Professional Documents
Culture Documents
Online Application
Submission Management
Configuration Guide
Confidential
2012 SAP AG
Dietmar-Hopp-Allee 16
D-69190 Walldorf
Configuration Guide
Confidential
Table of Contents
1 Organization .................................................................................................. 5
1.1 Document Administration.................................................................................................... 5
1.1.1 Authors ................................................................................................................................. 5
1.1.2 History .................................................................................................................................. 5
1.2 Intended Group of Readers ................................................................................................ 5
1.3 Glossary ............................................................................................................................... 5
3 Solution Overview......................................................................................... 9
3.1 System Landscape.............................................................................................................. 9
3.2 Software Component Matrix ............................................................................................. 10
3.3 Implementation General Description ............................................................................ 10
4 Configuration Details.................................................................................. 12
4.1 SAP User Management Engine (UME) ........................................................................... 12
4.1.1 User Types ........................................................................................................................ 12
4.1.2 Groups ............................................................................................................................... 16
4.1.3 Roles .................................................................................................................................. 19
4.1.4 Actions ............................................................................................................................... 27
4.2 Connecting Online Application Submission Management to Other Systems ............... 40
4.2.1 SAP Portal and Document Management System (DMS) ............................................... 40
4.2.2 Adobe Document Services ............................................................................................... 46
4.2.3 Destinations for Forms ...................................................................................................... 47
4.2.4 Address Validation Service............................................................................................... 50
4.2.5 Implement Virus Scanning in SAP NetWeaver CE 7.1 .................................................. 55
4.2.6 Integration of CAPTCHA (Completely Automated Public Turing test to tell
Computers and Humans Apart) ....................................................................................... 63
4.3 Specific Customizing for Online Application Submission Management ........................ 66
4.3.1 Customisable E-Mail Notification Templates................................................................... 66
4.3.2 Status Actions.................................................................................................................... 71
4.3.3 Message Customizing....................................................................................................... 72
4.3.4 Application Properties ....................................................................................................... 73
4.3.5 Running a Notification Job................................................................................................ 83
1 Organization
1.1 Document Administration
1.1.1 Authors
Name Company Project Role/Comment
1.1.2 History
Date Version Release Name Change/Enhancement
Note
14/06/2011 Release 2.0 SP4, 1570651 Florian Speth Changed upper and lower case of email
Document Version 1.2 template placeholders in section 4.3.5.2
30/04/2012 Release 2.0 SP5, 1589441 Florian Speth, Section 4.4 Additional Functionality
Document Version 1.3 Manish Sethi added.
09/07/2012 Release 2.0 SP6, 1722743 Florian Speth Section 4.4.1: Added new mappable
Document Version 1.4 parameters for department text, institution
and institution text.
Section 4.3.4.2: Added new application
property for HTML forms
1.3 Glossary
For more information about project-specific terminology, see the glossary on SAP Service Marketplace at
http://service.sap.com/swdc Software Downloads Installations and Upgrades Browse our
Download Catalog SAP Development Projects ONLINE APP SUBMISSION MGMT ONLINE APP
SUBMISSION MGMT 2.0 Technical Documentation Glossar.
2 Getting Started
2.1 Related Information
Links to SAP Service Marketplace
For more information about other documentation, see SAP Service Marketplace at
http://service.sap.com/swdc Software Downloads Installations and Upgrades Browse our
Download Catalog SAP Development Projects ONLINE APP SUBMISSION MGMT
ONLINE APP SUBMISSION MGMT 2.0 Technical Documentation.
SAP Solution Manager
We recommend that you read the SAP Installation Notes before proceeding with installation and
implementation of the solution.
984006 Remote Support for an For remote access, you need to make use of the
Enterprise Portal Remote Support Service. In order to get Remote
Support, a remote connection to SAP is needed. This
note helps you to find further information on remote
connectivity and the required software.
736902 Adobe Credentials This note provides information about how you can
install the credentials and complete the configuration
for Adobe Interactive Forms.
Example Adobe Forms do not work Adobe Interactive Forms do not work with Mozilla
1393511 with FF3 FireFox 3.x. This note provides instructions on how to
deploy a NetWeaver patch to fix the problem.
1527542 Online application Contains the register transport XML Schema. For more
submission management: information about register transport, see Register
Master Data Master Data Transport.
1539224 Release Note for SP1 Contains release-specific information for support
package 1 (SP1) of online application submission
management
1548169 Release Note for SP2 Contains release-specific information for support
package 2 (SP2) of online application submission
management
1562462 Release Note for SP3 Contains release-specific information for support
package 3 (SP3) of online application submission
management
1570651 Release Note for SP4 Contains release-specific information for support
package 4 (SP4) of online application submission
management
1589441 Release Note for SP5 Contains release-specific information for support
package 5 (SP5) of online application submission
management
3 Solution Overview
3.1 System Landscape
Browser
Portal
Web Adobe
Application Document
Server Java Services
Knowledge Management
For more information about the installation of the software components, see SAP Note 1527526.
4 Configuration Details
4.1 SAP User Management Engine (UME)
The SAP User Management Engine (UME) is an integral component of the SAP NetWeaver Composition
Environment (CE) platform and of the online application submission management system architecture. It
is used for user authentication and authorisation purposes. Business roles, role groups, assignments of
actions and implicitly of application permissions as well, user groups and the system users for the online
application submission management system are maintained in this component.
Users acting as applicants in the online application submission management system are created in the
UME by the registration process of the online application submission management system for applicant
individuals or for primary users of applicant organisations, respectively. These primary users can further
create and manage other users for their organisations. In addition, they can also grant them necessary
authorisations. For this so-called delegated user administration the online application submission
management system provides user interfaces (UIs) as enhancement of the standard Identity
Management functionality to ensure that a primary user can administrate users within their own
organisation.
Users acting as front office employees or authority employees are created in the UME during register
maintenance of institutions. The initial setup of these users with respect to passwords and role
assignments has to be carried out using the standard SAP Identity Management administration console
(UI). Once the initial setup is done, the delegated user administration concept can be applied on front
offices and authorities as well as on applicants. However, master data changes are not possible.
It is essential that the system is properly configured in accordance with the configuration options
described in the following sections.
Authorisations are enforced using permissions, actions, and roles. Permissions are used on application
code level for access control. They are grouped into actions by developers. Contrariwise, an action is a
collection of permissions. Every application like the online application submission management also
defines its own set of actions and specifies the permissions assigned to the actions internally, either in an
XML file or dynamically in the code. However, the actions appear in the Identity Management
administration console where you can group them into roles.
UME roles group actions from one or more applications. You assign roles to users directly or indirectly by
using groups in the Identity Management administration console. By assigning roles to users, you define
the users authorisations.
The following sections describe various user types of online application submission management
explaining how roles are related to them and which roles have to be assigned to the different users to
accomplish their tasks. In addition, the creation of groups and roles is described step by step. Finally, the
actions section gives you an overview about all available actions after the deployment of the online
application submission management software.
Updating master data is not possible; these changes are only allowed in register maintenance
OAM_INSTITUTION_USER_ADMINISTRATOR_HIERARCHY
Privileges to administrate users within the department and its sub-departments of the institution,
including user management for example changing passwords, assigning roles, locking and
unlocking users
Updating master data is not possible; these changes are only allowed in register maintenance
OAM_INSTITUTION_USER_ADMINISTRATOR_LOCAL
Privileges to administrate users of the department of the institution, including user management
for example changing passwords, assigning roles, locking and unlocking users
Updating master data is not possible; these changes are only allowed in register maintenance
4.1.1.4 Authority Employees
The master data for authority employees are maintained in the institution registers. The essential role
required to act as an employee of the authority is OAM_AUTHORITY_EMPLOYEE.
Additional privileges can be granted to authority employees by assigning the following roles:
OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_GLOBAL
Privileges to dispatch partial applications as an authority employee to another employee of the
same authority institution
OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_HIERARCHY
Privileges to dispatch partial applications as an authority employee to another employee of the
same department and its sub-departments
OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_LOCAL
Privileges to dispatch partial applications as authority employee to another employee of the same
department
OAM_INSTITUTION_USER_ADMINISTRATOR_GLOBAL
Privileges to administrate users of the own institution, including user management, for example
changing passwords, assigning roles, locking and unlocking users
Updating master data is not possible; these changes are only allowed in register maintenance
OAM_INSTITUTION_USER_ADMINISTRATOR_HIERARCHY
Privileges to administrate users of the same department and its sub-departments, this includes
user management for example changing passwords, assigning roles, locking and unlocking
users.
Updating master data is not possible; these changes are only allowed in register maintenance
OAM_INSTITUTION_USER_ADMINISTRATOR_LOCAL
Privileges to administrate users of the same department, including user management, for
example changing passwords, assigning roles, locking and unlocking users
Updating master data is not possible; these changes are only allowed in register maintenance
4.1.1.5 Register Maintenance Users
The essential roles to maintain register data for the online application submission management system
are OAM_REGISTER_VIEW_UI and OAM_REGISTER_MANAGE_QUERY_API. The first one grants
access to the register maintenance dialogs and the second one in combination with one of the following
roles described below provides privileges to create, update, delete, read and find register data.
Additional roles are required to grant specific maintenance privileges. They have to be assigned to the
user and are described as follows:
OAM_REGISTER_GLOBAL_ADMIN
Privileges to maintain the domain of local administrators; this includes access to the admin
register and assignment of entities and institutions to local administrators
OAM_REGISTER_LOCAL_ADMIN
Privileges to maintain the domain of local users; this includes providing access to the admin
register and assignment of entities and institutions to the local users belonging to the local
administrators domain
OAM_REGISTER_LOCAL_USER
Privileges to read and change only specific register data as a local user; this includes
maintenance of periods and charges for public service types, maintenance of institution data, its
departments and employees and their communication and payment data. It also includes
maintenance of form fields and form variants for forms belonging to the local users domain.
OAM_EVERYONE_APPLICATION_SIMULATION
Privileges to run the application process as an application enterer in simulation mode for demo
purposes
OAM_EVERYONE_USER_CREDENTIALS_RECOVERING
Privileges to retrieve (forgotten) user IDs and request (forgotten) passwords
Retrieving user IDs can be applied to all user types in the online application submission
management system. However, the process for resetting passwords is only applicable for
applicant users due to the fact that security questions/ answers have to be provided and defined.
The online application submission management system supports this feature currently for
applicants only.
Besides the roles described above the following technical role is required for every user type mentioned
above:
OAM_REGISTER_QUERY_API
Privileges to read and find register data
4.1.1.7 Other
There are two additional roles, one for system administrators and one to publish search queries to
specific users:
OAM_MISC_PARTIAL_APPLICATION_NOTIFICATION_JOB
Additional privileges for administrator users of the SAP NetWeaver Administrator which are
required to run scheduled notification jobs informing other users about the status of partial
applications (see Running a Notification Job)
OAM_MISC_SEARCH_QUERY_VARIANT_PUBLISHING
Privileges to store search query variants publicly to enable other users of the same search query
dialog to reuse them. The concrete search dialogs in the online application submission
management system, used by the user of this role, are determined by further roles or the user
types
4.1.2 Groups
The online application submission management system requires the availability of some groups for users
and roles. Role groups are used for delegated user administration and user groups to provide particular
initial privileges for the user types they are meant for. This is why these groups have to be created.
