Show TOC

Mapping Roles for a DomainLocate this document in the navigation structure

Map logical roles to physical roles for a domain by setting the mapping state. Domain administrators map roles for the domains they control. Role mappings performed at the domain level are automatically applied to all domains that share the same security configuration. Domain-level role mapping overrides mapping set at the cluster level by the platform administrator.


SAP Mobile Platform cannot query all enterprise security servers directly; to perform authentication successfully know the physical roles that are required.


  1. In the left navigation pane of SAP Control Center, expand Domains > <Domain name> > Security and select the security configuration to map roles for.
  2. In the right administration pane, click the Role Mappings tab.
  3. Select a logical role and select one of the following in the adjacent list:
    State Description
    AUTO To map the logical role to a physical role of the same name.
    NONE To disable the logical role, which means that the logical role is not authorized.
    MAP To manually map the logical role when the physical and logical role names do not match. See Mapping a Physical Role Manually.