Skip to Content

Note : this blog will only show you how to create SUP users and how to authenticate them through the provided LDAP server in the SUP Personal Developer Edition. Read the official documentation carefully if you want to setup security on a production system.

User Creation

SUP Personal Developer Edition comes with an OpenDS LDAP server. New SUP users will have to be created on this LDAP server using the following procedure :

 

Launch Apache Directory Studio (C:\Sybase\UnwiredPlatform\Servers\UnwiredServer\apacheds\studio). Create a new connection (LDAP > New Connection…) :

 

image

 

Fill in the required fields, click on Check Network Parameter to check the settings then Next :

 

image

Choose the Simple Authentication method, then indicate (default password for the Directory Manager is secret), click on Check Authentication then Finish:  

image

 

 

Right click on the supUser entry in the LDAP browser view and select New Entry…:

 

image

 

 

Select Use existing entry as template then click twice on Next :

 

image

 

 

Indicate the name of the new user (i.e mysapuser) then click Next :

 

image

 

 

In the Attributes screen, double click on the userPasswordfield to define a new password :

 

image

 

Note : do not change the Hash Method, the password will be encrypted automatically when the user is created.

 

Add the new user to the SUP User group by clicking on the group and adding a new value.

 

image

User Authentication

There are several options to authenticate users using SUP. In this scenario, we will authenticate the users through the provided OpenDS LDAP server.

 

Login Screen

If you want the user to enter his/her credentials when the application starts, you just have to add a login screen to your application. You can use the provided template to automatically create one :

 

image

 

Profile Screen

You can also create a profile screen to store the user’s credentials. There’s a template for this screen as well, so you only have to drag and drop the Profile screen in the Settings Screens to create one :

 

image

 

 

Note : the new profile screen will be accessible through the standard BlackBerry options screen :

 

image

 

Runtime Credentials

Instead of using a generic username/password to connect to the SAP backend and execute the BAPIs, you may want to use the user credentials stored in the mobile device application. This can easily be done during the Mobile Business Object creation by mapping 2 predefined personalization keys called usernameand password :

 

image

 

Note : for this to work, the LDAP credentials must be identical to the SAP backend credentials.

To report this post you need to login first.

4 Comments

You must be Logged on to comment or reply to a post.

  1. Rahul Muraleedharan
    Hi Pierre,

    Thanks for posting such a useful blog.
    I have tried creating a new connection in Apache directory Studio but when I checked the authentication, it failed. Please help me to solve the problem.

    Thanks and Regards,
    Rahul Muraleedharan.

    (0) 
    1. Pierre Dominique Post author
      Hi Rahul,

      You should ask your sysadmin if you don’t know the administrator password. The password I provided is the default password for the local LDAP server thats comes with SUP Personal Developer Edition.

      Regards,
      Pierre

      (0) 
      1. Rahul Muraleedharan
        Hi Pierre,

        Thanks for the help. The password has been changed, that was the issue. Now it’s solved.

        I have a doubt that’s not related to user authentication but it’s regarding SUP. I want to use the data objects(similar to MBOs in SUP) that I have already created in Netweaver Mobile 7.1, is it possible? I have connected Netweaver Mobile 7.1 server to SUP but I dont find any option to import the data objects. Or is that only RFCs/BAPIs can be used from the SAP backend? And what is the significance of DOE connector?

        Thanks and Regards,
        Rahul Muraleedharan.

        (0) 
  2. Mandar Kulkarni

    Hi Pierre,

    Thanks a lot for this useful information. All the steps worked perfectly as you mentioned.

    Currently, I am trying to work with SUP LDAP for both (Enterprise developer and Personal developer) editions.

    I can access and configure the LDAP users for the Enterprise developer LDAP server but when I try to connect to Personal developer LDAP server , it does not connect. Even I cant see the service named “OpenDS” on the box which has got Personal developer edition installed. Also, the OpenDS folder is also not present in installation directory.

    I tried by installing Personal developer edition on different boxes with all options but still OpenDS is missing.

    Can you please help me for this???

    Regards,

    Mandar M Kulkarni.

    (0) 

Leave a Reply