The assignments below constitute the recommended basic configuration; they can be enhanced or
restricted according to your specific needs. In any case the groups described in this section have to be
created with their given IDs in the UME.
OAM_USER_GROUP_APPLICANT_INDIVIDUAL
Users who are created during the registration process as applicant individuals are automatically
assigned to this user group.
Required role:
o OAM_APPLICANT_INDIVIDUAL
OAM_USER_GROUP_APPLICANT_ORGANISATION_ADMINISTRATOR
Users who are created during the registration process as applicant organisation employees are
automatically assigned to this user group.
Required roles:
o OAM_APPLICANT_ORGANISATION_EMPLOYEE
o OAM_APPLICANT_ORGANISATION_DISPATCH
o OAM_APPLICANT_ORGANISATION_EMPLOYEE_PROFILE_MAINTENANCE
o OAM_APPLICANT_ORGANISATION_MAINTENANCE
o OAM_APPLICANT_ORGANISATION_USER_ADMINISTRATION
OAM_USER_GROUP_APPLICANT_ORGANISATION
Users who are created my means of the delegated user administration as applicant organisation
employees are automatically assigned to this user group.
Required role:
o OAM_APPLICANT_ORGANISATION_EMPLOYEE
OAM_USER_GROUP_INSTITUTION
Users who are created during register maintenance as employees are automatically assigned to
this user group.
Required role: None
Technically it cannot be distinguished at the time of user creation whether the user is acting as
front office employee or authority employee. That is why no online application submission
management role is required although the group may help to assign common custom privileges.
The following user groups may be helpful during your implementation project, although they are
currently not considered directly in the online application submission management system:
OAM_USER_GROUP_AUTHORITY, OAM_USER_GROUP_FRONT_OFFICE and
OAM_USER_GROUP_REGISTER_ADMINISTRATOR
The following role groups are used to configure the assignable roles for delegated user administration of
different user types.
Roles assigned to users implicitly by (user) groups cannot be unassigned by the delegated user
administration. For example, if you assign the user group
OAM_USER_GROUP_APPLICANT_ORGANISATION to an employee user of an applicant organisation,
the role OAM_APPLICANT_ORGANISATION_EMPLOYEE is assigned implicitly to the corresponding
user. Even if this role would be part of the role OAM_ROLE_GROUP_APPLICANT, is not possible to
unassign it using the delegated user administration because the delegated user administration can
manage direct role assignments only.
OAM_ROLE_GROUP_APPLICANT
Grouping of available or assignable roles for the delegated user administration of an applicant
organisation
OAM_ROLE_GROUP_FRONT_OFFICE
Grouping of available or assignable roles for the delegated user administration of the front office
Required system roles:
o OAM_FRONT_OFFICE_EMPLOYEE
o OAM_FRONT_OFFICE_APPLICATION_DISPATCH_GLOBAL
o OAM_FRONT_OFFICE_APPLICATION_DISPATCH_HIERARCHY
o OAM_FRONT_OFFICE_APPLICATION_DISPATCH_LOCAL
o OAM_INSTITUTION_USER_ADMINISTRATOR_GLOBAL
o OAM_INSTITUTION_USER_ADMINISTRATOR_HIERARCHY
o OAM_INSTITUTION_USER_ADMINISTRATOR_LOCAL
OAM_ROLE_GROUP_AUTHORITY
Grouping of available or assignable roles for the delegated user administration of the authority
Required system roles:
o OAM_AUTHORITY_EMPLOYEE
o OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_GLOBAL
o OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_HIERARCHY
o OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_LOCAL
o OAM_INSTITUTION_USER_ADMINISTRATOR_GLOBAL
o OAM_INSTITUTION_USER_ADMINISTRATOR_HIERARCHY
o OAM_INSTITUTION_USER_ADMINISTRATOR_LOCAL
OAM_ROLE_GROUP_INSTITUTION
Grouping of available or assignable roles for the delegated user administration of the institution;
This role group is applied in the delegated user administration only if the roles
OAM_FRONT_OFFICE_EMPLOYEE and OAM_AUTHORITY_EMPLOYEE are assigned to the
delegated user administrator. This is designed for the special case where an authority acts as a
front office as well.
Required system roles:
o OAM_FRONT_OFFICE_EMPLOYEE
o OAM_FRONT_OFFICE_APPLICATION_DISPATCH_GLOBAL
o OAM_FRONT_OFFICE_APPLICATION_DISPATCH_HIERARCHY
o OAM_FRONT_OFFICE_APPLICATION_DISPATCH_LOCAL
o OAM_INSTITUTION_USER_ADMINISTRATOR_GLOBAL
o OAM_INSTITUTION_USER_ADMINISTRATOR_HIERARCHY
o OAM_INSTITUTION_USER_ADMINISTRATOR_LOCAL
o OAM_AUTHORITY_EMPLOYEE
o OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_GLOBAL
o OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_HIERARCHY
o OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_LOCAL
4.1.3 Roles
After the above descriptions of the online application submission management user types and groups and
their relationship to the required roles, the focus of the following sections lie on these roles in more detail.
You have to create them in the UME with the unique names given in this section. To make them
operational, you have to assign the described actions.
These actions are automatically available in the UME after the online application submission
management software is deployed on the SAP NetWeaver CE 7.1 system. Technically, the actions are
contained in the permission development component of the online application submission management
delivery.
4.1.3.1 OAM_APPLICANT_INDIVIDUAL
Unique name: OAM_APPLICANT_INDIVIDUAL
Description: Privileges for applicant individuals
Assigned actions:
OAMApplicationApplicantAdmin
OAMManageApplicantUpdateApplicant
OAMManageIndividualReadIndividualByUserID
OAMManageIndividualUpdateIndividual
OAMUserTypeApplicantIndividual
4.1.3.2 OAM_APPLICANT_ORGANISATION_DISPATCH
Unique name: OAM_APPLICANT_ORGANISATION_DISPATCH
Description: Privileges to dispatch applications in applicant organisations
Assigned action:
OAMApplicationApplicantDispatcher
4.1.3.3 OAM_APPLICANT_ORGANISATION_EMPLOYEE
Unique name: OAM_APPLICANT_ORGANISATION_EMPLOYEE
Description: Privileges for applicant organisation employees
Assigned actions:
OAMApplicationApplicantAdmin
OAMManageApplicantUpdateApplicant
OAMUserTypeApplicantOrganisationEmployee
4.1.3.4 OAM_APPLICANT_ORGANISATION_EMPLOYEE_PROFILE_MAINTENANCE
Unique name: OAM_APPLICANT_ORGANISATION_EMPLOYEE_PROFILE_MAINTENANCE
Description: Privileges for employees to manage their own profile
Assigned actions:
OAMManageOrganisationEmployeeReadOrganisationEmployeeByUserID
OAMManageOrganisationEmployeeUpdateOrganisationEmployee
4.1.3.5 OAM_APPLICANT_ORGANISATION_MAINTENANCE
Unique name: OAM_APPLICANT_ORGANISATION_MAINTENANCE
Description: Maintain applicant organisation master data
Assigned actions:
OAMManageOrganisationReadOrganisationByEmployeeUserID
OAMManageOrganisationUpdateOrganisation
4.1.3.6 OAM_APPLICANT_ORGANISATION_USER_ADMINISTRATION
Unique name: OAM_APPLICANT_ORGANISATION_USER_ADMINISTRATION
Description: Administrate users of applicant organisations
Assigned actions:
OAMAdministrateUserCreateOrganisationUser
OAMAdministrateUserFindOrganisationUserByElements
OAMAdministrateUserFindRolesByGroupUniqueName
OAMAdministrateUserGeneratePassword
OAMAdministrateUserLockUser
OAMAdministrateUserReadOrganisationUser
OAMAdministrateUserUnLockUser
OAMAdministrateUserUpdateOrganisationUser
4.1.3.7 OAM_AUTHORITY_EMPLOYEE
Unique name: OAM_AUTHORITY_EMPLOYEE
Description: Privileges for authority employees
Assigned actions:
OAMApplicationAuthorityAdmin
OAMApplicationChargesAdmin
OAMUserTypeAuthorityEmployee
4.1.3.8 OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_GLOBAL
Unique name: OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_GLOBAL
Description: Dispatch partial applications in your institution
Assigned action:
OAMApplicationAuthorityGlobalDispatcher
4.1.3.9 OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_HIERARCHY
Unique name: OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_HIERARCHY
Description: Dispatch partial application in your department and associated sub-departments
Assigned action:
OAMApplicationAuthorityHierarchicalDispatcher
4.1.3.10 OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_LOCAL
Unique name: OAM_AUTHORITY_PARTIAL_APPLICATION_DISPATCH_LOCAL
Description: Dispatch partial application in your department
Assigned action:
OAMApplicationAuthorityLocalDispatcher
4.1.3.11 OAM_EVERYONE_APPLICANT_REGISTRATION
Unique name: OAM_EVERYONE_APPLICANT_REGISTRATION
Description: Register on the online application submission management platform
Assigned action:
OAMManagePrincipalRegisterPrincipal
4.1.3.12 OAM_EVERYONE_APPLICATION_SIMULATION
Unique name: OAM_EVERYONE_APPLICATION_SIMULATION
Description: Run online applications in simulation mode
Assigned actions:
OAMSimulationUser
4.1.3.13 OAM_EVERYONE_USER_CREDENTIALS_RECOVERING
Unique name: OAM_EVERYONE_USER_CREDENTIALS_RECOVERING
Description: Recover your user credentials
Assigned action:
OAMRecoverCredentialsReadSecurityQuestion
OAMRecoverCredentialsResetPassword
OAMRecoverCredentialsSubmitUserIDsByEmail
4.1.3.14 OAM_FRONT_OFFICE_APPLICATION_DISPATCH_GLOBAL
Unique name: OAM_FRONT_OFFICE_APPLICATION_DISPATCH_GLOBAL
Description: Dispatch applications in your institution
Assigned action:
OAMApplicationFrontOfficeGlobalDispatcher
