Show TOC

Procedure documentationCreating User Accounts Locate this document in the navigation structure

 

If the Web services that you want to consume require authentication and you want to authenticate by using a service user and not using Single Sign-On (SSO), you can provide this authentication in entities called user accounts. When you create a user account, you specify different authentication methods in the same entity. At a later stage, you can reuse and assign this account to one or more than one Web service on a provider system. When you assign the user account to a Web service, the system uses the authentication credentials in the account to invoke the Web service at runtime.

More information about the provided authentication during design time: Creating Service Groups

Procedure

  1. Log on to the SAP NetWeaver Administrator.

  2. Choose   SOA Management   Application and Scenario Communication   User Account Management  

    Alternatively, you can use the quick link /useraccmngt as follows:

    http://<host>:<port>/nwa/useraccmngt

    The User Account Management screen opens.

  3. Choose the Maintenance tab.

Creating a User Account

  1. Choose New.

  2. On the General step, enter a name and description of the user account, and then choose Next.

  3. On the Credentials step, enter the following settings:

    • To set basic authentication over the HTTP protocol, enter the user name and password in the provided fields.

    • To set authentication over the Web Service Security protocol, proceed as follows:

      1. In the Keystore View for WSSE dropdown menu, specify a key storage of signatures.

      2. In the Private Key for WSSE dropdown menu, choose the exact authentication key.

    • To set secure SSL communication over the HTTPS protocol, proceed as follows:

      1. In the Keystore View for HTTPS dropdown menu, specify a key storage of signatures.

      2. In the Private Key for HTTPS dropdown menu, choose the exact authentication key.

      You can specify one or more authentication methods in the user account. An application on your client system can consume the Web service to which the account is assigned, if at least one of the authentication methods is allowed an authentication mechanism for the service endpoint of the Web service.

  4. Choose Finish.

Editing a User Account

  1. Choose a user account from the table and then choose Edit.

  2. Enter your changes in the fields which you want to edit.

  3. Choose Save.

Activating and Deactivating a User Account

From the list of user accounts, choose an entry and then to activate or deactivate the account, choose Activate or Deactivate respectively.

The table below outlines the effect of the possible changes you can make to the status of a user account.

User Action

System Response

You set the status of a user account to Active.

  • The framework allows you to assign the active user account.

  • The system activates the assignment of the user account.

You set the status of a user account to Inactive.

When you deactivate user accounts, the system considers them deleted. However, the account and its assignments keep existing in the system, and you can activate and use it again at a later stage.

  • The framework does not allow you to assign the inactive user account.

  • The system deactivates the assignment of the user account.
Deleting a User Account

  1. Choose a user account from the table.

  2. Choose Delete.

  3. To confirm, choose OK.

Result

The system creates a user account with status Active. As a next step you can assign the account. The assignment specifies a set of Service Groups and the corresponding Web services which are running on the same provider system.

More information: Assigning User Accounts