If the Web services that you want to consume require authentication, and you want to authenticate by using a service user and not using Single Sign-On (SSO), you can provide this authentication in entities called user accounts. When you create a user account, you specify different authentication methods in the same entity. At a later stage, you can reuse and assign this account to one or more Web services on a provider system. When you assign the user account to a Web service, the system uses the authentication credentials in the account to invoke the Web service at runtime. Depending on the connectivity type which is configured to the provider system connection, you have to create a user account that uses either Web services (WS) or remote function call (RFC) connectivity.
Note
To enable SAML authentication when you configure Service Groups, you have to create a WS connectivity user account. Then, you have to provide Web Service Security and the corresponding Keystore View and Private Key settings to the user account. Finally, assign it to the provider system connection or the Web service which you want to consume.
More information about the provided authentication during design time: Creating Service Groups
Log on to the SAP NetWeaver Administrator.
Choose
Alternatively, you can use the quick link /useraccmngt as follows:
http://<host>:<port>/nwa/useraccmngt
The User Account Management screen opens.
Choose the Maintenance tab.
Choose New.
On the General step, enter a name and description of the user account, and then choose Next.
Choose a connectivity type:
WS
More information about the configuration options for WS connectivity: Configuring Web Service Connectivity to User Accounts
RFC
More information about the configuration options for RFC connectivity: Configuring Remote Function Call Connectivity to User Accounts
Choose Finish.
Choose a user account from the table and then choose Edit.
Update the description of the user account.
Choose and add a connectivity type to the user account.
More information about the configuration options for WS connectivity: Configuring Web Service Connectivity to User Accounts
More information about the configuration options for RFC connectivity: Configuring Remote Function Call Connectivity to User Accounts
Choose Save.
From the list of user accounts, choose an entry and then to activate or deactivate the account, choose Activate, or Deactivate respectively.
The table below outlines the effect of the possible changes you can make to the status of a user account.
User Action |
System Response |
---|---|
You set the status of a user account to Active. |
|
You set the status of a user account to Inactive. |
When you deactivate user accounts, the system considers them deleted. However, the account and its assignments keep existing in the system, and you can activate and use it again at a later stage.
|
Choose a user account from the table.
Choose Delete.
To confirm, choose OK.
The system creates a user account with status Active. As a next step you can assign the account. The assignment specifies a set of Service Groups and the corresponding Web services which are running on the same provider system.
More information: Assigning User Accounts