Show TOC Anfang des Inhaltsbereichs

Vorgehensweisen Assigning Principals to Roles or Groups  Dokument im Navigationsbaum lokalisieren

Use

You can assign principals (users, roles, and groups) to roles and groups as follows:

      Roles

       Users

       Groups

       Actions

      Groups

...

       Users

       Groups

       Roles

Roles

Roles reflect a user’s function. By assigning a role to a user, you provide the user with the authorizations or functions that he or she needs to fulfill specific tasks. You can also indirectly assign a role to a user by assigning the group to which the user belongs to the role.

You can display the following types of roles:

      Portal roles

These roles define how content is grouped together and how it is displayed in the SAP NetWeaver Portal. By assigning a user or group to a portal role, you define which content that user or group sees in the portal. During assignment, the system checks the Role Assigner permission to see if you have the proper rights to assign the role.

      User management engine (UME) roles

These roles define a set of authorizations. By assigning a user or group to a UME role, you grant the set of authorizations that the role defines to the assigned user or group.

For more information about types of roles, see UME Roles and Portal Roles.

Achtung

Do not assign roles that are in the SAP namespace, for example, roles that begin with com.sap.portals. Instead, assign users to delta links of roles that are in the SAP namespace. This prevents your changes from being overwritten when you upgrade your portal. For more information, see Delta Links and SAP Content Objects.

By default, roles that contain the SAP namespace com.sap.portals are not displayed in the role assignment function.

Groups

For more information about groups, see UME Groups.

Restrictions

Restrictions to group assignments (if any) depend on the data source where the principals reside. For more information, see the following:

      Database Only as Data Source

      LDAP Directory as Data Source

      User Management of Application Server ABAP as Data Source

Prerequisites

To assign principals, you must be assigned a role that includes the relevant actions. For example, to assign users to a role, you must have the right to manage both users and roles. For more information, see Managing Users, Groups, and Roles.

Procedure

...

       1.      Search for a role or group.

       2.      In the search results list, select the role or group.

       3.      Choose Modify.

       4.      Choose Assigned Users, Assigned Groups, Assigned Actions, or Assigned Roles  as required.

       5.      Under Available Users, Available Groups, Assigned Actions, or Available Roles, search for the principal you want to assign to the role or group.

Hinweis

       You can narrow the search by selecting the data source you want to search, if there is more than one data source.

A federated portal network adds some complexity. For roles only, you can search remote data sources, meaning remote portal systems in your network. If you search All Data Sources this includes the remote portals. For all other principals (users, groups, and actions) the search only includes the data sources relevant to your local portal.

       You can view the details of assigned and available principals. To view the details, click the principal Name or Logon ID, and choose Show Details. The details appear in a new window.

       6.      Select the principal from the search results list and choose Add.

The principal appears in the list of assigned principals. If you make a mistake or want to remove a principal, select the principal and choose Remove.

       7.      Choose Save.

Ende des Inhaltsbereichs