the Identity Authentication Service. So, We need to connect the Identity Authentication Service to the SAP S/4HANA system to update the Global User ID in SAP S/4HANA system. When updating the UUID from IAS to S/4HANA, the email address is used to map the users. So, the users must have email address maintained in transaction code SU01.

Firstly, we need to sync the users from the S/4HANA to IAS, if user with same email address exist in the IAS, the login name will be updated in IAS. If the user does not exist in the IAS, the user will be created in the IAS.

Then, we need to sync the Global User ID(UUID) to S/4HANA system.

Reference: https://help.sap.com/docs/SUPPORT_CONTENT/fioritech/5129990827.html