Show TOC

Procedure documentationConfiguring Authorization Checking for File Search Locate this document in the navigation structure

 

To enable authorization checking for file searches in SAP NetWeaver Enterprise Search, you must configure the domains where the file servers or Web servers are located and define attribute mapping for the SAP logon user.

Prerequisites

  • File share access is handled with Microsoft Active Directory.

  • SAP user names are known to the connected directory.

  • The LDAP servers that you want to connect must have been configured before using transaction LDAP.

    More information: Configuring User Management

Procedure

  1. Log on to your ABAP system with an administration user that has an assignment to the SAP_BC_SEFS_ADMIN role.

  2. Start transaction SM30 for table SEFS_LDAP_DOMAIN and choose Maintain.

  3. In the Domain field, enter the domain in which your file servers are located.

    Note Note

    If you have more than one domain, you must work through the steps for each domain.

    End of the note.

  4. In the LDAP server field, select a server from the list of LDAP servers that you have configured in transaction LDAP

  5. In the Attr. SAP user field, enter the LDAP attribute that stores the SAP user name in the directory.

    Note Note

    If LDAP access is slow, you should check whether the user specified in the Attr. SAP user field is supported by an index in the directory.

    As a preliminary solution, you can define an index-supported directory attribute in the Attr. fast field, for example, sAMAccountName.

    End of the note.

Result

You have configured SAP NetWeaver Enterprise Search to allow authorization checking for file searches. To use the authorization check, define an appropriate crawl that include access rights.