4.1.3.15 OAM_FRONT_OFFICE_APPLICATION_DISPATCH_HIERARCHY
Unique name: OAM_FRONT_OFFICE_APPLICATION_DISPATCH_HIERARCHY
Description: Dispatch applications in your department and associated sub-department
Assigned action:
OAMApplicationFrontOfficeHierarchicalDispatcher
4.1.3.16 OAM_FRONT_OFFICE_APPLICATION_DISPATCH_LOCAL
Unique name: OAM_FRONT_OFFICE_APPLICATION_DISPATCH_LOCAL
Description: Dispatch applications in your department
Assigned action:
OAMApplicationFrontOfficeLocalDispatcher
4.1.3.17 OAM_FRONT_OFFICE_EMPLOYEE
Unique name: OAM_FRONT_OFFICE_EMPLOYEE
Description: Privileges for front office employees
Assigned actions:
OAMApplicationChargesAdmin
OAMApplicationFrontOfficeAdmin
OAMManageApplicantUpdateApplicant
OAMUserTypeFrontOfficeEmployee
4.1.3.18 OAM_INSTITUTION_USER_ADMINISTRATOR_GLOBAL
Unique name: OAM_INSTITUTION_USER_ADMINISTRATOR_GLOBAL
Description: Administrate users in your institution
Assigned actions:
OAMAdministrateUserFindInstitutionUserByElements
OAMAdministrateUserFindRolesByGroupUniqueName
OAMAdministrateUserGeneratePassword
OAMAdministrateUserLockUser
OAMAdministrateUserReadInstitutionUser
OAMAdministrateUserUnLockUser
OAMAdministrateUserUpdateInstitutionUser
OAMUserTypeInstitutionUserAdministrator
4.1.3.19 OAM_INSTITUTION_USER_ADMINISTRATOR_HIERARCHY
Unique name: OAM_INSTITUTION_USER_ADMINISTRATOR_HIERARCHY
Description: Administrate users in your department and associated sub-department
Assigned actions:
OAMAdministrateUserFindInstitutionUserByElements
OAMAdministrateUserFindRolesByGroupUniqueName
OAMAdministrateUserGeneratePassword
OAMAdministrateUserLockUser
OAMAdministrateUserReadInstitutionUser
OAMAdministrateUserUnLockUser
OAMAdministrateUserUpdateInstitutionUser
OAMUserTypeDepartmentHierarchyUserAdministrator
4.1.3.20 OAM_INSTITUTION_USER_ADMINISTRATOR_LOCAL
Unique name: OAM_INSTITUTION_USER_ADMINISTRATOR_LOCAL
Description: Administrate users in your department
Assigned actions:
OAMAdministrateUserFindInstitutionUserByElements
OAMAdministrateUserFindRolesByGroupUniqueName
OAMAdministrateUserGeneratePassword
OAMAdministrateUserLockUser
OAMAdministrateUserReadInstitutionUser
OAMAdministrateUserUnLockUser
OAMAdministrateUserUpdateInstitutionUser
OAMUserTypeDepartmentUserAdministrator
4.1.3.21 OAM_MISC_PARTIAL_APPLICATION_NOTIFICATION_JOB
Unique name: OAM_MISC_PARTIAL_APPLICATION_NOTIFICATION_JOB
Description: Privileges to run partial application notification jobs (see Running a Notification Job)
Assigned action:
OAMNotificationJobAction
4.1.3.22 OAM_MISC_SEARCH_QUERY_VARIANT_PUBLISHING
Unique name: OAM_MISC_SEARCH_QUERY_VARIANT_PUBLISHING
Description: Privileges to maintain and publish default query variants
Assigned action:
OAMUserTypeQueryVariantAdministrator
4.1.3.23 OAM_REGISTER_GLOBAL_ADMIN
Unique name: OAM_REGISTER_GLOBAL_ADMIN
Description: Privileges to maintain the domain of local administrators
Assigned action:
OAMRegisterGlobalAdmin
4.1.3.24 OAM_REGISTER_GLOBAL_READ_WRITE_USER
Unique name: OAM_REGISTER_GLOBAL_READ_WRITE_USER
Description: Privileges to read and change register data domain-independent
Assigned action:
OAMRegisterGlobalUser
4.1.3.25 OAM_REGISTER_LOCAL_ADMIN
Unique name: OAM_REGISTER_LOCAL_ADMIN
Description: Privileges to maintain the domain of local users
Assigned action:
OAMRegisterLocalAdmin
4.1.3.26 OAM_REGISTER_LOCAL_USER
Unique name: OAM_REGISTER_LOCAL_USER
Description: Privileges to read and change only specific register data that are allowed to be maintained by
local users
Assigned action:
OAMRegisterLocalUser
4.1.3.27 OAM_REGISTER_MANAGE_QUERY_API
Unique name: OAM_REGISTER_MANAGE_QUERY_API
Description: Run permission for all registers' create, update, delete, read and find operations (= technical
role)
Assigned actions:
OAMManageUserProfileDMSAddUserToGroup
OAMManageUserProfileDMSCreateUser
OAMManageUserProfileDMSUpdateUser
OAMManageUserProfileUMEAddUserToGroup
OAMManageUserProfileUMECreateUser
OAMManageUserProfileUMEFindUsersByElements
OAMManageUserProfileUMEUpdateUser
OAMRegisterGlobalUIUser
OAMRegisterManage
OAMRegisterManageClassification
OAMRegisterManageClassificationType
OAMRegisterManageCommunication,
OAMRegisterManageCustomizing
OAMRegisterManageDocumentType,
OAMRegisterManageEmployee
OAMRegisterManageEntity
OAMRegisterManageEntityCategory
OAMRegisterManageEntityCategoryAppParam
OAMRegisterManageEntityInstitution
OAMRegisterManageEntityReference
OAMRegisterManageEntityType
OAMRegisterManageExternalCode
OAMRegisterManageForm
OAMRegisterManageFormField
OAMRegisterManageFormVariant,
OAMRegisterManageInstitution
OAMRegisterManageNamespace
OAMRegisterManageOrgUnit
OAMRegisterManagePayment,
OAMRegisterManagePublicServiceAuthority
OAMRegisterManagePublicServiceType
OAMRegisterManagePublicServiceTypeCharge
OAMRegisterManagePublicServiceTypeDocument
OAMRegisterManagePublicServiceTypePeriod
OAMRegisterManageQuestion,
OAMRegisterManageQuestionGroup
OAMRegisterManageRule
OAMRegisterManageSelectionList
OAMRegisterManageSelectionValue
OAMRegisterManageSmc
OAMRegisterManageUserLocalization
OAMRegisterQuery
OAMRegisterQueryClassification
OAMRegisterQueryClassificationType
OAMRegisterQueryCommunication
OAMRegisterQueryCustomizing
OAMRegisterQueryDocumentType
OAMRegisterQueryEmployee
OAMRegisterQueryEntity
OAMRegisterQueryEntityCategory
OAMRegisterQueryEntityCategoryAppParam
OAMRegisterQueryEntityInstitution
OAMRegisterQueryEntityReference
OAMRegisterQueryEntityType
OAMRegisterQueryExternalCode
OAMRegisterQueryForm
OAMRegisterQueryFormField
OAMRegisterQueryFormVariant
OAMRegisterQueryInstitution,
OAMRegisterQueryNamespace
OAMRegisterQueryOrgUnit
OAMRegisterQueryPayment
OAMRegisterQueryPublicServiceAuthority
OAMRegisterQueryPublicServiceType
OAMRegisterQueryPublicServiceTypeCharge
OAMRegisterQueryPublicServiceTypeDocument
OAMRegisterQueryPublicServiceTypePeriod
OAMRegisterQueryQuestion,
OAMRegisterQueryQuestionGroup
OAMRegisterQueryRule
OAMRegisterQuerySelectionList,
OAMRegisterQuerySelectionValue
OAMRegisterQuerySmc
OAMRegisterQueryTypedRule,
OAMRegisterQueryUserLocalization
OAMRegisterManageQuestionGroupFormAssignment
OAMRegisterQueryQuestionGroupFormAssignment
4.1.3.28 OAM_REGISTER_QUERY_API
Unique name: OAM_REGISTER_QUERY_API
Description: Run permission to all registers' read and find operations (= technical role)
Assigned actions:
OAMRegisterQuery
OAMRegisterQueryClassification
OAMRegisterQueryClassificationType
OAMRegisterQueryCommunication
OAMRegisterQueryCustomizing
OAMRegisterQueryDocumentType
OAMRegisterQueryEmployee
OAMRegisterQueryEntity
OAMRegisterQueryEntityCategory
OAMRegisterQueryEntityCategoryAppParam
OAMRegisterQueryEntityInstitution
OAMRegisterQueryEntityReference
OAMRegisterQueryEntityType
OAMRegisterQueryExternalCode
OAMRegisterQueryForm
OAMRegisterQueryFormField
OAMRegisterQueryFormVariant
OAMRegisterQueryInstitution
OAMRegisterQueryNamespace
OAMRegisterQueryOrgUnit
OAMRegisterQueryPayment
OAMRegisterQueryPublicServiceAuthority
OAMRegisterQueryPublicServiceType
OAMRegisterQueryPublicServiceTypeCharge
OAMRegisterQueryPublicServiceTypeDocument
OAMRegisterQueryPublicServiceTypePeriod
OAMRegisterQueryQuestion
OAMRegisterQueryQuestionGroup
OAMRegisterQueryRule
OAMRegisterQuerySelectionList
OAMRegisterQuerySelectionValue
OAMRegisterQuerySmc
OAMRegisterQueryTypedRule
OAMRegisterQueryUserLocalization
OAMRegisterQueryQuestionGroupFormAssignment
4.1.3.29 OAM_REGISTER_TRANSPORT
Unique name: OAM_REGISTER_TRANSPORT
Description: Privileges to import and export register data
Assigned actions:
OAMRegisterExport
OAMRegisterExportApi
OAMRegisterImport
OAMRegisterImportApi
OAMRegisterImportViewLog
4.1.3.30 OAM_REGISTER_VIEW_UI
Unique name: OAM_REGISTER_VIEW_UI
Description: Privileges to access register maintenance dialogs
Assigned action:
OAMRegisterGlobalUIUser
4.1.4 Actions
This section lists all available online application submission management actions assignable to roles.
These actions are deployed into the UME automatically during software deployment.
4.1.4.1 OAMAdministrateUserCreateOrganisationUser
Name: OAMAdministrateUserCreateOrganisationUser
Description: This action allows the user to create organisation users belonging to his company.
4.1.4.2 OAMAdministrateUserFindInstitutionUserByElements
Name: OAMAdministrateUserFindInstitutionUserByElements
Description: This action allows the user to find institution users.
4.1.4.3 OAMAdministrateUserFindOrganisationUserByElements
Name: OAMAdministrateUserFindOrganisationUserByElements
Description: This action allows the user to find organisation users belonging to the own company.
4.1.4.4 OAMAdministrateUserFindRolesByGroupUniqueName
Name: OAMAdministrateUserFindRolesByGroupUniqueName
Description: This action allows the user to find available roles for organisation users of his company.
4.1.4.5 OAMAdministrateUserGeneratePassword
Name: OAMAdministrateUserGeneratePassword
Description: This action allows the user to generate passwords for organisation users belonging to his
company.
4.1.4.6 OAMAdministrateUserLockUser
Name: OAMAdministrateUserLockUser
Description: This action allows the user to lock organisation users belonging to the own company.
