SAP NetWeaver Remote Function Call (RFC) is the standard SAP interface for communication between SAP systems.
This document provides information about the SAP NetWeaver Connector, which facilitates automated interactions, with an SAP NetWeaver server using FortiSOAR™ playbooks. Add the SAP NetWeaver Connector as a step in FortiSOAR™ playbooks and perform automated operations leveraging the SAP Remote Function Modules using the SAP NetWeaver protocol.
Connector Version: 1.1.0
FortiSOAR™ Version Tested on: 7.3.0-2034
Authored By: Fortinet
Certified: Yes
The following enhancements have been made to the SAP NetWeaver in version 1.1.0:
If you are on FortiSOAR release 7.3.0 or later, i.e., your system is on RHEL or Rocky Linux, then before you install the dependency python packages, i.e., before you run install_dependencies.sh
, you need to install 'g++' using the following command:
$ sudo yum groupinstall "Development Tools"
install_dependencies.sh
file that is attached to this document.sh install_dependencies.sh <RFC_SDK_zip_file_path>
Summary of what the install_dependencies.sh
script does:
/opt
.RFC_SDK_zip
file in /usr/local/sap/
.SAPNWRFC_HOME
, SNC_LIB
, and SECUDIR
environment variables.CommonCryptoLib
from SAP and extract into e.g. /opt/SAPCRYPTOLIB/
https://support.sap.com/swdc -> Access downloads -> Support
Packages & Patches -> By Category -> SAP Cryptographic Software -> SAPCRYPTOLIB
-> COMMONCRYPTOLIB
Example commands:
$curl <URL of SAPCRYPTOLIB.zip file> -o /tmp/SAPCRYPTOLIB.zip
$ unzip /tmp/SAPCRYPTOLIB.zip -d /opt/
$ chown -R fsr-integrations:fsr-integrations /opt/SAPCRYPTOLIB
Note: If your FortiSOAR version is 7.2.0 or higher, then the "fsr-integrations" user is used, or else the "nginx" user is used to run the above commands.
The sapgenpse
tool can be found in the same folder (/opt/SAPCRYPTOLIB
).
SECUDIR
directory:$ sapgenpse get_pse -p <PSE name e.g. pyrfc.pse> -x <password> <Distingushed
name eg. CN=pyrfc>
$ sapgenpse get_pse -p pyrfc.pse -x password CN=pyrfc
$ sapgenpse seclogin -p <PSE name e.g. pyrfc.pse> -x <password> -O <OS
username>
$ sapgenpse seclogin -p pyrfc.pse -x password -O fsr-integrations
$ sapgenpse export_own_cert -o <Export file name> -p <PSE name e.g.
pyrfc.pse> -x <password>
$ sapgenpse export_own_cert -o pyrfc_snc.crt -p pyrfc.pse -x password
STRUST
.Certificate -> Import
.Subject
name in the Own
Certificate
Section.$ sapgenpse maintain_pk -a <SAP System certificate file> -p <PSE name
e.g. pyrfc.pse> -x <password>
$ sapgenpse maintain_pk -a a4h_snc.crt -p pyrfc.pse -x password
sec
and SAPCRYPTOLIB
folders:$ chown -R fsr-integrations:fsr-integrations /opt/sec
$ chown -R fsr-integrations:fsr-integrations /opt/SAPCRYPTOLIB
Use the Content Hub to install the connector. For the detailed procedure to install a connector, click here.
You can also use the following yum command as a root
user to install connectors from an SSH session:
yum install cyops-connector-sap-rfc
Important: You must install the dependency packages (see Steps to install dependency python packages required by the SAP NetWeaver connector) and configure SNC (Configure SAP PyRFC with SNC (w/o SSO)) before you install the SAP NetWeaver connector.
