Start of Content Area

Function documentation SAP NetWeaver Administrator Security Roles  Locate the document in its SAP Library structure

Use

For authorization, the SAP NetWeaver Administrator uses the User Management Engine (UME) and the Java Management Extension™ (JMX) security features. The following security roles are defined that are distinguished by the plug-ins from the authorization point of view:

·        SAP_JAVA_NWADMIN_LOCAL

·        SAP_JAVA_NWADMIN_LOCAL_READONLY

·        SAP_JAVA_NWADMIN_CENTRAL

·        SAP_JAVA_NWADMIN_CENTRAL_READONLY

The roles include the permissions that enable/disable certain elements in the UI as well as permissions to access the data in the managed system, that is, they can be used in the central system and the managed system as well.

The local roles enable the management of the local system where the SAP NetWeaver Administrator runs. The central roles enable the management of the entire landscape that is available from SLD. The read-only roles do not allow any changes in the managed system such as start/stop, changing configuration, whereas the other roles allow full control.

The mapping between users and roles is done using the UME that is available as a plug-in named User & Access inside the NWA. For more information about how you can configure the above security roles, see Configuring User Administration.

 

 

End of Content Area