4.1.4.7 OAMAdministrateUserReadInstitutionUser
Name: OAMAdministrateUserReadInstitutionUser
Description: This action allows the user to read institution users.
4.1.4.8 OAMAdministrateUserReadOrganisationUser
Name: OAMAdministrateUserReadOrganisationUser
Description: This action allows the user to read organisation users belonging to his company.
4.1.4.9 OAMAdministrateUserUnLockUser
Name: OAMAdministrateUserUnLockUser
Description: This action allows the user to unlock organisation users of his company.
4.1.4.10 OAMAdministrateUserUpdateInstitutionUser
Name: OAMAdministrateUserUpdateInstitutionUser
Description: This action allows the user to update institution users.
4.1.4.11 OAMAdministrateUserUpdateOrganisationUser
Name: OAMAdministrateUserUpdateOrganisationUser
Description: This action allows the user to update organisation users of his company.
4.1.4.12 OAMApplicationApplicantAdmin
Name: OAMApplicationApplicantAdmin
Description: This action allows the user to read, save, create, submit applications and set them as
obsolete.
4.1.4.13 OAMApplicationApplicantDispatcher
Name: OAMApplicationApplicantDispatcher
Description: This action allows the applicant to dispatch and read applications.
4.1.4.14 OAMApplicationAuthorityAdmin
Name: OAMApplicationAuthorityAdmin
Description: This action allows the authority user to read, approve, reject and remove partial applications.
4.1.4.15 OAMApplicationAuthorityGlobalDispatcher
Name: OAMApplicationAuthorityGlobalDispatcher
Description: This action allows the user to read and dispatch partial applications.
4.1.4.16 OAMApplicationAuthorityHierarchicalDispatcher
Name: OAMApplicationAuthorityHierarchicalDispatcher
Description: This action allows the Authority to read and hierarchically dispatch partial applications.
4.1.4.17 OAMApplicationAuthorityLocalDispatcher
Name: OAMApplicationAuthorityLocalDispatcher
Description: This action allows the user to read and locally dispatch partial applications.
4.1.4.18 OAMApplicationFrontOfficeAdmin
Name: OAMApplicationFrontOfficeAdmin
Description: This action allows the user to read, approve, cancel, reject, create, update applications and
set them as obsolete and to add, update, delete partial applications.
4.1.4.19 OAMApplicationFrontOfficeGlobalDispatcher
Name: OAMApplicationFrontOfficeGlobalDispatcher
Description: This action allows the front office employee to read and globally dispatch applications.
4.1.4.20 OAMApplicationFrontOfficeHierarchicalDispatcher
Name: OAMApplicationFrontOfficeHierarchicalDispatcher
Description: This action allows the user to read and hierarchical dispatch applications.
4.1.4.21 OAMApplicationFrontOfficeLocalDispatcher
Name: OAMApplicationFrontOfficeLocalDispatcher
Description: This action allows the front office user to read and locally dispatch applications.
4.1.4.22 OAMManageApplicantFindApplicantByOrganisationData
Name: OAMManageApplicantFindApplicantByOrganisationData
Description: This action allows the user to find applicants by organisation data.
4.1.4.23 OAMManageApplicantFindApplicantByPersonData
Name: OAMManageApplicantFindApplicantByPersonData
Description: This action allows the user to find applicants by person data.
4.1.4.24 OAMManageApplicantFindApplicantsByKey
Name: OAMManageApplicantFindApplicantsByKey
Description: This action allows the user to find applicants by key.
4.1.4.25 OAMManageApplicantFindApplicationEntererByPersonData
Name: OAMManageApplicantFindApplicationEntererByPersonData
Description: This action allows the user to find application enterers by person data.
4.1.4.26 OAMManageApplicantFindApplicationEntererByUserID
Name: OAMManageApplicantFindApplicationEntererByUserID
Description: This action allows the user to find applicantion enterers by user ID.
4.1.4.27 OAMManageApplicantReadApplicantByKey
Name: OAMManageApplicantReadApplicantByKey
Description: This action allows the user to read applicants by key.
4.1.4.28 OAMManageApplicantReadApplicantByUserID
Name: OAMManageApplicantReadApplicantByUserID
Description: This action allows the user to read applicanta by user ID.
4.1.4.29 OAMManageApplicantUpdateApplicant
Name: OAMManageApplicantUpdateApplicant
Description: This action allows the user to update applicants.
4.1.4.30 OAMManageIndividualReadIndividualByUserID
Name: OAMManageIndividualReadIndividualByUserID
Description: This action allows the user to read individuals by user ID.
4.1.4.31 OAMManageIndividualUpdateIndividual
Name: OAMManageIndividualUpdateIndividual
Description: This action allows the user to update individuals.
4.1.4.32 OAMManageOrganisationEmployeeReadOrganisationEmployeeByUserID
Name: OAMManageOrganisationEmployeeReadOrganisationEmployeeByUserID
Description: This action allows the user to read organisation employees by user ID.
4.1.4.33 OAMManageOrganisationEmployeeUpdateOrganisationEmployee
Name: OAMManageOrganisationEmployeeUpdateOrganisationEmployee
Description: This action allows the user to update organisation employees.
4.1.4.34 OAMManageOrganisationReadOrganisationByEmployeeUserID
Name: OAMManageOrganisationReadOrganisationByEmployeeUserID
Description: This action allows the user to read organisations by the employee user ID.
4.1.4.35 OAMManageOrganisationUpdateOrganisation
Name: OAMManageOrganisationUpdateOrganisation
Description: This action allows the user to update organisations.
4.1.4.36 OAMManagePrincipalImportPrincipalVCard
Name: OAMManagePrincipalImportPrincipalVCard
Description: This action allows the user to import vCards.
4.1.4.44 OAMManageUserProfileUMEReadSecurityQuestion
Name: OAMManageUserProfileUMEReadSecurityQuestion
Description: This action allows the user to read security questions in the UME.
4.1.4.45 OAMManageUserProfileUMEUpdateUser
Name: OAMManageUserProfileUMEUpdateUser
Description: This action allows the user to update users in the UME.
4.1.4.46 OAMNotificationJobAction
Name: OAMNotificationJobAction
Description: This action allows a job to read partial application data to send period notifications.
4.1.4.47 OAMProcessLogAction
Name: OAMProcessLogAction
Description: This action allows a user to view the process log and upload or download the questionnaire.
4.1.4.48 OAMRecoverCredentialsReadSecurityQuestion
Name: OAMRecoverCredentialsReadSecurityQuestion
Description: This action allows reading the security question of the user.
4.1.4.49 OAMRecoverCredentialsResetPassword
Name: OAMRecoverCredentialsResetPassword
Description: This action allows the user to reset passwords.
4.1.4.50 OAMRecoverCredentialsSubmitUserIDsByEmail
Name: OAMRecoverCredentialsSubmitUserIDsByEmail
Description: This action allows submitting user IDs by e-mail.
4.1.4.51 OAMRegisterExport
Name: OAMRegisterExport
Description: This action allows the user to export register data
4.1.4.52 OAMRegisterExportApi
Name: OAMRegisterExportApi
Description: This role allows the user to create and download register exports.
4.1.4.53 OAMRegisterGlobalAdmin
Name: OAMRegisterGlobalAdmin
Description: This action allows the user to administrate the local administrators and users.
4.1.4.54 OAMRegisterGlobalReadLocalWriteUser
Name: OAMRegisterGlobalReadLocalWriteUser
Description: This action allows the user to read global register data. However, he can modify register data
only in his specific domain.
4.1.4.55 OAMRegisterGlobalReadUser
Name: OAMRegisterGlobalReadUser
Description: This action allows the user to read all register data.
4.1.4.56 OAMRegisterGlobalUIUser
Name: OAMRegisterGlobalUIUser
Description: This action allows the user to access register maintenance and customizing UIs.
4.1.4.57 OAMRegisterGlobalUser
Name: OAMRegisterGlobalUser
Description: This action allows the user to read and modify all register data.
4.1.4.58 OAMRegisterImport
Name: OAMRegisterImport
Description: This action allows the user to import register data.
4.1.4.59 OAMRegisterImportApi
Name: OAMRegisterImportApi
Description: This action allows the user to import register data.
4.1.4.60 OAMRegisterImportViewLog
Name: OAMRegisterImportViewLog
Description: This action allows the user to display the import log.
4.1.4.61 OAMRegisterLocalAdmin
Name: OAMRegisterLocalAdmin
Description: This action allows the user to administrate local users.
4.1.4.62 OAMRegisterLocalUser
Name: OAMRegisterLocalUser
Description: This action allows user to read and modify register data only to his specific domain.
4.1.4.63 OAMRegisterManage
Name: OAMRegisterManage
Description: This action allows the user to create, update or delete register data.
4.1.4.64 OAMRegisterManageClassification
Name: OAMRegisterManageClassification
Description: This action allows the user to create, update or delete classifications.
4.1.4.65 OAMRegisterManageClassificationType
Name: OAMRegisterManageClassificationType
Description: This action allows the user to create, update or delete classification types.
4.1.4.66 OAMRegisterManageCommunication
Name: OAMRegisterManageCommunication
Description: This action allows the user to create, update or delete communication data.
4.1.4.67 OAMRegisterManageCustomizing
Name: OAMRegisterManageCustomizing
Description: This action allows the user to create, update or delete customizing data.
4.1.4.68 OAMRegisterManageDocumentType
Name: OAMRegisterManageDocumentType
Description: This action allows the user to create, update or delete document types.
4.1.4.69 OAMRegisterManageEmployee
Name: OAMRegisterManageEmployee
Description: This action allows the user to create, update or delete employee data.
4.1.4.70 OAMRegisterManageEntity
Name: OAMRegisterManageEntity
Description: This action allows the user to create, update or delete entities.
4.1.4.71 OAMRegisterManageEntityCategory
Name: OAMRegisterManageEntityCategory
Description: This action allows the user to create, update or delete entity categories.
4.1.4.72 OAMRegisterManageEntityCategoryAppParam
Name: OAMRegisterManageEntityCategoryAppParam
Description: This action allows the user to create, update or delete application parameters for the entity
category.
4.1.4.73 OAMRegisterManageEntityInstitution
Name: OAMRegisterManageEntityInstitution
Description: This action allows the user to create, update or delete an entity institution.
4.1.4.74 OAMRegisterManageEntityReference
Name: OAMRegisterManageEntityReference
Description: This action allows the user to create, update or delete entity references.
4.1.4.75 OAMRegisterManageEntityType
Name: OAMRegisterManageEntityType
Description: This action allows the user to create, update or delete entity types.
4.1.4.76 OAMRegisterManageExternalCode
Name: OAMRegisterManageExternalCode
Description: This action allows the user to create, update or delete external codes.
4.1.4.77 OAMRegisterManageForm
Name: OAMRegisterManageForm
Description: This action allows the user to create, update or delete forms.
4.1.4.78 OAMRegisterManageFormField
Name: OAMRegisterManageFormField
Description: This action allows the user to create, update or delete form fields.
