Start of Content Area

Procedure documentation Mapping Security Roles to Users or Groups Locate the document in its SAP Library structure

Use

A security role is an abstract logical group of users that protect access to an application, service, or other resource. These roles are defined by the administrator who assembles the application. Once the security role has been defined, the administrator assigns the security role to users or groups in security role mappings. A security role assigned to a user only applies to the user; a role assigned to a group applies to all of the group’s members.

Example

The security role administrators is assigned to the group Administrators. Therefore, any applications or resources that are protected with the security role administrators are only accessible by members of the group Administrators.

Prerequisites

·        You have logged on to the J2EE Engine using the Visual Administrator.

·        The Security Provider is running on the J2EE Engine.

·        Your user has administrator rights.

·        The security role that protects the application or service has been defined.

Procedure

...

       1.      Select the Security Provider from the list of services.

       2.      Choose the Runtime  ® Policy Configurations tab page.

       3.      Select the application (or service) from the Components section.

       4.      Choose the Security Roles tab page.

       5.      Choose the User Mappings tab page.

The security roles that protect this application appear in the Security Roles section.

       6.      In the Security Roles section, select the security role that you want to assign to users or groups.

The security role mapping that applies to this role appears in the Users and Groups sections. You can either search or choose Tree to display the J2EE Engine’s users and groups.

       7.      Select the user or group from the user tree and choose Add.

The user or group appears in the mapping sections and the security role is assigned to the user or group accordingly.

Note

To remove a mapping, select the user or group from the Users or Groups sections and choose Remove.

Result

The user or group members can access the application, service or resource that is protected with this role.

See also:

Structure linkUsers and Authorizations in the Administration Manual

 

 

 

End of Content Area