/opt/sec
/opt/SAPCRYPTOLIB
/usr/local/sap
For the procedure to configure a connector, click here
In FortiSOAR™, on the Content Hub (or Connector Store) page, click the Manage tab, and then click the SAP NetWeaver connector card. On the connector popup, click the Configurations tab to enter the required configuration details:
Parameter | Description |
---|---|
Server Address | The hostname of the SAP NetWeaver server to which you will connect and perform automated operations. |
Username | The username to access the SAP NetWeaver endpoint to which you will connect and perform the automated operations. |
Password | The password to access the SAP NetWeaver endpoint to which you will connect and perform the automated operations. |
System Number | The system number to access the SAP RPC server to which you will connect and perform the automated operations. |
Client Number | The client number to access the SAP RPC server to which you will connect and perform the automated operations. |
SNC Configuration |
Select this option to enable SNC Configuration within your script to connect with the SAP RPC server to which you will connect and perform the automated operations. If you select this option, i.e., set it to 'True', then you can specify the following parameters:
|
Port | Specify the port number to access the SAP ETD server to which you will connect and perform the automated operations. By default, this is set to 3300. |
The following automated operations can be included in playbooks and you can also use the annotations to access the operations from FortiSOAR™:
Function | Description | Annotation and Category |
---|---|---|
Get Session List | Retrieves a list of all sessions or specific sessions from SAP NetWeaver based on the tenant or client number and other input parameters you have specified. | get_session_list Investigation |
End User Session | Ends all the sessions of a specific tenant or client in SAP NetWeaver based on the tenant or client number and other input parameters you have specified. | end_session Investigation |
Send Popup | Sends a popup to a specific user using SAP NetWeaver based on the client number, username, and message you have specified. | send_popup Investigation |
Lock User | Locks a specific user account using SAP NetWeaver based on the username you have specified. | lock_user Investigation |
Unlock User | Unlocks a specific user account using SAP NetWeaver based on the username you have specified. | unlock_user Investigation |
Remove User Profiles | Deletes all profiles associated with the user using SAP NetWeaver based on the username you have specified. | remove_all_user_profiles Investigation |
Remove User Roles | Deletes all roles associated with the user using SAP NetWeaver based on the username you have specified. | remove_all_user_roles Investigation |
Assign User Role | Assign a specific role to a specific user based on the username, role name, and other input parameters you have specified. You can also assign the role to the user with a specific expiration date. | assign_user_role Investigation |
Run RFC Function | Runs an SAP remote function module based on the parameters you have specified. | run_rfc_functions Investigation |
Parameter | Description |
---|---|
Tenant | Specify the tenant or client Number whose associated sessions you want to retrieve from SAP NetWeaver. |
Username | (Optional) Specify the username whose associated sessions you want to retrieve from SAP NetWeaver. |
Logon ID | (Optional) Specify the logon ID whose associated sessions you want to retrieve from SAP NetWeaver. |
Logon Handle | (Optional) Specify the logon handle whose associated sessions you want to retrieve from SAP NetWeaver. |
Terminal ID | (Optional) Specify the terminal ID or client IP address whose associated sessions you want to retrieve from SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"SESSION_LIST": [
{
"STATE": "",
"TRACE": "",
"MEMORY": "",
"TENANT": "",
"RFC_HDL": "",
"LOGON_ID": "",
"PRIORITY": "",
"RFC_TYPE": "",
"IS_ACTIVE": "",
"LOGON_HDL": "",
"USER_NAME": "",
"LOGON_TYPE": "",
"OPEN_TASKS": "",
"ACT_PROGRAM": "",
"APPLICATION": "",
"MEMORY_ABAP": "",
"MEMORY_HEAP": "",
"SERVER_NAME": "",
"SESSION_HDL": "",
"MEMORY_HYPER": "",
"REQUEST_TIME": "",
"LOCATION_INFO": "",
"MEMORY_BRUTTO": "",
"PAGING_BLOCKS": "",
"CLIENT_IP_ADDR": "",
"LOGON_SUB_TYPE": "",
"SAP_GUI_VERSION": "",
"APPLICATION_INFO": "",
"SPECIAL_HANDLING": "",
"WEBSOCKET_HANDLE": ""
}
]
}
Note: You must specify at least one of the following parameters: Terminal ID (Client IP Address), Username, Logon ID, or Logon Handle.