4.1.4.79 OAMRegisterManageFormVariant
Name: OAMRegisterManageFormVariant
Description: This action allows the user to create, update or delete form variants.
4.1.4.80 OAMRegisterManageQuestionGroupFormAssignment
Name: OAMRegisterManageQuestionGroupFormAssignment
Description: This action allows the user to create, update or delete question group form assignments.
4.1.4.81 OAMRegisterManageInstitution
Name: OAMRegisterManageInstitution
Description: This action allows the user to create, update or delete institutions.
4.1.4.82 OAMRegisterManageNamespace
Name: OAMRegisterManageNamespace
Description: This action allows the user to create, update or delete namespaces.
4.1.4.83 OAMRegisterManageOrgUnit
Name: OAMRegisterManageOrgUnit
Description: This action allows the user to create, update or delete organisational units.
4.1.4.84 OAMRegisterManagePayment
Name: OAMRegisterManagePayment
Description: This action allows the user to create, update or delete payment data.
4.1.4.85 OAMRegisterManagePublicServiceAuthority
Name: OAMRegisterManagePublicServiceAuthority
Description: This action allows the user to create, update or delete public service authorities.
4.1.4.86 OAMRegisterManagePublicServiceType
Name: OAMRegisterManagePublicServiceType
Description: This action allows the user to create, update or delete public service types.
4.1.4.87 OAMRegisterManagePublicServiceTypeCharge
Name: OAMRegisterManagePublicServiceTypeCharge
Description: This action allows the user to create, update or delete charges for public service types.
4.1.4.88 OAMRegisterManagePublicServiceTypeDocument
Name: OAMRegisterManagePublicServiceTypeDocument
Description: This action allows the user to create, update or delete documents of public service types.
4.1.4.89 OAMRegisterManagePublicServiceTypePeriod
Name: OAMRegisterManagePublicServiceTypePeriod
Description: This action allows the user to create, update or delete periods for public service types.
4.1.4.90 OAMRegisterManageQuestion
Name: OAMRegisterManageQuestion
Description: This action allows the user to create, update or delete questions.
4.1.4.91 OAMRegisterManageQuestionGroup
Name: OAMRegisterManageQuestionGroup
Description: This action allows the user to create, update or delete question groups.
4.1.4.92 OAMRegisterManageRule
Name: OAMRegisterManageRule
Description: This action allows the user to create, update or delete rules.
4.1.4.93 OAMRegisterManageSelectionList
Name: OAMRegisterManageSelectionList
Description: This action allows the user to create, update or delete selection lists.
4.1.4.94 OAMRegisterManageSelectionValue
Name: OAMRegisterManageSelectionValue
Description: This action allows the user to create, update or delete selection values.
4.1.4.95 OAMRegisterManageSmc
Name: OAMRegisterManageSmc
Description: This action allows the user to create, update or delete subject-matter competences.
4.1.4.96 OAMRegisterManageUserLocalization
Name: OAMRegisterManageUserLocalization
Description: This action allows the user to create, update or delete a user localisation.
4.1.4.97 OAMRegisterQuery
Name: OAMRegisterQuery
Description: This action allows the user to read or find register data.
4.1.4.98 OAMRegisterQueryClassification
Name: OAMRegisterQueryClassification
Description: This action allows the user to read or find classifications.
4.1.4.99 OAMRegisterQueryClassificationType
Name: OAMRegisterQueryClassificationType
Description: This action allows the user to read or find classification types.
4.1.4.100 OAMRegisterQueryCommunication
Name: OAMRegisterQueryCommunication
Description: This action allows the user to read or find communication data.
4.1.4.101 OAMRegisterQueryCustomizing
Name: OAMRegisterQueryCustomizing
Description: This action allows the user to read or find customizing data.
4.1.4.102 OAMRegisterQueryDocumentType
Name: OAMRegisterQueryDocumentType
Description: This action allows the user to read or find document types.
4.1.4.103 OAMRegisterQueryEmployee
Name: OAMRegisterQueryEmployee
Description: This action allows the user to read or find employees.
4.1.4.104 OAMRegisterQueryEntity
Name: OAMRegisterQueryEntity
Description: This action allows the user to read or find entities.
4.1.4.105 OAMRegisterQueryEntityCategory
Name: OAMRegisterQueryEntityCategory
Description: This action allows the user to read or find entity categories.
4.1.4.106 OAMRegisterQueryEntityCategoryAppParam
Name: OAMRegisterQueryEntityCategoryAppParam
Description: This action allows the user to read or find application parameters of entity categories.
4.1.4.107 OAMRegisterQueryEntityInstitution
Name: OAMRegisterQueryEntityInstitution
Description: This action allows the user to read or find entity institutions.
4.1.4.108 OAMRegisterQueryEntityReference
Name: OAMRegisterQueryEntityReference
Description: This action allows the user to read or find entity references.
4.1.4.109 OAMRegisterQueryEntityType
Name: OAMRegisterQueryEntityType
Description: This action allows the user to read or find entity types.
4.1.4.110 OAMRegisterQueryExternalCode
Name: OAMRegisterQueryExternalCode
Description: This action allows the user to read or find external codes.
4.1.4.111 OAMRegisterQueryForm
Name: OAMRegisterQueryForm
Description: This action allows the user to read or find forms.
4.1.4.112 OAMRegisterQueryFormField
Name: OAMRegisterQueryFormField
Description: This action allows the user to read or find form fields.
4.1.4.113 OAMRegisterQueryFormVariant
Name: OAMRegisterQueryFormVariant
Description: This action allows the user to read or find form variant.
4.1.4.114 OAMRegisterQueryQuestionGroupFormAssignment
Name: OAMRegisterQueryQuestionGroupFormAssignment
Description: This action allows the user to read or find Question Group Form Assignment.
4.1.4.115 OAMRegisterQueryInstitution
Name: OAMRegisterQueryInstitution
Description: This action allows the user to read or find institutions.
4.1.4.116 OAMRegisterQueryNamespace
Name: OAMRegisterQueryNamespace
Description: This action allows the user to read or find namespaces.
4.1.4.117 OAMRegisterQueryOrgUnit
Name: OAMRegisterQueryOrgUnit
Description: This action allows the user to read or find organisational units.
4.1.4.118 OAMRegisterQueryPayment
Name: OAMRegisterQueryPayment
Description: This action allows the user to read or find payment data.
4.1.4.119 OAMRegisterQueryPublicServiceAuthority
Name: OAMRegisterQueryPublicServiceAuthority
Description: This action allows the user to read or find public service authorities.
4.1.4.120 OAMRegisterQueryPublicServiceType
Name: OAMRegisterQueryPublicServiceType
Description: This action allows the user to read or find public service types.
4.1.4.121 OAMRegisterQueryPublicServiceTypeCharge
Name: OAMRegisterQueryPublicServiceTypeCharge
Description: This action allows the user to read or find charges for public service types.
4.1.4.122 OAMRegisterQueryPublicServiceTypeDocument
Name: OAMRegisterQueryPublicServiceTypeDocument
Description: This action allows the user to read or find documents of public service types.
4.1.4.123 OAMRegisterQueryPublicServiceTypePeriod
Name: OAMRegisterQueryPublicServiceTypePeriod
Description: This action allows the user to read or find periods of public service types.
4.1.4.124 OAMRegisterQueryQuestion
Name: OAMRegisterQueryQuestion
Description: This action allows the user to read or find questions.
4.1.4.125 OAMRegisterQueryQuestionGroup
Name: OAMRegisterQueryQuestionGroup
Description: This action allows the user to read or find question groups.
4.1.4.126 OAMRegisterQueryRule
Name: OAMRegisterQueryRule
Description: This action allows the user to read or find rules.
4.1.4.127 OAMRegisterQuerySelectionList
Name: OAMRegisterQuerySelectionList
Description: This action allows the user to read or find selection lists.
4.1.4.128 OAMRegisterQuerySelectionValue
Name: OAMRegisterQuerySelectionValue
Description: This action allows the user to read or find selection values.
4.1.4.129 OAMRegisterQuerySmc
Name: OAMRegisterQuerySmc
Description: This action allows the user to read or find subject-matter competences.
4.1.4.130 OAMRegisterQueryTypedRule
Name: OAMRegisterQueryTypedRule
Description: This action allows the user to read or find typed rules.
4.1.4.131 OAMRegisterQueryUserLocalization
Name: OAMRegisterQueryUserLocalization
Description: This action allows the user to read or find a user localisation.
4.1.4.132 OAMSimulationUser
Name: OAMSimulationUser
Description: This action allows the user to simulate an application process.
4.1.4.133 OAMUserTypeApplicantIndividual
Name: OAMUserTypeApplicantIndividual
Description: This action identifies the user as an individual applicant.
4.1.4.134 OAMUserTypeApplicantOrganisationEmployee
Name: OAMUserTypeApplicantOrganisationEmployee
Description: This action identifies the user as an applicant organisation employee.
4.1.4.135 OAMUserTypeAuthorityEmployee
Name: OAMUserTypeAuthorityEmployee
Description: This action identifies the user as an authority employee.
4.1.4.136 OAMUserTypeDepartmentHierarchyUserAdministrator
Name: OAMUserTypeDepartmentHierarchyUserAdministrator
Description: This action identifies the user as delegated user administrator of an department within the
hierarchy of an institution.
4.1.4.137 OAMUserTypeDepartmentUserAdministrator
Name: OAMUserTypeDepartmentUserAdministrator
Description: This action identifies the user as delegated user administrator of a department of an
institution.
4.1.4.138 OAMUserTypeFrontOfficeEmployee
Name: OAMUserTypeFrontOfficeEmployee
Description: This action identifies the user as front office employee.
4.1.4.139 OAMUserTypeInstitutionUserAdministrator
Name: OAMUserTypeInstitutionUserAdministrator
Description: This action identifies the user as delegated user administrator of an institution.
4.1.4.140 OAMUserTypeQueryVariantAdministrator
Name: OAMUserTypeQueryVariantAdministrator
Description: This action identifies the user as a query variant administrator.
To facilitate the integration of the document storage, we recommend that you use the Knowledge
Management component of the SAP Enterprise Portal based on the SAP NetWeaver 7.0 component.
You can also use an already available document management system (for example a file system) that
supports the following features:
Folder Structures: The DMS must be able to support necessary folder structure creation.
Document Versions: The DMS must have the ability to track versions of all stored documents. This
feature allows you to track application or document versions.
User-Specific Authorisations: The DMS must have the ability to restrict system access using
predefined roles to ensure the necessary security.
To enable an already available document management system to be used with online application
submission management, and to support the predefined web service interface, additional development is
required.
The standard delivery of the online application submission management solution contains an
implementation of the above document management interface based on the component SAP NetWeaver
7.0 Enterprise Portal with Knowledge Management & Collaboration. The implementation consists of the
following:
A defined interface for the external systems, provided as a web service on the SAP NetWeaver 7.0
platform. Within the delivered solution, the existing Application Programming Interfaces (APIs) of the
Knowledge Management component are used to implement the functionalities.
