Start of Content Area

Component documentation Identity Management  Locate the document in its SAP Library structure

Purpose

SAP systems within the SAP NetWeaver technology platform perform authorizations using a role-based identity management approach. This means that you assign authorizations to users based on the job they perform using the particular system.

Features

The tools available for performing identity management functions depend on the type of installation you have. There are also tools for multiple systems. These tools and functions are described in the following sections:

      Identity Management for System Landscapes

In this section, we describe how to manage identities and the required access rights across multiple systems. The preferred tool for this is SAP NetWeaver Identity Management Identity Center.

      User Management of the Application Server ABAP

In this section, we describe the authorization concept and the corresponding tools that are available for identity management with the SAP NetWeaver Application Server (AS) ABAP:

       User maintenance (transaction SU01)

       Mass changes in user maintenance (transaction SU10)

       Role and authorization maintenance (transaction PFCG)

       Central User Administration (CUA)

       User Information System (transaction SUIM)

       Synchronization with directory services (LDAP)

      User Management of the Application Server Java

In this section, we describe the authorization concept and the tools available for identity management with the AS Java and the user management engine (UME). The UME is the user management provider for the AS Java. We describe the tools of the UME as well as the user management functions available from the security service of the visual administrator. This section also describes how to use the access control lists (ACL) under resource management to protect access to server resources.

 

End of Content Area