Tenant administrators on SAP Cloud Identity Services can manage user accounts via the administration console and via APIs.
The user management enables you to create, modify, and delete users and their attributes, and manage the user accounts in the user store of Identity Authentication.
1. Create user
1.1 Create users via the Add option in the administration console
As a tenant administrator, you can create a new user in the administration console for SAP Cloud Identity Services.
1.2 Create users via a CSV file import in the administration console
We can also do mass import of business / technical users. As a tenant administrator, you can create new users or update existing ones with all user data, including attributes from a custom schema, via a CSV file upload. With the CSV file, you can import up to 25000 users to create new users or to update existing users.
The CSV file must contain at least the following three columns:
- userName or loginName
- emails[0].value or mail
- name.familyName or lastName
Below is the sample of CSV file.
1.3 Create users programmatically via API
Below APIs can be used to create, update and delete users.
- Identity Directory Service [ https://api.sap.com/api/IdDS_SCIM/overview]
- Identity Authentication Service [https://api.sap.com/api/IAS_SCIM/overview]
Tenant administrator credentials can be used to authenticate with these APIs.
2. Search users
2.1 Search users in the administration console
Users can be searched on the admin console with their attributes such as FirstName, Lastname, email id, SCIM ID.
2.2 Search users via API
3. List and edit user details
The following options are offered for listing and editing user details
- List a specific user and edit the information about that user via the administration console
- List and update user details via API
- Update user details via a CSV file import
- Manage user password via the administration console
4. Delete users
Deleting users is offered via the administration console, but can also be executed programmatically via API.
5. Manage the user group assignment
Tenant administrators can create groups. A group is a collection of users. Groups serve to create sets of users who have something in common.
Groups can be assigned and unassigned to users
- via the administration console for SAP Cloud Identity Services.