Parameter | Description |
---|---|
Tenant | Specify the tenant or client number whose user session you want to end in SAP NetWeaver. |
Username | Specify the username whose user session you want to end in SAP NetWeaver. |
Logon ID | Specify the logon ID whose user session you want to end in SAP NetWeaver. |
Logon Handle | Specify the logon handle whose user session you want to end in SAP NetWeaver. |
Terminal ID | Specify the terminal ID or client IP address whose user session you want to end in SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"message": "",
"status": ""
}
Parameter | Description |
---|---|
Client Number | Specify the client number to which you want to send the popup message using SAP RPC. |
Username | Specify the username to which you want to send the popup message using SAP RPC. |
Message | Specify the popup message that you want to send to the specified user using SAP RPC. |
The output contains the following populated JSON schema:
{
"message": "",
"status": ""
}
Parameter | Description |
---|---|
Username | Specify the username whose user account you want to lock using SAP RPC. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
]
}
Parameter | Description |
---|---|
Username | Specify the username whose user account you want to unlock using SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
]
}
Parameter | Description |
---|---|
Username | Specify the username whose user profiles you want to remove using SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
]
}
Parameter | Description |
---|---|
Username | Specify the username whose user roles you want to remove using SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
]
}
Parameter | Description |
---|---|
Username | Specify the username to whom you want to assign the specified role using SAP NetWeaver. |
Role Name | Specify the role name that you want to assign to the specified user using SAP NetWeaver. |
From Date | Specify the date from when you want to assign the role to the user. Note: Use the From Date and To Date fields to define the expiration date of the role assigned to the user. |
To Date | Specify the date until when you want to assign the role to the user. |
AGR TEXT | Specify the AGR_TEXT that you want to assign to the specified user role. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
],
"ACTIVITYGROUPS": [
{
"TO_DAT": "",
"AGR_NAME": "",
"AGR_TEXT": "",
"FROM_DAT": "",
"ORG_FLAG": ""
}
]
}
Parameter | Description |
---|---|
Function Name | Specify the SAP function module name that you want to run. Note: This parameter will make an API call named " get_rfc_function_params " to dynamically populate the drop-down selections. |
The output contains a non-dictionary value.
The Sample - SAP NetWeaver - 1.0.0
playbook collection comes bundled with the SAP NetWeaver connector. These playbooks contain steps using which you can perform all supported actions. You can see bundled playbooks in the Automation > Playbooks section in FortiSOAR™ after importing the SAP NetWeaver connector.
Note: If you are planning to use any of the sample playbooks in your environment, ensure that you clone those playbooks and move them to a different collection since the sample playbook collection gets deleted during the connector upgrade and delete.
Resolution
/usr/local/sap/nwrfcsdk/lib/libsapnwrfc.so
file. The owner of this file should be 'fsr-integrations
' if your FortiSOAR version is 7.2.0 or higher or 'nginx
' user (commands in this section consider 'fsr-integrations
' user). libsapnwrfc.so
file as 'fsr-integrations
': chown -R fsr-integrations:fsr-integrations /usr/local/sap/nwrfcsdk
The “Connector Dependencies Failed To Install
" error on the Configurations tab, after you have installed the connector is displayed if you have not installed the dependency packages.
Resolution
Ensure you have installed the dependency packages using the attached install_dependencies.sh
file and refer to the Steps to install dependency python packages required by the SAP NetWeaver connector section.
You get the “seclogin: Can't add credentials
” error when you are executing the "$ sapgenpse seclogin -p pyrfc.pse -x password -O fsr-integrations
" command.
Resolution
Ensure that the “SECUDIR=/opt/sec
“ environment variable is set. You must also reconnect your SSH session.
/bin/gcc
command fails while installing the 'pyrfc python' package on FortiSOAR releases 7.3.0 or laterThe '/bin/gcc
' command fails with the 'with exit code 1 ERROR: Failed building wheel for pyrfc
' error while installing the 'pyrfc python' package on FortiSOAR releases 7.3.0 or later i.e. on Rocky Linux or RHEL systems.
Resolution
Ensure that 'g++' is installed before running the install_dependecies.sh
. You can install g++
using the following command:
$ sudo yum groupinstall "Development Tools"
Check if the 'g++
' is installed using the following command:
$ g++ —version
SAP NetWeaver Remote Function Call (RFC) is the standard SAP interface for communication between SAP systems.
