Setting Up Security

Configure login authentication and map roles.

Read about security and follow these procedures before you configure SAP Control Center product modules.

Note: These security topics are intended for use in a production environment. If you are evaluating or testing SCC, see Quick Start for an Evaluation.
  1. Security
    SAP Control Center can authenticate user logins through an LDAP server, through the operating system, or both.
  2. Configuring Authentication for Windows
    Authentication through the Windows operating system is enabled by default. Configuration is required only if you have upgraded from an older version of SAP Control Center and no longer want to use the older version’s authentication settings; if you do not want to use Windows for authentication; or if you want to create login accounts manually. SAP recommends that you allow SCC to create accounts automatically.
  3. Configuring a Pluggable Authentication Module (PAM) for UNIX
    Set up SAP Control Center to support username and password login using accounts on the UNIX operating system.
  4. Configuring an LDAP Authentication Module
    Configure an LDAP authentication module for SAP Control Center by editing the security configuration file to point to the correct LDAP server.
  5. Mapping SAP Control Center Roles to LDAP or OS Groups
    To grant SAP Control Center privileges to users who are authenticated through LDAP or the operating system, associate roles used in SAP Control Center with groups in LDAP or the operating system.
  6. Encrypting a Password
    Use the passencrypt utility to encrypt passwords and other values that must be kept secure while stored in text files.
  7. Configuring Ports
    (Optional) Use the scc --port command to assign SAP Control Center services to new ports.
Parent topic: Get Started in a Production Environment
Previous topic: Logging in to SAP Control Center
Next topic: Configuring the E-mail Server