Within the online application submission management solution, the functionality of the interface is used by
a web service client proxy.
The above mentioned web service client proxy works through a technical user.
Web Service Setup Knowledge Management
To set up the system, your user must belong to the Administrators group.
Creating Logical Ports for the DMS Web Service
Create the Logical ports as described below:
1. Open the NetWeaver Administrator of SAP NetWeaver CE 7.1 system using the link
http://<HostName>:<Port>/nwa.
2. Log on using your user name and password.
3. Choose SOA Management Application and Scenario Communication Single Service
Administration Consumer Proxies.
4. Select the WSDL Porttype Name from the dropdown list and find Multi*; then choose Go.
5. Select the following table entry:
Proxy definition : MultiClientKMVi_Document
Internal Name:
sap.com/cdev~acs~eusd~bc~app_sap.com~cdev~acs~eusd~bc~dao_EJB/ManageDMSInDAOB
ean/MultiClientKM_Config1Binding_MultiClientKMVi_Document
6. Choose the Configuration tab page.
7. A Logical Port is already present; by default the port points to the server used for generating the
client.
8. Select the default port Config1Port_Document and change the settings to use the available SAP
EP KM 7.0 server.
9. Choose the Edit pushbutton.
10. Select the General tab page.
11. In the field WS Endpoint URL, enter the required URL for the DMS Web Service:
http://<Host Name>:<Port No>/ MultiClientKM/Config1?style=document.
12. Choose the Security tab page.
13. Select the UserID/Password (Basic) radio button and enter the User ID and Password of a user
having admin rights on the KM root folder. For more information, see the section on Main Folders
for Solution Documents for Online Application Submission Management.
14. In case the documents to be uploaded are bigger in size, increase the time out for the Web
Service.
15. Choose the Transport Settings tab page.
16. Increase the value of the field Max wait-time for http response (in milliseconds): 960000.
The value depends on the size of the documents being uploaded. However, this value will
support a maximum document size of 20 Mb.
17. In case you do not want to use the default port then create a new Logical Port.
18. Choose the New pushbutton.
19. Select the Enter Manually radio button.
20. Then choose Next.
21. In the field Logical Port Name, enter any port name, for example, DMS_TECH_USER and check
the Set as default check box (if this needs to be the default port for this web service).
22. In the field WS Endpoint URL, enter the required URL for the DMS Web Service:
http://<Host Name>:<Port No>/MultiClientKM/Config1?style=document
23. Then choose Next.
24. Select HTTP Authentication from the dropdown list Authentication.
25. Select the UserID/ Password (Basic) radio button and enter the User ID and Password of a user
having admin rights on the KM root folder (user who belongs to the OAM _ADMIN_USERS
group). For more information, see section Main Folders for Solution Documents for Online
Application Submission Management.
26. Choose Next. No changes are required.
The following user data are transferred to the DMS UME in the following cases:
As prerequisite the following groups with corresponding unique names have to exist in the DMS UME:
OAM_USER_GROUP_APPLICANT_INDIVIDUAL
Assignable at registration as applicant individual
OAM_USER_GROUP_APPLICANT_ORGANISATION_ADMINISTRATOR
Assignable at registration as applicant organisation employee
OAM_USER_GROUP_APPLICANT_ORGANISATION
Assignable at user creation via delegated user administration for applicant organisations
OAM_USER_GROUP_INSTITUTION
Assignable at user creation in registers
The user group assignment functionality allows customers to have more flexibility in handling the users in
the DMS UME regarding the roles by assigning them accordingly to user groups instead of users directly.
The following user data are transferred to the DMS UME in case of user account change:
For more information about restricting unauthorised access to the document folders and documents, see
SAP Note 599425.
To set up the system, you must belong to the Administrators role group.
After deployment of the implementation of the document management system (in this case the default
implementation for SAP Enterprise Portal Knowledge Management) on the SAP Enterprise Portal 7.0
server, you must make the following configurations.
1. Log on to the SAP Portal using your administrator user name and password.
2. Choose System Administration System Configuration Knowledge Management Content
Management Global Services URL Generator Service (visible in the extended mode).
The system displays a list of entry fields.
3. Choose the Edit pushbutton.
4. Enter the basis URL of the host system in the Host field name according to the following scheme:
http://<your host number>:<your port number>
4.2.1.2.3 Main Folders for Solution Documents for Online Application Submission Management
Create the main folders for the solution documents as follows:
1. Choose Content Administration KM Content Root Documents.
Locate the folder that represents the newly created repository manager, for example OAM. In the
following steps, it is called <OAM_ROOT>.
2. Restrict the access to the root folder by allowing access only to administrative users and roles.
3. Create a new group (for example, OAM _ADMIN_USERS); then manually assign all users you
want to allow administrative access (for example, a front office employee).
4. Create a subfolder using a name of your choice (for example DocumentSafe) in the
<OAM_ROOT> folder.
For each application, the system creates a new folder (using the application ID name) in the
folder created above; and all the application related documents are stored in this folder.
5. Activate KM versioning for the subfolders.
The above is an example of a path in a system based on Microsoft Windows; the path can
change with respect to the operating system.
2. Execute go.bat.
3. Navigate to Server <Instance>/services/Configuration Adapter.
4. Choose Runtime Display Configuration Window; then choose to apps sap.com
cdev~acs~eusd~dms~km~ear appcfg Propertysheet application.global.properties.
5. Maintain values for the following two given properties as described below:
o For the property eusd.dms.km.repository.documentsafe, maintain the same value as the
one maintained for the property eusd.common.dms.repository_name in the SAP
NetWeaver CE 7.1 EhP1 system, where application folders must be created to store the
application documents.
o For the property eusd.dms.km.repository.root, maintain the value for the location where
the root folder for all applications is created. For example, if the value of the property
eusd.dms.km.repository.documentsafe is maintained as /OAM, which is the location of
the application root folder, then the value of the property eusd.dms.km.root must be "/".
1. Open the SAP NetWeaver Administrator of the SAP NetWeaver CE 7.1 EhP1 system using the
link http://<host>:<port>/nwa.
2. Log on using your SAP NetWeaver Administrator user name and password.
3. Choose Configuration Management Infrastructure Java System Properties.
4. Select the activated CE template
5. In the Details section, choose the Applications tab page.
6. In the table, select the application cdev~acs~eusd~common~app
In the view Extended Details, all application parameters for online application submission
management are displayed and can be maintained.
You must maintain at least the following main parameters:
o KM system root repository for application documents:
(eusd.common.dms.repository_name= /documents/OAM/DocumentSafe
For more information, see the section on Main Folders for Solution Documents for
Online Application Submission Management.
o Logical Port to be used for the KM Web Service with Basic (User ID/ Password)
Authentication: eusd.common.dms.techuser.binding_port
(Use the configured logical port name. See Settings for the URL Generator Service.)
For more information about ADS setup and installation of the ReaderRights Credentials, see the SAP
Help Portal at http://help.sap.com SAP NetWeaver SAP NetWeaver CE SAP NetWeaver
Composition Environment 7.1 Including Enhancement Package 1 SAP NetWeaver Composition
Environment 7.1 EHP 1 Library Administrator's Guide Configuration of SAP NetWeaver CE
Configuration for CE Additional Components Configuring Adobe Document Services for CE (SAP
Library - Administrator's Guide).
Download the ADS credentials from SAP Note 736902. To install the credentials, you also require access
to the directory of the system that hosts the Adobe document services.
For more information about relevant steps to configure ADS, see the SAP Help Portal at
http://help.sap.com SAP NetWeaver SAP NetWeaver CE SAP NetWeaver Composition
Environment 7.1 Including Enhancement Package 1 SAP NetWeaver Composition Environment 7.1
EHP 1 Library Administrator's Guide Configuration of SAP NetWeaver CE Configuration for CE
Additional Components Configuring Adobe Document Services for CE (SAP Library - Administrator's
Guide).
dest:
FORM_DEST_ID_REG_DATAMODEL_1/FORMS_ALIAS_REG_DATA_MODEL_1/Address_Template1.x
dp.
You must maintain the destination identifier, for example FORM_DEST_ID_REG_DATAMODEL_1, under
the SAP NetWeaver Administrator, as follows:
1. Open the SAP NetWeaver Administrator using the link http://<host>:<port>/nwa.
2. Log on using the SAP NetWeaver Administrator user name and password.
3. Navigate to Configuration Management Security Destinations.
4. Create a new HTTP destination and enter the root URL of the server where the forms reside.
See the following screenshot:
To configure the access to the folder in which the forms reside, proceed as follows:
1. Open the SAP NetWeaver Administrator using the link http://<host>:<port>/nwa.
2. Log on using the SAP NetWeaver Administrator user name and password.
3. Choose Configuration Management Connectivity Java HTTP Provider Configuration.
To display an Adobe Form in the online application submission management application, you must first
create the template in Adobe LiveCycle Designer (ALD) 8.1 or above. For more information about the
installation of ALD 8.1 and SAP NetWeaver release compatibility, see SAP Note 1176858.
To display and execute an interactive form on the browser in a platform and browser independent
manner, use Zero Client Installation (ZCI) style forms. The templates created on ALD 8.1 will contain the
latest ZCI scripts. However, if you created templates and used with SAP NetWeaver CE 7.1 EhP 1
before, the scripts would be automatically updated from the Adobe Document Service (ADS) server.
If a new template is added to the folder or the existing one is modified and changes are not being
reflected in the application, you can choose the Clear Cache pushbutton highlighted in the screenshot
(see below).
Adobe Reader 8.1 or higher version must be installed on client side for displaying and editing the forms in
the application. For more information about interactive forms, Web Dynpro Java limitations and
recommendations, see SAP note 1090464.
The physical path of the folder which is used to store the XDP and XML templates should be provided in
in the Aliases tab. The name given as alias, for example FORMS_ALIAS_REG_DATA_MODEL_1, shall
be used to specify a destination URL of the template later.
Figure 5: Alias
If you use Adobe forms for message communication, use the following field names during creation of
XML Data Package (XDP) templates.
_APPLICATIONID String
_PARTIALAPPLICATIONID String
If an XML template mapping is being used, the data node under which the fields specified above are
created should be named DataNode.
If HTML Forms are being used, the fields for the application ID and partial application ID must be children
of the root node. The root node name can by any name in that case.
The application ID and the partial application ID are prefilled automatically in the form used for message
creation or filling the application form, if they are created as specified above.
For prefilling other fields of the template, make the necessary configuration in the form register. For more
information about creating forms in the registers, see the application help documentation on SAP Service
Marketplace at http://service.sap.com/swdc Software Downloads Installations and Upgrades
Browse our Download Catalog SAP Development Projects ONLINE APP SUBMISSION MGMT
ONLINE APP SUBMISSION MGMT 2.0 Technical Documentation Anwendungshilfe.