This document provides information about the SAP NetWeaver Connector, which facilitates automated interactions, with an SAP NetWeaver server using FortiSOAR™ playbooks. Add the SAP NetWeaver Connector as a step in FortiSOAR™ playbooks and perform automated operations leveraging the SAP Remote Function Modules using the SAP NetWeaver protocol.
Connector Version: 1.1.0
FortiSOAR™ Version Tested on: 7.3.0-2034
Authored By: Fortinet
Certified: Yes
The following enhancements have been made to the SAP NetWeaver in version 1.1.0:
If you are on FortiSOAR release 7.3.0 or later, i.e., your system is on RHEL or Rocky Linux, then before you install the dependency python packages, i.e., before you run install_dependencies.sh
, you need to install 'g++' using the following command:
$ sudo yum groupinstall "Development Tools"
install_dependencies.sh
file that is attached to this document.sh install_dependencies.sh <RFC_SDK_zip_file_path>
Summary of what the install_dependencies.sh
script does:
/opt
.RFC_SDK_zip
file in /usr/local/sap/
.SAPNWRFC_HOME
, SNC_LIB
, and SECUDIR
environment variables.CommonCryptoLib
from SAP and extract into e.g. /opt/SAPCRYPTOLIB/
https://support.sap.com/swdc -> Access downloads -> Support
Packages & Patches -> By Category -> SAP Cryptographic Software -> SAPCRYPTOLIB
-> COMMONCRYPTOLIB
Example commands:
$curl <URL of SAPCRYPTOLIB.zip file> -o /tmp/SAPCRYPTOLIB.zip
$ unzip /tmp/SAPCRYPTOLIB.zip -d /opt/
$ chown -R fsr-integrations:fsr-integrations /opt/SAPCRYPTOLIB
Note: If your FortiSOAR version is 7.2.0 or higher, then the "fsr-integrations" user is used, or else the "nginx" user is used to run the above commands.
The sapgenpse
tool can be found in the same folder (/opt/SAPCRYPTOLIB
).
SECUDIR
directory:$ sapgenpse get_pse -p <PSE name e.g. pyrfc.pse> -x <password> <Distingushed
name eg. CN=pyrfc>
$ sapgenpse get_pse -p pyrfc.pse -x password CN=pyrfc
$ sapgenpse seclogin -p <PSE name e.g. pyrfc.pse> -x <password> -O <OS
username>
$ sapgenpse seclogin -p pyrfc.pse -x password -O fsr-integrations
$ sapgenpse export_own_cert -o <Export file name> -p <PSE name e.g.
pyrfc.pse> -x <password>
$ sapgenpse export_own_cert -o pyrfc_snc.crt -p pyrfc.pse -x password
STRUST
.Certificate -> Import
.Subject
name in the Own
Certificate
Section.$ sapgenpse maintain_pk -a <SAP System certificate file> -p <PSE name
e.g. pyrfc.pse> -x <password>
$ sapgenpse maintain_pk -a a4h_snc.crt -p pyrfc.pse -x password
sec
and SAPCRYPTOLIB
folders:$ chown -R fsr-integrations:fsr-integrations /opt/sec
$ chown -R fsr-integrations:fsr-integrations /opt/SAPCRYPTOLIB
Use the Content Hub to install the connector. For the detailed procedure to install a connector, click here.
You can also use the following yum command as a root
user to install connectors from an SSH session:
yum install cyops-connector-sap-rfc
Important: You must install the dependency packages (see Steps to install dependency python packages required by the SAP NetWeaver connector) and configure SNC (Configure SAP PyRFC with SNC (w/o SSO)) before you install the SAP NetWeaver connector.
