Show TOC

Background documentationUser Management and Authorization Concepts (AEX) Locate this document in the navigation structure

 

For an Advanced Adapter Engine Extended (AEX) installation (installation option: PI-AEX; technically a Java-only installation), users, user groups, and roles are maintained in Java-based User Management Engine (UME).

These entities are created during technical configuration of the AEX with the configuration wizard.

For AEX, there are available UME user groups which contain one or more UME roles.

The following figure illustrates the user management concept.

This graphic is explained in the accompanying text.

User Management for AEX

The following table lists the UME groups that are available for this installation option. The table also shows which UME roles are assigned to the UME groups.

UME User Group

Assigned UME Roles

Permissions

SAP_XI_DEVELOPER

SAP_SLD_DEVELOPER

SAP_XI_DEVELOPER_J2EE

Allows the design of integration content

SAP_XI_CONFIGURATOR

SAP_SLD_CONFIGURATOR

SAP_XI_CONFIGURATOR_J2EE

Allows the configuration of integration content

SAP_XI_CONTENT_ORGANIZER

SAP_SLD_ORGANIZER

SAP_XI_CONTENT_ORGANIZER_J2EE

Allows the maintenance of System Landscape Directory content

SAP_XI_ADMINISTRATOR

SAP_SLD_ADMINISTRATOR

SAP_XI_ADMINISTRATOR_J2EE

UDDI_Admin

SERVICES_REGISTRY_READ_WRITE

NWA_READONLY

Allows technical configuration and administration of PI

SAP_XI_MONITOR

SAP_SLD_GUEST

SAP_XI_MONITOR_J2EE

Allows monitoring of PI components and messages

SAP_XI_SUPPORT

SAP_SLD_GUEST

SAP_XI_DISPLAY_USER_J2EE

SAP_XI_SUPPORT_J2EE

UDDI_TierN

SERVICES_REGISTRY_READ_ONLY

NWA_READONLY

SAP_SLD_SUPPORT

Grants read-only access to Integration Directory and ES Repository, and to specific administration pages (as outlined below) of AS Java. This role is required for SAP support using Solution Manager Diagnostics (SMD).

Note Note

UME groups are comparable to composite roles in AS ABAP user management.

UME groups for the AEX have the same names as the corresponding composite roles in AS ABAP that are available for a standard SAP NetWeaver PI installation.

End of the note.

More information: Standard User (Java Single-Stack)

For more information on the available UME roles, see UME Roles and Actions (AS Java).

Access Control Lists

For specific areas, you can define authorizations based on access control lists (ACLs).

Note Note

An access control list is a list of permissions that can be attached to an object or a set of objects.

End of the note.

More information: ACL-Based Authorizations