Integrated User and Access Management 

The IT scenario Integrated User and Access Management provides two of the recommended ways to implement integrated user and access management. It addresses companies' needs to store and manage user information and to control user access to data, while at the same time reducing redundancy. SAP's mature, fine-grained authorization concept allows detailed control of access rights. Consolidating user and authorization information reduces complexity and increases transparency, which is helpful both in terms of security and from a governance perspective. Integrated user and access management enables customers to leverage existing investments where appropriate, for example, by using data already available in an SAP system or in an LDAP-based directory server.

The examples shown in this scenario do not involve any development tasks, however, depending on your system landscape, you may be interested in providing additional user and access management functions that are not explained in this scenario.

Therefore, for more information about what is available and how to implement additional authorization and access protection with SAP NetWeaver, see the following:

·        Java: Integrating Security Functions in the sections Using Security Roles and Permissions in Applications and User Management Engine (APIs).

·        ABAP: See Security Aspects for BSP and Authorization Checks.

For other technologies, see the corresponding documentation that applies to the technology.