In SAP five types of users available.This concept is most important.let us see what are differences among these users..
There are
five user types in SAP.
Dialogue
user (A): Dialogue is the most commonly used user account.
Dialogue log on is possible means user can directly interact with system.
Users have an option to change their passwords.
Multiple dialogue logon is possible.
Ex: end
users, support users, functional
users, and employees in the company.
System
user (B): system user mostly used for run back ground jobs.
Dialogue log on is not possible (with GUI)
Only admin can change password
Usually batch user needs SAP_ALL access (why because, to run background
job for validity of user, then system user need su01 access. Like this every
job depend on related tcode or report. So system user needs sap_all)
Note: Usually company can have 2
system users.
Ex:
background processing, Internal RFC, external RFC (for example, ALE, workflow,
TMS, CUA)
Why is system user account?
it is
required by the system for its own operations. It is an internal communication
file system.
Communication
users(C): Used to dialogue free communication between the systems.
Dialogue log on is not possible.
Users of this type can change
their passwords.
(The
dialogs for changing the password must be provided by the caller (RFC/CPIC
client). You can use the RFC function module USR_USER_CHANGE_PASSWORD_RFC or
the RFC API function RfcOpenEx() to change the password)
Ex: Remote
client copy, data transfer between the systems.
Service
users(S): Same as dialogue user but differed with admin can
only change password. A user of the type is available to an
anonymous and larger group of users.
Dialogue log on is possible
User Administrator can change the passwords.
Multiple dialogue logon is possible.
Ex: Fire fighter ids, OSS
(online service system) ids.
Why FFids
to service users?
Generally Fire fighter user ID has extreme authorizations, so to avoid
misusing, we assign ff ids only to service users because service user type has “dialogue
log on” and no option to change password.
Reference
user (L):Reference
type is used to provide additional privileges to other user.
Reference user type is not assigned to a particular person .On the Roles tab in SU01, you can specify a reference user for additional rights for dialog users. This assignment applies to all systems in a CUA landscape. If the assigned reference user does not exist in one of the CUA child systems, the assignment is ignored.
Reference user type is not assigned to a particular person .On the Roles tab in SU01, you can specify a reference user for additional rights for dialog users. This assignment applies to all systems in a CUA landscape. If the assigned reference user does not exist in one of the CUA child systems, the assignment is ignored.
You
cannot log on using a reference user
No
password option for this user type.
see below image to map reference user to normal dialog user.
see below image to map reference user to normal dialog user.
No comments:
Post a Comment