User Authorization

The authorization mechanism in SAP Control Center employs login accounts and task-based roles.

Access to SAP Control Center is controlled by login accounts. Permissions assign predefined roles that control tasks the user can perform in SCC, such as administration and monitoring of particular types of servers. The roles can be assigned directly to login accounts or to groups; a login account inherits the roles of any group to which it belongs. Component product modules assign some roles automatically.

SAP Control Center classifies roles as follows:

System roles – define how a user can interact with SCC.
Product roles – define how a user can interact with a particular managed resource in SCC, for example the Replication Server named RepBoston01.

Note: The tools described here are for managing SCC-enabled login accounts; you cannot use them to manage accounts and groups that are native to your managed resource.

Assigning a Role to a Login or a Group
Use the security configuration options to add one or more roles to an SAP Control Center login account or to a group. Roles enable users to perform tasks such as monitoring servers or administering SAP Control Center.
Adding a Group
Use the security configuration options to create a new group.
Adding a Login Account to a Group
Use the security configuration options to add one or more login accounts to a group.
Logins, Roles, and Groups
SAP Control Center includes predefined login accounts and roles.

Parent topic: Get Started in a Production Environment

Previous topic: Configuring the Automatic Logout Timer

Next topic: Configure