/opt/sec
/opt/SAPCRYPTOLIB
/usr/local/sap
For the procedure to configure a connector, click here
In FortiSOAR™, on the Content Hub (or Connector Store) page, click the Manage tab, and then click the SAP NetWeaver connector card. On the connector popup, click the Configurations tab to enter the required configuration details:
Parameter | Description |
---|---|
Server Address | The hostname of the SAP NetWeaver server to which you will connect and perform automated operations. |
Username | The username to access the SAP NetWeaver endpoint to which you will connect and perform the automated operations. |
Password | The password to access the SAP NetWeaver endpoint to which you will connect and perform the automated operations. |
System Number | The system number to access the SAP RPC server to which you will connect and perform the automated operations. |
Client Number | The client number to access the SAP RPC server to which you will connect and perform the automated operations. |
SNC Configuration |
Select this option to enable SNC Configuration within your script to connect with the SAP RPC server to which you will connect and perform the automated operations. If you select this option, i.e., set it to 'True', then you can specify the following parameters:
|
Port | Specify the port number to access the SAP ETD server to which you will connect and perform the automated operations. By default, this is set to 3300. |
The following automated operations can be included in playbooks and you can also use the annotations to access the operations from FortiSOAR™:
Function | Description | Annotation and Category |
---|---|---|
Get Session List | Retrieves a list of all sessions or specific sessions from SAP NetWeaver based on the tenant or client number and other input parameters you have specified. | get_session_list Investigation |
End User Session | Ends all the sessions of a specific tenant or client in SAP NetWeaver based on the tenant or client number and other input parameters you have specified. | end_session Investigation |
Send Popup | Sends a popup to a specific user using SAP NetWeaver based on the client number, username, and message you have specified. | send_popup Investigation |
Lock User | Locks a specific user account using SAP NetWeaver based on the username you have specified. | lock_user Investigation |
Unlock User | Unlocks a specific user account using SAP NetWeaver based on the username you have specified. | unlock_user Investigation |
Remove User Profiles | Deletes all profiles associated with the user using SAP NetWeaver based on the username you have specified. | remove_all_user_profiles Investigation |
Remove User Roles | Deletes all roles associated with the user using SAP NetWeaver based on the username you have specified. | remove_all_user_roles Investigation |
Assign User Role | Assign a specific role to a specific user based on the username, role name, and other input parameters you have specified. You can also assign the role to the user with a specific expiration date. | assign_user_role Investigation |
Run RFC Function | Runs an SAP remote function module based on the parameters you have specified. | run_rfc_functions Investigation |
Parameter | Description |
---|---|
Tenant | Specify the tenant or client Number whose associated sessions you want to retrieve from SAP NetWeaver. |
Username | (Optional) Specify the username whose associated sessions you want to retrieve from SAP NetWeaver. |
Logon ID | (Optional) Specify the logon ID whose associated sessions you want to retrieve from SAP NetWeaver. |
Logon Handle | (Optional) Specify the logon handle whose associated sessions you want to retrieve from SAP NetWeaver. |
Terminal ID | (Optional) Specify the terminal ID or client IP address whose associated sessions you want to retrieve from SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"SESSION_LIST": [
{
"STATE": "",
"TRACE": "",
"MEMORY": "",
"TENANT": "",
"RFC_HDL": "",
"LOGON_ID": "",
"PRIORITY": "",
"RFC_TYPE": "",
"IS_ACTIVE": "",
"LOGON_HDL": "",
"USER_NAME": "",
"LOGON_TYPE": "",
"OPEN_TASKS": "",
"ACT_PROGRAM": "",
"APPLICATION": "",
"MEMORY_ABAP": "",
"MEMORY_HEAP": "",
"SERVER_NAME": "",
"SESSION_HDL": "",
"MEMORY_HYPER": "",
"REQUEST_TIME": "",
"LOCATION_INFO": "",
"MEMORY_BRUTTO": "",
"PAGING_BLOCKS": "",
"CLIENT_IP_ADDR": "",
"LOGON_SUB_TYPE": "",
"SAP_GUI_VERSION": "",
"APPLICATION_INFO": "",
"SPECIAL_HANDLING": "",
"WEBSOCKET_HANDLE": ""
}
]
}
Note: You must specify at least one of the following parameters: Terminal ID (Client IP Address), Username, Logon ID, or Logon Handle.
