User Security Policy Profiles

ZZZZZI_won·2021년 1월 7일
PI
0

SAP_PI

목록 보기
1/5

보안정책

  1. User Management Configuration
    http://[호스트]:[포트]/webdynpro/dispatcher/sap.com/tc~sec~ume~wd~umeadmin/UmeAdminApp#
  1. 일반정보 -> 보안 정책
    1) default user = user can logon, password rules apply
    2) technical users = user can logon, password does not expire
    3) internal service users = user cannot logon, usually do not have passwords

Default

Used for regular generic users. The profile can be displayed and modified.

  • Can be used to log on to the AS Java
  • Normal password rules apply, for example the user's password can expire or the password must be changed after initial logon
  • Created by administrators, during self-registration, or read from external user management engine (UME) data sources. The administrator and guest users are created automatically during installation.
  • UME maps (A) Dialog users from the AS ABAP data source to this type Well known standard users of this type include: Administrator and Guest.

Technical User

Used for system-to-system communication. The profile can be displayed, but not modified directly. Changing the Default security profile results in corresponding changes in the Technical User security profile. The properties for the Technical User security profile can be changed using the UME properties. However, the property for password expiration does not affect the validity of the password in the Technical Users profile.

  • Can be used to log on to the AS Java
  • Password does not expire
  • Some created automatically ( SAPJSF), some by the user administrator
  • ME maps (B) System users from the AS ABAP data source to this type Well known standard users of this type include: SAPJSF and ADSuser. Although SAPJSF is a standard technical user, you cannot log on to the AS Java with it for security reasons.

Internal Service User

Used to perform internal operations, for example PCD ACL operations for a portal. The profile cannot be displayed or modified.

  • Cannot be used to log on
  • Usually do not have passwords
  • Normally created automatically
  • Users exist only in the Java database, does not map to other data sources
  • Type cannot be changed Well known standard users of this type include: pcd_service, config_fwk_service, ume_service

Default Security Policy Profiles

profile
ZZZZZI_won
다음 포스트

I/F scheduling (Availability Time Planning (ATP) )

0개의 댓글