Show TOC Start of Content Area

Background documentation Principal Types  Locate the document in its SAP Library structure

Purpose

A principal is a person or entity for which access rights can be defined.

Principals are typically employed when specific permissions for particular resources are required, for example, authorizations to execute CRUD (create, read, update, delete) operations. For more information, see Predefined Permission Access Rights.

The permissions of principals are stored in access control lists (ACL). For more information, see Access Control List.

Types

The following principal types are available:

Authorization Tool Icon

User Administrator Icon

Type

Description

This graphic is explained in the accompanying text

This graphic is explained in the accompanying text

User

A single user account.

Users can be assigned to groups and roles.

Example

Administrator

David Adams

C123456

This graphic is explained in the accompanying text

This graphic is explained in the accompanying text

Group

A group of users and roles.

Users and roles can be assigned to groups.

Example

Everyone

Authenticated Users

Managers

This graphic is explained in the accompanying text

This graphic is explained in the accompanying text

Role

A collection of tasks, services, and information that is available for groups of users.

Users and groups can be assigned to a role.

Example

CAFAdmin

Administrator

Business Expert

Note that principals from different types may have the same name. For example, you can have a user and role, both called Administrator, and they are different principles and, in fact, may have nothing in common.

End of Content Area