Creating User Accounts

If the Web services that you want to consume require authentication, and you want to authenticate by using a service user and not using Single Sign-On (SSO), you can provide this authentication in entities called user accounts. When you create a user account, you specify different authentication methods in the same entity. At a later stage, you can reuse and assign this account to one or more Web services on a provider system. When you assign the user account to a Web service, the system uses the authentication credentials in the account to invoke the Web service at runtime. Depending on the connectivity type which is configured to the provider system connection, you have to create a user account that uses either Web services (WS) or remote function call (RFC) connectivity.

Note Note

To enable SAML authentication when you configure Service Groups, you have to create a WS connectivity user account. Then, you have to provide Web Service Security and the corresponding Keystore View and Private Key settings to the user account. Finally, assign it to the provider system connection or the Web service which you want to consume.

End of the note.

More information about the provided authentication during design time: Creating Service Groups

Procedure

Log on to the SAP NetWeaver Administrator.
Choose SOA Management Application and Scenario Communication User Account Management

Alternatively, you can use the quick link /useraccmngt as follows:

http://<host>:<port>/nwa/useraccmngt

The User Account Management screen opens.
Choose the Maintenance tab.

Creating a User Account

Choose New.
On the General step, enter a name and description of the user account, and then choose Next.
Choose a connectivity type:
- WS
  
  More information about the configuration options for WS connectivity: Configuring Web Service Connectivity to User Accounts
- RFC
  
  More information about the configuration options for RFC connectivity: Configuring Remote Function Call Connectivity to User Accounts
Choose Finish.

Editing a User Account

Choose a user account from the table and then choose Edit.
Update the description of the user account.
Choose and add a connectivity type to the user account.

More information about the configuration options for WS connectivity: Configuring Web Service Connectivity to User Accounts

More information about the configuration options for RFC connectivity: Configuring Remote Function Call Connectivity to User Accounts
Choose Save.

Activating and Deactivating a User Account

From the list of user accounts, choose an entry and then to activate or deactivate the account, choose Activate, or Deactivate respectively.

The table below outlines the effect of the possible changes you can make to the status of a user account.

User Action	System Response
You set the status of a user account to Active.	The framework allows you to assign the active user account. The system activates the assignment of the user account.
You set the status of a user account to Inactive.	When you deactivate user accounts, the system considers them deleted. However, the account and its assignments keep existing in the system, and you can activate and use it again at a later stage. The framework does not allow you to assign the inactive user account. The system deactivates the assignment of the user account.

Deleting a User Account

Choose a user account from the table.
Choose Delete.
To confirm, choose OK.

Result

The system creates a user account with status Active. As a next step you can assign the account. The assignment specifies a set of Service Groups and the corresponding Web services which are running on the same provider system.

More information: Assigning User Accounts