SAP
BASIS
administrators control the access to applications by creating users, maintaining the same users. Users can be collected in groups according to the criteria in a company or a department and based on roles they perform in the project. A typical company will have several separate SAP systems running for production, development, testing and SAP BASIS training, and perhaps a high-availability system mirroring production on top of everything else. Admins will have to keep all of these systems updated, optimized and communicating with each other.
administrators control the access to applications by creating users, maintaining the same users. Users can be collected in groups according to the criteria in a company or a department and based on roles they perform in the project. A typical company will have several separate SAP systems running for production, development, testing and SAP BASIS training, and perhaps a high-availability system mirroring production on top of everything else. Admins will have to keep all of these systems updated, optimized and communicating with each other.
Roles
can be defined to either users individually or to the user group. Roles define
the user’s authorization levels to navigate or access the specific set of
functions or crucial applications.
Authorizations
are the key building blocks of SAP security system. How to secure SAP system
can be learnt from SAP Security training
by SAP Trainings Online with best experienced faculty.
Authorization
is the known process of assigning designated values to fields present in
authorization objects.
Access
to all system functionality in SAP is achieved through a compound set of
authorizations
If
the users do not have the necessary authorizations to perform a certain action
in the system, predefined message. You are not authorized is displayed on the
status bar of the screen.
User
administration includes creating, managing and controlling access to R/3
system, various R/3 user types and its data.
The
SAP NW application server (Learn from SAP NetWeaver training) java includes the identity management application for
administration of users, groups and roles.
User
administration major tasks are:
- Creating user
- Locking or unlocking user
- Deleting user
- Approving or rejecting users
The
below diagram explains how users are connected to the servers:
SAP user types:
There
are 5 different types available in SAP system:
- Communication
- Dialog
- Reference
- Service
- System
Communication users
Users
are not allowed / possible to logon using SAP GUI and cannot able to access the
data through SAP GUI screens.
Users
are allowed to change the password if expired using external link.
SAP
system always checks for the password expiry, initial password and prompts when
it requires to change depends on the logon method. Main use of the users is for
external RFC calls
These
users can access the SAP system data through front end or external
applications.
Dialog users:
Users
are allowed to logon using SAP GUI and able to access data through SAP GUI
screens
System
validates the password expiration initial password and multi logons
The
user can change the password by their own using SAP GUI
These
users are individual users and individual personalized system access allowed.
Reference
users:
Users
are not allowed to logon using SAP GUI and cannot able to access the data
through SAP GUI screens.
System
doesn’t check for initial password and password expiration.
Users
for general, non person related which allows the assignment of additional
authorizations to the users like internet users.
These
users used to give authorization to other users.
Service users:
Users
are allowed to logon using SAP GUI and can able to access the data through SAP
GUI screens
System
doesn’t check for initial password and password expiration.
Multiple
logins are allowed for this kind of users
Users
are not allowed to change the password and only administrator can change the
password.
These
users have very restricted authorizations
These
types of users are created for anonymous users.
After
an individual authentication, an anonymous session begin with service user can
be continued as a person related session with a dialog user.
System users:
Users
are not allowed to logon using SAP GUI and can able to access the data through
SAP GUI screens.
System
doesn’t check for initial password and password expiration.
Users
are related system related and internal system processes.
The
password change requirement does not apply to these user’s passwords and it
cannot be initial or expired.
Only
user administrator can change the password and multiple logons are permissible.
These
users are for background processing, external and internal RFC calls.
How to learn SAP BASIS?
SAP
Trainings Online is a deceptively simple e-learning and SAP training authoring solution. Create super-effective training
content and deliver courses via Virtual and implant in existing systems. It
is very important for BASIS consultant to have hands on experience on live
servers. It is right to have training because every scenario could not be
created just by installing SAP. We provide training in many countries India,
USA, UK, Canada, Australia, and New Zealand.
Register
with us for free demo: www.saptrainingsonline.com/student-registration
For more
details visit: www.saptrainingsonline.com
Email: contact@saptrainingsonline.com
Contact: India
+91 9052775398 USA +1315282580
No comments:
Post a Comment