Creating a Security Configuration for a Domain

Define a set of security providers in SAP Control Center to protect domain resources, according to the specific security requirements of the domain. Create a security configuration, then map it to the desired domain.

A security configuration determines the scope of data access and security. A user must be part of the security repository used by the configured security providers to access any resources (that is, either a SAP Control Center administration feature or a data set from a back-end data source) on a domain. See Security Configurations in the Security guide.

When you create a new security configuration, SAP Mobile Platform sets the NoSecurity provider by default. SAP recommends that after you add, configure, and validate your providers, you remove the NoSecurity provider. For more information on the NoSecurity provider, see NoSecurity Configuration Properties inSAP Control Center for SAP Mobile Platform.

  1. In SAP Control Center, add a new security configuration using the Security node.
  2. In the left navigation pane, expand the Security folder and select the new configuration.
  3. Use the Authentication, Authorization, Attribution, and Audit tabs to configure the appropriate security providers for each aspect of domain security.
  4. Edit the security provider properties, as required.
  5. Validate the configuration to ensure that SAP Mobile Server accepts the changes.
  6. Go to left navigation pane, select Server -> Domains -> default -> Security folder.
  7. Assign the security configuration to a particular domain.
    Note: If HTTP request with X-SUP-SC header is not sent, then the security configuration is set as default.
  8. Apply the changes to SAP Mobile Server.
Parent topic: Configuring SAP Mobile Server
Next topic: Creating an Application