7. You can either modify the existing default logical port or create a new one.
8. To create or edit a logical port, the following information is required:
a. Service end point URL
b. User name and password to access the provider system
The web service endpoint URL can be found in the WSDL document, if the end point has already been
created for the web service. If a web service has no end points, create the end point and generate the
WSDL again. This is displayed in the location property of the port as shown in the following code
excerpt:
<service xmlns="http://schemas.xmlsoap.org/wsdl/" name="service name">
<port name="<endpoint name>" xmlns:bref="http://ip.test/"
binding="bref:DefaultService_">
<address xmlns="http://schemas.xmlsoap.org/wsdl/soap/"
location="<endpoint URL>" />
</port>
</service>
9. If you are editing the existing one, provide details as shown below.
10. For creating a new logical port, choose the New pushbutton.
12. Provide the logical port name and web service end point URL.
13. Choose the Next pushbutton.
The logical ports created above should be specified as comma separated values in the application
property eusd.common.address.validation.logicalPorts. Define the sequence in which the system calls the
web service, for example AddressValidation_Port and AddressValidation1.
If the configuration on your machine is is AMD 64 bit, copy the dll file from
VSA-SDK-1.0/vssap/opt/NTAMD64/vssap.dll to your local drive for ex
C:\vssap\
4. Select one of the following installation types for the virus scan provider, depending on your
system prerequisites:
Virus scan adapter
This procedure describes the normal case in which you are using a local virus scan adapter.
The virus scan adapter is a native dynamic library from a third-party vendor, which can be
loaded directly into the process environment of the J2EE Engine. It allows you to check
memory contents directly for viruses, and thus help in achieving a higher performance.
Virus scan server
This procedure describes the special case, in which the platform or process architecture does
not allow the direct inclusion of a virus scan adapter. This is the case, for example, if the
required operating system for SAP NetWeaver is not compatible with the external anti-virus
product. In this case, use a virus scan server. The virus scan server communicates with the
J2EE Engine using TCP/IP (SAP RFC protocol) and accesses the external anti-virus product
using a virus scan adapter.
4.2.5.1 Configure the Virus Scan Adapter
To configure the virus scan adapter, open the link http://<Server>:<port>/nwa. Then choose Go
To Configuration Management Security Virus Scan Provider.
4.2.5.2 Create a Virus Scan Group
To create the virus scan group, perform the following steps:
1. Switch to the Edit mode by choosing the Edit pushbutton, as shown in the following screenshot.
2. Choose the Groups tab page.
3. Choose Add to create a scanner group.
4. Choose a name of the group and enter it in the in Group Name field and choose Continue.
A new row is added in the Virus Scan Groups group box.
5. Choose the Settings tab page.
In the Description field on the Virus Scan Group Details group box, enter a description for the
group.
6. Select the Default scan group checkbox to set the group as the default virus scan group.
7. Choose Save.
4. Choose Continue.
A new row is added in the Virus Scan Adapters group box.
You can enter the following data in the Virus Scan Adapter Details group box on the Settings tab
page.
Field Entry
Checkbox indicating that this Virus Scan Provider is the default provider.
Default Scan You can select this checkbox only for one Virus Scan Provider. This Virus Scan
Provider Provider is used, if an application requests a virus scanner without specifying a
Virus Scan Provider.
Adapter The name of the virus scan adapter is displayed. The name entered is
Name automatically saved with the prefix VSA_.
Adapter
Description of the current adapter
Description
The input help provides a list of the available groups to which you can assign the
Scan Group
current adapter.
Default =0
Reinitialisation interval of the Virus Scan Adapter in hours. This specifies the
Init. Interval number of hours after which the Virus Scan Adapter is to be reinitialised.
(hours) If you receive new virus definitions at regular intervals which the Virus Scan
Adapter has to load, a reinitialisation is required.
If you enter the value 0, the virus scan adapter is not automatically reinitialised.
Default =20
Max. Specifies the maximum number of scan instances provided by the Virus Scan
Instances Server, with which you define how many of these instances are provided. If this
number is exceeded, the virus scanner is no longer available for scan requests.
VSA Library Enter the path where you have saved vssap.dll on your local hard disk, for
Path example C:\vssap\vssap.dll
5. To activate a trace output for the Virus Scan Provider, select the desired checkbox on the Trace
tab page.
6. Save your configuration.
7. Select the Virus Scan Adapter.
8. Choose the Activate pushbutton to activate the virus scan adapter.
10. Select the profile webdynpro_fileupload from the available profiles and edit it.
11. Select the reference profile on the Settings tab page.
The information provided in this document is based on the adapter provided by SAP for testing purposes.
This adapter will only test the eicar test file. To implement the real time virus scanning, ask your security
provider for an appropriate adapter.
Further configuration might be necessary based on the specific adapter. For more information, contact
your security provider.
After implementing the above mentioned interface, maintain the configuration. Choose SAP NetWeaver
Administrator Configuration Management Infrastructure Java System Properties and then choose
the Applications Tab in the Details screen in order to activate the implementation (see below).
The ISO language code, which is formed by using two lowercase letters, is defined by ISO-639.
The type for Multipurpose Internet Mail Extensions (MIME) of the e-mails is determined by the following
application property: eusd.common.emailNotification.mimeType
Examples of possible e-mail template file names are:
RegistrationConfirmation_de.txt for German e-mail notifications sent after successful
completion of the registration
MessageNotification_en.txt for English e-mail notifications informing about received
messages in the inbox
The contents of the e-mail template file must be stored using the UTF-8 character encoding. The online
application submission management treats the e-mail sections as follows:
First line of the e-mail template text file as the e-mail subject
Second and subsequent lines as the e-mail body
In addition, the customisable e-mail notification templates support dynamic content defined by using place
holders. The following self-explanatory place holders are available: {appellation}, {nameaffix}, {firstname},
{lastname}, {userID}, {password}, {url}, {applicationID}, {partialApplicationID},
{partialApplicationDescription} and {daysToDueDate}.
The following place holders are supported in certain context:
{ObjectType}
Type of the object considered for status change
{ObjectState}
Table for status values to be used in the e-mail templates for status actions:
The message notification e-mail template supports embedded links to the message inbox by
means of an {url} place holder.
For more informaiton about configuration steps required to maintain the value for the {url}
placeholder, see section
The e-mail notification template used for status update supports embedded links to the
application by means of the {url} place holder.
For more information about configuration steps required to maintain the value for the {url}
placeholder, see section Application Properties.
The following table summarises the application properties that must be properly configured for the
seamless usage of e-mail notifications in the online application submission management system:
In addition to the application properties described above, the customisable e-mail notification functionality
depends on various other mail application property values. It is mandatory to maintain them. For more
information, see section Application Properties.
4. A new line is added to the table. To make it visible, scroll down the table.
5. Select the Object (application, partial application or document) for which the action should be
valid upon status change.
6. Select the desired Action that should be invoked upon a specific status change.
7. Select the statuses for the status change:
o Select a From Status.
o Select a To Status.
8. Choose the Save pushbutton.
For Example:
eusd.reg.customizing.isDirectCommunicationwithAuthorityAllowed = false.
8. Save your settings.
7. In the Extended Details area all available properties are displayed with their default properties on
the Properties tab page.
8. To change a property value, select the table line for the property which has to be changed.
9. Choose the Modify pushbutton. A popup appears where you can enter the new value.
10. Choose the Set pushbutton to finish.
This property influences the applicants application process. You can choose one of the following
values:
o HIDE means that step 3 of the road map, the selection of available documents, will never be
shown
o DEPENDENT means that step 3 of the road map, the selection of available documents, will
only be shown, if the application contains partial applications that have a predecessor/
successor relationship. Then this step is only displayed for those documents that are the
output of a partial application and a necessary input for another partial application
o ALWAYS means that step 3 of the road map, the selection of available documents, is always
shown. It displays all output documents of all partial applications.
eusd.principal.management.registration.closeWindowSupport
This property specifies the behaviour of the pushbutton to close the registration window. This
pushbutton enables the user to cancel the registration process for cases where the self-registration
runs in an own (separate) browser window.
http://localhost:50000/public.
http://localhost:50000/public/oam_register_transport_schema.xsd.
Example text:
abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_-+.@,
eusd.common.ume.userIDMaxLength
This property determines the supported maximum length of the user ID. Already existing user IDs
are not affected, if the property value changes.
eusd.common.ume.spmlService
This property stores the path to access the Service Provisioning Markup Language (SPML)
service. The path specified in this property is concatenated with the server URL specified in the
property eusd.common.dms.url to create and modify users in the DMS system.
This property stores the user ID of the administrator user of the DMS system.
eusd.common.ume.dmsPassword
This property stores the password of the administrator user of the DMS system.
Example text: en
This property stores the logical port names (as comma separated list) configured for the address
validation consumer proxy. These port names are looped over in sequence to determine web
service proxies which are called to validate addresses.
eusd.common.emailNotification.newPassword
If the value is true, an e-mail containing a new password is sent to the user. Otherwise, no e-mail
is sent.
eusd.common.mail.smtp.host
This property specifies the SMTP mail host server name.
eusd.common.mail.smtp.user
This property specifies the SMTP mail user ID.
eusd.common.mail.smtp.password
This property specifies the password for the e-mail sender account used for sending e-mails.
eusd.common.mail.smtp.port
This property specifies the SMTP port.
Example text: 25
eusd.common.mail.from.system
E-mail ID used for sending e-mails across the system, that is all application parties in the system
will receive an e-mail from this e-mail address upon a change , for example a status change, new
message or user creation.
Syntax:
sap.com/<DCName>/<ApplicationName>
sap.com/<DCName>/<ApplicationName>?<parameter1>=<value1>&<parameter2>=<
value2>
Example:
sap.com/cdev~acs~eusd~ui~common~owl/OWLApp?objectType=MessageAE&searchA
reaMode=Disabled
If the portal is used (eusd.ui.link.isportalused = true) and the link is not a quick link
(eusd.ui.link.portal.isquicklink = false) the path to the portal page has to be entered as follows:
Syntax:
ROLES://portal_content/<Path to Portal Page>/<Page Name>
Example:
ROLES://portal_content/EU-
DLR_Refactoring/OAM_PORTAL_APPLICANT_INDIVIDUAL/EU-
DLR_Refactoring_WS/EU-DLR_Cockpit_WS/INBOX_AE
If the portal is used (eusd.ui.link.isportalused = true) and the link is a quick link
(eusd.ui.link.portal.isquicklink = true) just the quick link name has to be entered as follows:
Example: InboxAE
eusd.ui.link.inboxae
This property defines the access URL of the message inbox UI of the application enterer.
eusd.ui.link.inboxfo
This property defines the access URL of the message inbox UI of the front office employee.
eusd.ui.link. inboxauth
This property defines the access URL of the message inbox UI of the authority employee.
eusd.ui.link.applicationae
This property defines the access URL of the online application UI of the application enterer.
eusd.ui.link. applicationfo
This property defines the access URL of the online application maintenance UI of the front office
employee.
eusd.ui.link. partialappauth
This property defines the access URL of the partial application maintenance UI of the authority
employee.
