Show TOC Anfang des Inhaltsbereichs

Vorgehensweisen Creating Users  Dokument im Navigationsbaum lokalisieren

There are two types of users that are relevant for the set-up of data archiving:

      Technical communication user: Used in the HTTP connection between the application system(s) and XML DAS

      Individual administration user: Used to login to XML DAS Administration

An arbitrary number of users is possible. Both types of users must be known to the user management of the AS Java hosting XML DAS. For the technical communications users to be valid, they must be assigned to the security role XMLDASSecurityRole. For the administration users to be valid they must be assigned to the UME roles SAP_ARCH_XMLDAS_VIEW (for read-only authorization) or SAP_ARCH_SUPERADMIN (for read/write/execute authorization).

Procedure

       1.      Create a user or as many users as you like using the appropriate user management function. For an add-in installation you can either use ABAP transaction SU01 (for more information see Creating and Maintaining User Master Records) or the User Management Engine (UME) (for more information see Administration of Users, Groups, and Roles).

For a stand-alone installation use the UME (for more information see Administration of Users, Groups, and Roles). If you are creating an administration user, the security policy setting should be Default. If you are creating a technical communications user the security policy setting should be Technical User.

       2.      Assign the appropriate roles to each of the users you have created:

Technical Communication User:

Assign each communication user to the security role XMLDASSecurityRole:

                            a.      Start the Visual Administrator.

                            b.      Under Cluster, select <your server> ® Services  ® Security Provider.

                            c.      In the Policy Configurations tab and under Components select sap.com/tc~TechSrv~XML_DAS*DataArchivingService.

                            d.      Go to the Security Roles tab and select XMLDASSecurityRole (make sure the role type Security Role is selected).

                            e.      Under Mappings use the Add function for Users to search for the roles and assign your user to that role.

Administration user:

...

Assign each administration user role to either SAP_ARCH_XMLDAS_VIEW (for read-only authorization) or SAP_ARCH_SUPERADMIN (for read/write/execute authorization):

                            a.      Call the User Management Engine (UME) and go to Identity Management.

                            b.      Go to the Assigned Roles tab strip

                            c.      Under Available Roles find the roles you want to assign and use Add to assign the appropriate role to the user according to the authorization level the user needs.

For more information see Assigning Principals to Roles or Groups.

Result

You have created the necessary technical communications and individual administration users. You have assigned the technical communications user to the security role XMLDASSecurityRole for your type of AS Java installation. You have assigned the administration user to the roles SAP_ARCH_XMLDAS_VIEW (for read-only authorization) or SAP_ARCH_SUPERADMIN (for read/write/execute authorization).

 

Ende des Inhaltsbereichs