UiPath Documentation
test-manager
latest
false

Test Manager 用户指南

上次更新日期 2026年5月7日

步骤 2:配置 SAP 系统

要在 UiPath Test Manager 与 SAP 系统之间建立通信,请通过创建通信用户并激活所需服务来配置 SAP 系统。

对于网页服务基本身份验证和 RFC

  1. 在 SAP 系统中创建通信用户以与 UiPath Test Manager 集成。根据组织的内部策略分配必要的角色和授权。
    • 集成通过 RFC 或网页服务 (HTTPS) 使用标准接口。
    • UiPath 不需要特定授权,RFC 连接除外。
    备注:

    如果使用 RFC 连接,请将S_RFCACL授权对象分配给通信用户。

  2. 如果您计划使用 Web 服务 (HTTPS) 连接进行集成,请激活与 UiPath 建立连接所需的必要 SAP 服务。
    备注:

    这些服务用于只读操作。UiPath 仅使用HTTP GET方法从 SAP 系统检索信息。

下表列出了使用热图和变更影响分析时需激活的必要 SAP 服务:

  • 热图服务
    • /sap/opu/odata/UIPATH/HEATMAP_AGGREGATES_SRV/AllAggregatesSet
    • /sap/opu/odata/UIPATH/TRANSPORT_INFO_SRV/TransportsStatusSet
    • /sap/opu/odata/UIPATH/TRANSPORT_LOOKBACK_SRV/TransportLookbackSet
    • /sap/opu/odata/UIPATH/S4_CHECK_SRV/S4Info
    • /sap/opu/odata/UIPATH/HEATMAP_OVERVIEW_SRV/FinalHeatmapSet
  • 变更影响分析服务
    • /sap/opu/odata/UIPATH/GET_TRANSPORT_EXES_SRV/TransportExesSet
    • /sap/opu/odata/UIPATH/TRANSPORT_STATUS_SRV/TransportStatusSet
    • /sap/opu/odata/UIPATH/EXE_ANALYSIS_SRV/GetTransportAnalysis
    • /sap/opu/odata/UIPATH/GET_TRANSPORT_ALLITEMS_SRV/TransportAnalysisSet
    • /sap/opu/odata/UIPATH/GET_TRANSPORT_ALLITEMS_SRV/DetailsSet要激活以前的服务,请执行以下子步骤:
  1. 导航到 SAP 系统用户界面。
  2. 执行SICF事务。

“调用 ICF 层次结构的筛选器” 部分中,确保在“层次结构类型”字段中输入SERVICE

图 1.SAP 中的“调用 ICF 层次结构筛选器”屏幕

SAP 中的“调用 ICF 层次结构的筛选器”屏幕 3. Select Execute to finish the execution of the SCIF transaction. A selection screen appears, displaying various services available in your SAP system.

图 2. 选择屏幕,其中显示了 SAP 中所有可用的服务

选择画面,其中显示 SAP 中所有可用的服务 4. Under Virtual Hosts/Services, expand the following menu path: default_host > sap > opu > odata > uipath. If this is your first activation, the UiPath services are likely greyed out, indicating they are installed but not active. Upon activation, they will display in bold. 5. Right-click each UiPath service entry under uipath, and select Activate Service.

图 3. 激活 UiPath 服务

激活 UiPath 服务 6. In the Activation of ICF services pop-up window, select Yes to confirm the service activation. Once a service is activated, it will display in bold.

对于网页服务 OAuth 身份验证

基本原理

The transport provided includes all transportable objects (OAuth profiles, customizing entries) required for UiPath services. However, SAP does not allow full OAuth configuration to be transported for security and system-specific reasons. For this reason, after importing the transport provided, you must complete the OAuth configuration manually in your environment.

Context

The full OAuth configuration cannot be transported to protect sensitive data and maintain system integrity.

  • Client Secrets are system-specific - Secrets cannot be exported or imported for security compliance.
  • Authorization Server URLs differ per environment - Each landscape (DEV, QA, PROD) uses unique endpoints.
  • Certificates and STRUST entries are local - SSL/TLS trust must be configured manually in each system.
  • User assignments and roles are client-dependent - Technical users and authorizations vary across systems.
  • Sensitive data protection - OAuth credentials and tokens cannot be transported to prevent exposure.