Kind regards,
Your System Administrator
------
o daysToDueDate
The number of dates until the partial application ends
o authoritiesMailTemplate
E-mail template used for authority due date warning
o frontOfficeMailTemplate
E-mail template used for Front Office due date warning
o partialApplicationStatusValues
A comma separated list of partial application statuses. Only partial applications with a
status included in this list will be considered.
The searches on the question group user interfaces have been enhanced so that it is possible to show
only objects of a particular type (category) and also belonging to a particular form id.
The following screenshot shows how to select a category using a drop down while creating or modifying a
Question Group:
The moment a new form of Form Type HTML Form is created a new tab Question Group Assignment
becomes visible in the Form Register view because it has to be defined which question groups shall be
shown for the HTML form.
The screenshot below displays the new tab added to the Form Register:
The screenshot displays how to assign a new Question Group to an HTML Form:
If you are using the OASM 2.0 software also in a release prior to SP5, make sure to run the migration job
as described in note 1589441 because the data model has changed slightly.
4.4.2.3 Additional settings
Please refer to section 4.3.4.2 User Interface Properties in order to see how to configure application
property eusd.htmlforms.download.preview.directly.
When creating Questions of category Hint just provide the values as mentioned in below. Maintain the
Hint Text in the Description & Help Text section and this will then be displayed in the Questionaire or
Form Questionnaire.
Radio Button:
Radio-buttons can always be selected for questions having selection lists. In this case, all selection
values will be shown in one radio button group and the user can select exactly one of these values.
Questions of type radiobutton can be used in the questionnaire and in HTML forms.
When creating Questions of category Radio Button just provide the values as mentioned in the figure
below. The Selection List element gets enabled when the category Radio Button is selected so that the
required Selection list can be selected. In the length field provide the no which defines the no of values or
radio buttons to be displayed in a single row. If no value is defiend then all will be displayed in a single
row. The screenshot displays the process of creating a Question of type Radio Button:
If you are using the OASM 2.0 software also in a release prior to SP5, make sure to run the migration job
as described in note 1589441 because the data model has changed slightly.
The group does not exist by default. You must create the special group by specifying the following
attribute details:
Name: /SYSTEM/PRINCIPAL
Sort Index: -1
Category: Principal
The following is an example of how you can categorise the Country field of the applicant individual as
mandatory:
1. Create a new question group /SYSTEM/PRINCIPAL, if it does not already exist.
2. Create a new question for the above question group.
3. Enter the question ID /APPLICANT/INDIVIDUAL/COUNTRY into the question field.
4. Specify the origin as Principal.
5. Provide a sort index.
6. Provide any category and length information.
7. Select the Mandatory checkbox.
The settings described above, result in Country as a mandatory field. The application enterer must enter
the country of the applicant before proceeding.
Importing an object does not only mean to create it. It is also possible to update an existing object and to
delete an object. This is controlled by the operation attribute of type TransportObject. As a consequence,
consider the following aspects with regard to the order of the TransportObjects:
For objects that depend on each other (question depends on the question group, entity depends
on entity category etc.) it is important that the parent object already exists when the dependent
object is created. If a question group and a question are created, the question group needs to be
listed before the question in the transport file.
If an object that has children should be deleted, the transport file needs to list the deletion of all
child objects first. If an entity category having three child entities (World, Europe, Germany)
should be deleted, the transport file needs the delete commands in the following order: Entities
Germany, Europe, World and only then the entity category can be listed.
There is no definite order for the sequence of creation first, then deletion or updates.
For more information, see SAP Note 1527542, which contains a list of all dependencies.
Generally, each import has a unique name, which is provided by the user and which is used in order to
refer to it in the web services (for example for reading the status).
4.5.3.3.2 Web Service
The following web service can be used to import files:
Interface
TransportInService
Name
Service Name TransportInService
Namespace http://sap.com/cdev/acs/eusd/bl/srv/reg/transport/beans/
WSDL http://<host>:<port>/TransportInService/TransportInService?wsdl
The advantage of export groups is to export different delta exports. For example a register data
maintenance system can have two export groups. One group can be used to export the data into a test
system and one for exporting the data into the production system.
Whenever a new export is triggered in a group, all data changes are exported that were done after the
time of the last export that was marked as successfully imported.
In general, each export has a unique name, which needs to be provided by the user. This name is used
for instance to reference an export in a web service call.
4.5.3.4.2 Web Service
The following web service can be used to import files:
Interface
TransportInService
Name
Service Name TransportInService
Namespace http://sap.com/cdev/acs/eusd/bl/srv/reg/transport/beans/
WSDL http://<host>:<port>/TransportInService/TransportInService?wsdl
2012 SAP AG Title: Online Application Submission Management Page 100 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
http://localhost:50000/webdynpro/dispatcher/sap.com/cdev~acs~eusd~ui~reg~admi
n/RegisterCheckApp.
In order to setup the required roles for executing these checks, see section SAP User Management
Engine (UME).
2012 SAP AG Title: Online Application Submission Management Page 101 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
4.6 Security
In order to prevent the user from seeing any stack traces or dumps on the user interface, all logging and
tracing has to be disabled in the production environment. Otherwise, the user might see technical details
that he or she is not supposed to see such as code lines, SQL queries etc.
To switch off the logging, proceed as follows:
1. Open the SAP NetWeaver Administrator using the link http://<HostName>:<Port>/nwa.
2. Choose Problem Management Logs and Traces Log Viewer.
3. Choose Related Links Log Configuration.
4. Open the following nodes :
a. Root Category
b. Applications
c. OAM
5. Select the line OAM.
6. Select Error in the the Severity column.
7. Choose Copy To Sub-Tree.
8. Choose the Save Configuration pushbutton.
For more information about general security, see SAP Help Portal at http://help.sap.com SAP
NetWeaver SAP NetWeaver CE SAP NetWeaver Composition Environment 7.1 Including
Enhancement Package 1 Knowledge Center Security Guide.
2012 SAP AG Title: Online Application Submission Management Page 102 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
http://<host>:<port>/webdynpro/dispatcher/sap.com/cdev~acs~eusd~ui~principalmgmt/SelfRegistration
http://<host>:<port>/webdynpro/dispatcher/sap.com/cdev~acs~eusd~ui~am~root/PartialApplicationDetail
s?partialApplicationID=10026
Possible values for the Register Management & Customizing Area are:
2012 SAP AG Title: Online Application Submission Management Page 103 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
2012 SAP AG Title: Online Application Submission Management Page 104 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
Self-Registration:
With this application a new applicant can register a new user.
Development Component Name: cdev~acs~eusd~ui~principalmgmt
Application Name: SelfRegistration
Parameter: None
Authentication needed: No
Password Reset
With this application an applicant can reset the password when he forgot his password.
Development Component Name: cdev~acs~eusd~ui~principalmgmt
Application Name: PasswordReset
Parameter: None
Authentication needed: No
User ID Request
With this application an applicant can request the user ID when he forgot his use ID.
Development Component Name: cdev~acs~eusd~ui~principalmgmt
Application Name: UserIDRequest
Parameter: None
Authentication needed: No
2012 SAP AG Title: Online Application Submission Management Page 105 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
Status Customizing:
Within this application the status actions and status changes can be maintained.
Development Component Name: cdev~acs~eusd~ui~customization
Application Name: StatusCustomizing
Parameter: None
Authentication needed: Yes
2012 SAP AG Title: Online Application Submission Management Page 106 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
This parameter can be used if application creation should be started in simulation mode
applicantKey=<GUID of Applicant>
This parameter is only used internally if Front Office Employee creates an application for a certain
applicant
Authentication needed: Yes
Inbox
Within this application all received and sent messages are displayed.
This is an Object Worklist UI with the MessageAE object Type.
The advanced search area should be disabled (searchAreaMode=Disabled).
My Applications
Within this application all created applications are shown.
This is an Object Worklist UI with the ApplicationOverviewForApplican object type.
The advanced search area should be disabled (searchAreaMode=Disabled).
The search queries should be hidden (dontDisplayQueryVariants=X).
Front Office Employee:
Inbox
Within this application all received and sent messages are displayed.
This is an Object Worklist UI with the MessageFO object type.
2012 SAP AG Title: Online Application Submission Management Page 107 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
My Work
This application shows all applications, the front office employee has to work on.
This is an Object Worklist UI with the ApplicationOverviewForFrontOffice object type.
Authority Employee:
Inbox
Within this application all received and sent messages are displayed.
This is an Object Worklist UI with the MessageAuthority object type.
My Work
This application shows all partial applications, an authority employee has to work on.
This is an Object Worklist UI with the ApplicationOverviewForAuthority object type.
2012 SAP AG Title: Online Application Submission Management Page 108 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
5. Within the Web Module Details area choose the on the Web Dynpro Properties tab.
6. Select the following entry:
Components/com.sap.cdev.acs.eusd.ui.common.navigationcomp.NavigationCom
pNavigation
7. Within the Full Details area you get a list of properties which must be maintained for using the
online application submission management application in the SAP Enterprise Portal.
2012 SAP AG Title: Online Application Submission Management Page 109 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
Navigation Properties:
a. OpenObjectDetailsExternal
This property determines, if the object details that is the Object Instance Floorplan (OIF)
application is always opened in a complete new window or inplace. For more information
about the OIF application, see Common Web Dynpro Applications.
Values: true or false
b. ObjectDetails
Portal link to the OIF application
c. UserRegistration
Portal link to the self-registration application
d. UserIDRequest
Portal link to the Request User ID application
e. PasswordReset
Portal link to Password Reset application
f. ApplicationCreationAE
Portal link to the Online Application Creation application for the applicant
g. ApplicationCreationFO
Portal link to the Online Application Creation application for the front office employee
h. OnlineApplicationMaintenanceFO
Portal link to the Application Maintenance application for the front office employee
i. OnlinePartialApplicationMaintenanceAuth
Portal link to the Partial Application Maintenance application for the authority employee
j. ApplicationOverviewAE
Portal link to the Application Overview application for the application enterer (displayed as My
Applications)
k. ApplicationOverviewFO
Portal link to the Application Overview application for the front office employee (displayed as
My Work)
l. PartialApplicationOverviewAuth
Portal link to the Partial Application Overview application for the authority employee
(displayed as My Work)
m. InboxAE
Portal link to the Inbox application for the application enterer
n. InboxFO
Portal link to the Inbox application for the front office employee
o. InboxAuth
Portal link to the Inbox application for the authority employee
2012 SAP AG Title: Online Application Submission Management Page 110 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012
Configuration Guide
Confidential
2012 SAP AG Title: Online Application Submission Management Page 111 of 111
Dietmar-Hopp-Allee 16 Version: 1.4
D-69190 Walldorf Date: July 09, 2012