Start of Content Area

Procedure documentation Configuring the Default Display of User Data  Locate the document in its SAP Library structure

Use

If you activate the extension for differentiating the display of user data in an external portal (accessible for external users), the highest security level applies automatically to the search for and display of user data (minimal display using the configuration delivered by SAP).

So that employees of your company can work and communicate in the portal without restriction, you define a default display of other users’ user data for internal users with a minimum of restrictions.

Overview of the Required Steps

To define the default display for internal users, the following steps are required:

      Portal role

You group the internal users in a portal role with unrestricted permissions (actions) to search for and display user data. The exact scope of the user display is defined in the default profiles.

      Profile

Optionally, you can change the default profiles delivered by SAP for individual users, user groups, and roles. These profiles affect users who have permission for unrestricted search for and display of user data through their portal role.

Procedure

...

       1.      Create a portal role for internal users.

                            a.      Launch the user management administration consoleusing the URL http://<J2EE_Engine_Server>:<J2EE_Engine_port>/useradmin

Example

http://myserver.mycompany.com:2080/useradmin

                            b.      Create the role for internal users as follows:

                                                  i.       Enter the role name (suggestion: InternalUsers).

                                                ii.       Depending on your requirements, assign one or both of the following actions to the role (exactly one corresponding permission is assigned to each action):
- com.sap.netweaver.kmc.people.SearchUnrestricted
This action provides permission for the unrestricted display of user data in the results list of the people finder function.
- com.sap.netweaver.kmc.people.ViewUnrestricted
This action provides permission for the unrestricted display of users who are assigned to objects, for example, the author of a document.

                                               iii.       Save the portal role.

       2.      Assign all internal users to the portal role for internal users.

       3.      Optional: Edit the definitions of the profiles for the default display:

                            a.      In the portal, choose System Administration System Configuration Knowledge Management Content Management Repository Managers.

                            b.      To display the extended options, choose Mode Advanced.

                            c.      In Related Areas, choose UME Object Settings.

                            d.      Choose People Renderer Profiles.

                            e.      Choose Default Profile.

The profiles delivered by SAP (default_group, default_role, default_user) define the following points for internal users (user groups, roles, or individual users):

       The user names for all other (passive) users are visible.

       For each passive user, users can call up the user details and the context menu with services for collaboration.

                              f.      If required, you can change the existing profiles. The configuration of a profile comprises the following data:

Profile Data

Description

Show Availability Status

Default setting: Active
If this option is activated, the system display users with the preceding icon for their availability status.

UME Principal

Active system users (individual user, group, or role) that the profile applies to.

The system users are defined in the User Management Engine (UME).

Passive UME Attribute Name

User management attribute, the value of which appears for the passive system user (to be displayed). 

In the default setting, the user name (display name) is defined here, if necessary, you can enter another attribute. 

Passive UME Attributes Namespace

Attribute namespace

The standard namespace is com.sap.security.core.usermanagement

Type Mapping Key

Technical key for the services configuration under which the type mapping for the respective type (userType, groupType, roleType) is stored.
See System Administration System Configuration Collaboration Properties Type Mapping. The technical key is in the ResourceType column.

For example, this entry allows you to let the active users display user details for passive (displayed) users or use services for collaboration with passive users.

See also Configuration for Making Services Available.

       4.      Confirm your entries by choosing OK.

Result

In accordance with the respective profiles, all internal users now have a considerably unrestricted default display of user data in the portal.

Note

For performance reasons, the user attributes and the actions are written to a system memory (cache). If the assignment of the actions does not take effect, you should refresh the cache. To do this, you can use the cache monitor (path: System Administration Support Support Desk User Management Cache Monitor for UME objects) or restart the system.

 

 

 

 

End of Content Area