Parameter | Description |
---|---|
Tenant | Specify the tenant or client number whose user session you want to end in SAP NetWeaver. |
Username | Specify the username whose user session you want to end in SAP NetWeaver. |
Logon ID | Specify the logon ID whose user session you want to end in SAP NetWeaver. |
Logon Handle | Specify the logon handle whose user session you want to end in SAP NetWeaver. |
Terminal ID | Specify the terminal ID or client IP address whose user session you want to end in SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"message": "",
"status": ""
}
Parameter | Description |
---|---|
Client Number | Specify the client number to which you want to send the popup message using SAP RPC. |
Username | Specify the username to which you want to send the popup message using SAP RPC. |
Message | Specify the popup message that you want to send to the specified user using SAP RPC. |
The output contains the following populated JSON schema:
{
"message": "",
"status": ""
}
Parameter | Description |
---|---|
Username | Specify the username whose user account you want to lock using SAP RPC. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
]
}
Parameter | Description |
---|---|
Username | Specify the username whose user account you want to unlock using SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
]
}
Parameter | Description |
---|---|
Username | Specify the username whose user profiles you want to remove using SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
]
}
Parameter | Description |
---|---|
Username | Specify the username whose user roles you want to remove using SAP NetWeaver. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
]
}
Parameter | Description |
---|---|
Username | Specify the username to whom you want to assign the specified role using SAP NetWeaver. |
Role Name | Specify the role name that you want to assign to the specified user using SAP NetWeaver. |
From Date | Specify the date from when you want to assign the role to the user. Note: Use the From Date and To Date fields to define the expiration date of the role assigned to the user. |
To Date | Specify the date until when you want to assign the role to the user. |
AGR TEXT | Specify the AGR_TEXT that you want to assign to the specified user role. |
The output contains the following populated JSON schema:
{
"RETURN": [
{
"ID": "",
"ROW": "",
"TYPE": "",
"FIELD": "",
"LOG_NO": "",
"NUMBER": "",
"SYSTEM": "",
"MESSAGE": "",
"PARAMETER": "",
"LOG_MSG_NO": "",
"MESSAGE_V1": "",
"MESSAGE_V2": "",
"MESSAGE_V3": "",
"MESSAGE_V4": ""
}
],
"ACTIVITYGROUPS": [
{
"TO_DAT": "",
"AGR_NAME": "",
"AGR_TEXT": "",
"FROM_DAT": "",
"ORG_FLAG": ""
}
]
}
Parameter | Description |
---|---|
Function Name | Specify the SAP function module name that you want to run. Note: This parameter will make an API call named " get_rfc_function_params " to dynamically populate the drop-down selections. |
The output contains a non-dictionary value.
The Sample - SAP NetWeaver - 1.0.0
playbook collection comes bundled with the SAP NetWeaver connector. These playbooks contain steps using which you can perform all supported actions. You can see bundled playbooks in the Automation > Playbooks section in FortiSOAR™ after importing the SAP NetWeaver connector.
Note: If you are planning to use any of the sample playbooks in your environment, ensure that you clone those playbooks and move them to a different collection since the sample playbook collection gets deleted during the connector upgrade and delete.
Resolution
/usr/local/sap/nwrfcsdk/lib/libsapnwrfc.so
file. The owner of this file should be 'fsr-integrations
' if your FortiSOAR version is 7.2.0 or higher or 'nginx
' user (commands in this section consider 'fsr-integrations
' user). libsapnwrfc.so
file as 'fsr-integrations
': chown -R fsr-integrations:fsr-integrations /usr/local/sap/nwrfcsdk
The “Connector Dependencies Failed To Install
" error on the Configurations tab, after you have installed the connector is displayed if you have not installed the dependency packages.
Resolution
Ensure you have installed the dependency packages using the attached install_dependencies.sh
file and refer to the Steps to install dependency python packages required by the SAP NetWeaver connector section.
You get the “seclogin: Can't add credentials
” error when you are executing the "$ sapgenpse seclogin -p pyrfc.pse -x password -O fsr-integrations
" command.
Resolution
Ensure that the “SECUDIR=/opt/sec
“ environment variable is set. You must also reconnect your SSH session.
/bin/gcc
command fails while installing the 'pyrfc python' package on FortiSOAR releases 7.3.0 or laterThe '/bin/gcc
' command fails with the 'with exit code 1 ERROR: Failed building wheel for pyrfc
' error while installing the 'pyrfc python' package on FortiSOAR releases 7.3.0 or later i.e. on Rocky Linux or RHEL systems.
Resolution
Ensure that 'g++' is installed before running the install_dependecies.sh
. You can install g++
using the following command:
$ sudo yum groupinstall "Development Tools"
Check if the 'g++
' is installed using the following command:
$ g++ —version