Ansicht
Dokumentation
Enhanced Internet User Concept ( RELNISM_463_IAC_IU1 )
General Material Data ABAP Short ReferenceThis documentation is copyright by SAP AG.
Short text
Enhanced Internet User Concept
Use
An enhanced Internet user concept has been designed for Release 4.63. Firstly, an alternative to the previous Internet user administration concept has been designed, allowing for continued developments in user administration in the future. Secondly, new applications have been developed to allow customers to create and maintain Internet users themselves.
Internet users give customers access to the Internet Application Components (IACs) in IS-M. The Internet user is assigned uniquely to one business partner. Depending on the Customizing settings for identifying and checking business partners, the components can also be accessed with other data.
The first concept for administration of Internet users is referred to in the following as the classic Internet user. It is based on transaction SU05 Create Internet User and up to Release 4.63 was the only available option. The second concept, supported from 4.63 onwards, is based on transaction SU01, User Maintenance. In this case, the Internet users are represented by an R/3 user, in other words an R/3 user is created for each Internet user.
The classic Internet user is the simpler, more streamlined of the two solutions. Viewed from a technical point of view, it is principally made up of one table entry containing the customer number, the password, a block indicator and the validity date. The entry can be maintained in R/3 using transaction SU05. Unlike the new Internet user described below, the classic Internet user does not have a user name. This means the field Alias/User Name has no significance in any of the applications if you are using the classic Internet user.
Caution
When assigning the password for an Internet user with transaction SU05, please note the following:
- To ensure compatibility with the SU01 Internet user concept, the IS-M Internet applications only use an 8-character password. Although the password field in transaction SU05 allows more characters, you can only assign an 8-character password. When an Internet user is created, the 15-character password generated by the system must be replaced manually with a password containing a maximum of 8 characters.
- Letters must always be entered in upper case in the field in transaction SU05. When a user logs on to an IAC, the system automatically converts letters in the password into capitals, meaning that the password check can only be run successfully if capitals are used when the password is created.
If the customer creates their Internet user themselves, these problems do not arise. The Internet application component provides a password field that only allows 8 characters and, the same as during logon, automatically converts lower case letters to upper case.
The new alternate concept for Internet user administration is based on transaction SU01 (R/3 User Maintenance). An Internet user is represented by an R/3 user with reference to the customer number. The alias available for the R/3 user is used as the user name for the Internet user. When the customer logs on to an IAC with the user name and password, the system performs a user switch, switching the active R/3 user used to access the IAC to the R/3 user that represents the customer's Internet user.
This means the R/3 authorization concept also applies automatically. The R/3 user needs authorization to execute the IAC. Since the required authorizations for Internet customers are similar in the available applications, we recommend that you use a reference user to assign the authorizations. The R/3 user is assigned the authorizations of the reference user during runtime. To use the reference user concept for the Internet user, define a user as a reference user, assign them the required authorizations and store them in Customizing with the settings for the Intenret user. All authorizations required for the IACs are grouped together in role SAP_ISM_INTERNET_CUSTOMER; you can assign this role to the reference user.
To create an Internet user in transaction SU01, you need to specify the user name, (customer) name, password and e-mail address.
Recommendation
If you do not need the user name for the Internet user, we advise you to continue using the classic Internet user based on transaction SU05. The new Internet user provides a basis for future developments so that, for example, it is possible to support applications in the future that require a more finely differentiated authorization concept. This new concept might also be used to support the development of cross-application logon, in other words a single logon for several transactions; at present, users have to log on separately to each Internet transaction they want to execute. In 4.63, the Internet applications are the same for both Internet user concepts, so that apart from the option of defining a user name, the new concept does not offer you any further advantages at this time, although it is slightly more complicated to implement. You can switch from the SU05 user concept to the SU01 concept at any time but you cannot switch back again.
Effects on Customizing
You specify the Internet user concept you want to use in the Customizing step Settings for Internet User.
Further Information
With Release 4.63, customers can create and maintain their own Internet users in the following new Internet Application Components. For further information, see the following Release notes:
IAC Change Access Data for Internet User
A procedure for both these Internet user concepts is available in the SAP Library:
Basis Components → Computer Center Management System → Users and Roles → Creating and Maintaining Internet Users
Fill RESBD Structure from EBP Component Structure BAL Application Log Documentation
This documentation is copyright by SAP AG.
Length: 6680 Date: 20240520 Time: 162110 sap01-206 ( 161 ms )
