SAP Knowledge Base Article - Preview

2668472 - IDM removes privileges in incorrect order


When deleting a Business Role from a user which contains an Account Privilege. Sometimes IDM will remove the Account Privilege first instead of the other assignments leading to the following error in the job log:

"User does not exist"

The error is technically correct since the Account Privilege is deleted IDM does not know that the user exists in the backend system so therefore throws this error.



  • SAP Identity Management 7.2 Provisioning Framework 2
  • SAP Identity Management 8.0


SAP Identity Management 8.0 ; SAP NetWeaver Identity Management 7.2


KBA , BC-IAM-IDM , Identity Management , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.