Modify the Admin security profile to add a production-grade provider,
typically Directory Service
(LDAP/AD).
Most companies use an LDAP directory to maintain internal user accounts. This module
integrates with most LDAP servers, including Active Directory.
Prerequisites
Determine what values are needed for the security provider properties
in SAP Mobile Platform by gathering this information
from the security provider you plan to use. For example, for a
Directory Service
(LDAP/AD) module, you
need values for the providerURL, serverType, bind user, bind password, search base, and so
on.
Task
Configure the Admin security profile to authenticate only administrator
user(s). SAP recommends that you create custom security
profiles for SAP Mobile Platform application users. The
steps here include examples for adding an LDAP provider.
- In the Management Cockpit,
select Settings.
- In Security Profiles, click admin
(Cannot be
deleted)
to select the installer-defined administrator user.
- Under Authentication Providers, click New.
- Select a
provider from the list, for example
Directory Service
(LDAP/AD)
then click Create.
- Configure the values as determined by you and
your
provider administrator.
- Click Save.
- Click OK.
- Click Save.
Next
You must map the SAP Mobile Platform logical Administrator role
to physical roles in your back end to enable your intended administrator users to be
authorized to use the Management Cockpit. You must restart the server
to recognize the role mapping changes before you test if your new administrator users are
able to login.