先决条件

Each environment (DEV, QA, PROD) requires separate manual setup. Ensure you perform the following prerequisites.

  1. Keep the documentation of endpoints and credentials secure. You will need to provide the Authorization Endpoint and the Token Endpoint in step 4.5.
  2. Ensure the Authorization Endpoint check is running.
    1. 转到Transaction SICF并执行它。
    2. Navigate to :/sap/bc/sec/oauth2. Check that the following node is active: authorize (Authorization Endpoint). If the node is inactive, right-click it, and from the context menu, select Activate Service.

Figure 4. Authorization Endpoint Check

授权端点检查 3. Ensure the Token Endpoint check is running.

  1. 转到Transaction SICF
  2. Navigate to :/sap/bc/sec/oauth2. Check that the following node is active: token (Token Endpoint). If the node is inactive, right-click it, and from the context menu, select Activate Service.
  3. Observe the naming convention for the Authorization Endpoint. Here is an example of the Authorization Endpoint: https://vhclashci.dummy.nodomain:44301/sap/bc/sec/oauth2/authorization?sap-client=100
    • 第 1 部分是域名 - https://vhclashci.dummy.nodomain
    • 第 2 部分是端口号 - 44301
    • Part 3 is the Static string - /sap/bc/sec/oauth2/authorization
    • Part 4 is the SAP Client - 100To build the authorization string, do the following:
    1. 第 1 部分 - 运行transaction RZ11并搜索条目“icm/host_name_full”– 该值将是您在端点中的条目的域名。
    2. 第 2 部分 – 运行transaction SMICM并选择菜单路径“转到”->“服务”,找到 HTTPS 协议并使用与 HTTPS 关联的数字。
    3. 第 3 部分 – 对值 '/sap/bc/sec/oauth2/authorization' 进行硬编码。
    4. 第 4 部分 – 输入您当前正在使用的 SAP 客户端。
    5. 确保根据需要使用分号和其他标点符号。
  4. Observe the naming convention for the Token Endpoint.
  5. Here is an example of the Authorization Endpoint: https://vhclashci.dummy.nodomain:44301/sap/bc/sec/oauth2/token?sap-client=100
    • 第 1 部分是域名 - https://vhclashci.dummy.nodomain
    • 第 2 部分是端口号 - 44301
    • Part 3 is the Static string - /sap/bc/sec/oauth2/token
    • Part 4 is the SAP Client - 100To build the authorization string, do the following:
    1. 第 1 部分 - 运行transaction RZ11并搜索条目“icm/host_name_full”– 该值将是您在端点中的条目的域名。
    2. 第 2 部分 – 运行transaction SMICM并选择菜单路径“转到”->“服务”,找到 HTTPS 协议并使用与 HTTPS 关联的数字。
    3. 第 3 部分 – 对值 '/sap/bc/sec/oauth2/token' 进行硬编码。
    4. 第 4 部分 – 输入您当前正在使用的 SAP 客户端。
    5. 确保根据需要使用分号和其他标点符号。

步骤

  1. Verify your transport import details and availability.
    1. Check that OAuth profiles are available. Use transaction SE80 to ensure OAuth 2.0 Client Profiles are available.
    2. From the dropdown menu, select Package.
    3. 在文本框中输入 "/UIPATH/Heatmap",然后按 Enter。“OAuth 2.0 客户端配置文件” 应显示在下拉菜单中。如果配置文件不可用,请联系 UiPath 支持团队。

Figure 5. Verify transport import

验证传输导入 2. Configure Client ID/User Id/System User and Client Secret.

  1. 对于transaction SUO1 ,请联系您的安全团队以创建用户。
  2. 根据公司的命名标准创建有权访问/UIPATH/服务的系统用户。
  3. 根据公司命名标准生成密码 – 这将在稍后成为 OAuth2 配置中的“密码”。
  4. Configure SSL/TLS Trust. For transaction STRUST, contact your Basis Team for certificate verification.
  5. Create the OAuth 2.0 configuration.
    1. For transaction OA2C_CONFIG, select Create and, in the popup, select the transported profile you want use. (You will eventually use every listed profile.)
    2. 输入“配置文件名称”。
    3. 输入“客户端名称”的“用户名”。
    4. 单击“确定”。
    5. 配置字段并保存配置:
      1. Client Secret: Select the corresponding scope (server) for each client and hit Enter.
      2. Authorization Endpoint URL (check the Prerequisites section of this topic).
      3. Token Endpoint URL (check the Prerequisites section of this topic).
      4. Client Authentication: Select the Basic radio button.
      5. Selected Grant Type: Select the Client Credentials radio button.
      6. Refresh Token Validity: Enter -1 in textbox.
      7. Clock Skew Tolerance: Enter 5 in textbox.
    6. Check the Summary screen, which should look like the screenshots below.

Figure 6. OAuth summary page 1

OAuth 摘要第页 1

Figure 7. OAuth summary page 2

OAuth 摘要第 2 页 5. Configure transaction SOAUTH2 OAuth2 Clients.

  1. For transaction SOAUTH2, select Create and in the first screen, enter the following information:
    • **Client Type:**Confidential
    • **Client Id:**Enter the same Username as above (step 4.3
      • 4.c)
    • **Description:**Enter the service name or profile name.
    • **Token Lifetime:**3600 Seconds
  2. Select Next and, in the second screen, enter the following information:
    • Client User Id and Password - Checked
    • SSL Certificate - Checked
    • Check Parameter: “Client Id” – Checked
  3. Select Next and, in the third screen, enter the following information:
    • Grant Type Client Credentials Active – Checked
  4. Select Next and, in the fourth screen, enter the following information:
    • Under OAuth2 Scope Id, find the first empty line and click on the drop-down list at the end of the blank row.
    • 选择与 UiPath 关联的每个作用域,直到选择完所有作用域。
      • /UIPATH/ANALYZED_YES_OR_NO_SRV_0001
      • /UIPATH/EXE_ANALYSIS_SRV_0001
      • /UIPATH/GET_TRANSPORT_ALLITEMS_SRV_0001
      • /UIPATH/GET_TRANSPORT_DETAILS_SRV_0001
      • /UIPATH/GET_TRANSPORT_EXES_SRV_0001
      • /UIPATH/HEATMAP_AGGREGATES_SRV_0001
      • /UIPATH/HEATMAP_OVERVIEW_SRV_0001
      • /UIPATH/TRANSPORT_INFO_SRV_0001
      • /UIPATH/TRANSPORT_LOOKBACK_SRV_0001
      • /UIPATH/TRANSPORT_STATUS_SRV_0001
      • /UIPATH/ZS4_CHECK_SRV_0001
  5. Select Summary. The screen should look like the example below.

Figure 8. OAuth2 Client summary page

OAuth2 客户端摘要页面 6. Test the connection for Non-RISE compliant systems.

  1. 对于不符合 Rise 要求的 S4 系统,请运行transaction SE38并输入程序名称“/UIPATH/TEST_OAuth2_SERVICE”。
  2. Hit Execute. A selection/parameter screen appears.
  3. 更新以下参数以匹配您的系统/用户/密码。
    • Port – HTTPS Port
    • Client – The current Client should default into a variable.
    • Secret – Enter the password for Client_ID/User.
    • System Name – The current System Name should default into a variable.
    • Client ID – Enter the User ID for UiPath Services.
  4. Hit Execute. The results appear on the next screen. Look for Service Status to be equal to ‘200’. Any other return code indicates an error.

Figure 9. Test Non-RISE compliant connection

测试非 Rise 合规连接 7. Test the connection for RISE compliant systems.

  1. 对于符合 Rise 要求的 S4 系统,运行transaction SE38并输入程序名称“/UIPATH/TEST_OAuth2_SRV_RISE”。
  2. Hit Execute. A selection/parameter screen appears.
  3. 更新以下参数以匹配您的系统/用户/密码。
    • Port – HTTPS Port
    • Client – The current Client should default into a variable.
    • Secret – Enter the password for Client_ID/User.
    • System Name – The current System Name should default into a variable.
    • Client ID – Enter the User ID for UiPath Services.
  4. Hit Execute. The results appear on the next screen. Look for Service Status to be equal to ‘200’. Any other return code indicates an error.
  • 对于网页服务基本身份验证和 RFC
  • 对于网页服务 OAuth 身份验证

此页面有帮助吗?

连接

需要帮助? 支持

想要了解详细内容? UiPath Academy

有问题? UiPath 论坛

保持更新