Solved: Differences

Former Member · ‎04-21-2007

hi all,

what is the difference between system user ,communication user and service users.

How to reset the password in system users and communication users.

Former Member · ‎04-21-2007

Hi Sri,

The following describes the type of users as requested by you

For service and communication users you need to execute tcode SU01 enter the username in the field and select change password (last icon on the tab) or you can go through Tools~~> Administration~~>User maintenance -->Users

· System (B)

User type for background processing and communication within a system (internal RFC calls).

¡ A dialog logon is not possible.

¡ The system does not check whether the password has expired or is initial.

¡ Due to a lack of interaction, no request for a change of password occurs. (Only the user administrator can change the password.)

¡ Multiple logons are permissible.

· Communication (C)

User type for dialog-free communication between systems (such as RFC users for ALE, Workflow, TMS, and CUA):

¡ A dialog logon is not possible.

¡ Whether the system checks for expired or initial passwords depends on the logon method (interactive or not interactive). Due to a lack of interaction, no request for a change of password occurs.

· Service (S)

User type that is a dialog user available to a larger, anonymous group of users. Assign only very restricted authorizations for this user type:

¡ During a log on, the system does not check whether the password has expired or is initial. Only the user administrator can change the password (transaction SU01, Goto ® Change Password).

¡ Multiple logons are permissible.

¡ Service users are used, for example, for anonymous system accesses through an ITS service. After an individual authentication, an anonymous session begun with a service user can be continued as a person-related session with a dialog user.

For further details refer to the below links:

http://help.sap.com/saphelp_47x200/helpdata/en/52/671126439b11d1896f0000e8322d00/frameset.htm

**Reward Suitable points for the answers

Junaid

Former Member · ‎04-21-2007

Hi Sri,

The following describes the type of users as requested by you

For service and communication users you need to execute tcode SU01 enter the username in the field and select change password (last icon on the tab) or you can go through Tools~~> Administration~~>User maintenance -->Users

· System (B)

User type for background processing and communication within a system (internal RFC calls).

¡ A dialog logon is not possible.

¡ The system does not check whether the password has expired or is initial.

¡ Due to a lack of interaction, no request for a change of password occurs. (Only the user administrator can change the password.)

¡ Multiple logons are permissible.

· Communication (C)

User type for dialog-free communication between systems (such as RFC users for ALE, Workflow, TMS, and CUA):

¡ A dialog logon is not possible.

¡ Whether the system checks for expired or initial passwords depends on the logon method (interactive or not interactive). Due to a lack of interaction, no request for a change of password occurs.

· Service (S)

User type that is a dialog user available to a larger, anonymous group of users. Assign only very restricted authorizations for this user type:

¡ During a log on, the system does not check whether the password has expired or is initial. Only the user administrator can change the password (transaction SU01, Goto ® Change Password).

¡ Multiple logons are permissible.

¡ Service users are used, for example, for anonymous system accesses through an ITS service. After an individual authentication, an anonymous session begun with a service user can be continued as a person-related session with a dialog user.

For further details refer to the below links:

http://help.sap.com/saphelp_47x200/helpdata/en/52/671126439b11d1896f0000e8322d00/frameset.htm

**Reward Suitable points for the answers

Junaid

v_veeramalla · ‎04-23-2007

HI,,

I think the give information will help you

Dialog 'A'

A normal dialog user is used by one person only for all types of logon.

During a dialog logon, the system checks for expired and initial passwords and provides an option to change the password.

Multiple dialog logons are checked and logged if necessary.

System 'B'

You use a user of type System for communication without dialog within one system (for RFC or CPIC service users) or for background processing within one system.

Dialog logon is not possible.

A user of this type is excluded from the general settings for password validity. Only the user administrator can change the password using transaction SU01 (Goto -> Change Password).

Communication 'C'

You use a user of type Communication for communication without dialog between systems (for RFC or CPIC service users for various applications, for example, ALE, Workflow, TMS, CUA).

Dialog logon is not possible.

Service 'S'

A user of the type Service is a dialog user that is available to an anonymous, larger group of users. Generally, this type of user should only be assigned very restricted authorizations.

For example, service users are used for anonymous system access via an ITS service. Once an individual has been authenticated, a session that started anonymously using a service user can be continued as a personal session using a dialog user.

During logon, the system does not check for expired and initial passwords. Only the user administrator can change the password.

Multiple logon is allowed.

Reference 'L'

Like the service user, a reference user is a general user, not assigned to a particular person. You cannot log on using a reference user. The reference user is only used to assign additional authorization. Reference users are implemented to equip Internet users with identical authorizations.

On the Roles tab, you can specify a reference user for additional rights for dialog users. Generally, the application controls the allocation of reference users. You can allocate the name of the reference user using variables. The variables should begin with "$". You assign variables to reference users in transaction SU_REFUSERVARIABLE.

This assignment applies to all systems in a CUA landscape. If the assigned reference user does not exist in one of the CUA child systems, the assignment is ignored.

v_veeramalla · ‎04-23-2007

HI,,

I think below given information will help you

Dialog 'A'

A normal dialog user is used by one person only for all types of logon.

During a dialog logon, the system checks for expired and initial passwords and provides an option to change the password.

Multiple dialog logons are checked and logged if necessary.

System 'B'

You use a user of type System for communication without dialog within one system (for RFC or CPIC service users) or for background processing within one system.

Dialog logon is not possible.

A user of this type is excluded from the general settings for password validity. Only the user administrator can change the password using transaction SU01 (Goto -> Change Password).

Communication 'C'

You use a user of type Communication for communication without dialog between systems (for RFC or CPIC service users for various applications, for example, ALE, Workflow, TMS, CUA).

Dialog logon is not possible.

Service 'S'

A user of the type Service is a dialog user that is available to an anonymous, larger group of users. Generally, this type of user should only be assigned very restricted authorizations.

For example, service users are used for anonymous system access via an ITS service. Once an individual has been authenticated, a session that started anonymously using a service user can be continued as a personal session using a dialog user.

During logon, the system does not check for expired and initial passwords. Only the user administrator can change the password.

Multiple logon is allowed.

Reference 'L'

Like the service user, a reference user is a general user, not assigned to a particular person. You cannot log on using a reference user. The reference user is only used to assign additional authorization. Reference users are implemented to equip Internet users with identical authorizations.

On the Roles tab, you can specify a reference user for additional rights for dialog users. Generally, the application controls the allocation of reference users. You can allocate the name of the reference user using variables. The variables should begin with "$". You assign variables to reference users in transaction SU_REFUSERVARIABLE.

This assignment applies to all systems in a CUA landscape. If the assigned reference user does not exist in one of the CUA child systems, the assignment is ignored.

Former Member · ‎04-23-2007

Hi Sri,

System user 'B'

System-dependent and system-internal operations

- Logon with SAPGUI is not possible. The user is therefore not interaction-capable with the SAPGUI.

- The passwords are not subject to to the password change requirement, that is, they cannot be initial or expired.

- Only an administrator user can change the password.

- Multiple logon is permitted.

- Usage: Internal RFC, background processing, external RFC (for example, ALE, workflow, TMS, CUA)

Communication user 'C'

Individual system access (personalized)

- Logon with SAPGUI is not possible. The user is therefore not interaction-capable with the SAPGUI.

- Expired or initial passwords are checked but the conversion of the password change requirement that applies in principle to all users depends on the caller (interactive/not interactive). (*)

- Users have the option of changing their own passwords.

- Usage: external RFC (individual human users)

Service user 'S'

Shared system access (anonymous)

- Logon with SAPGUI is possible. The user is therefore interaction-capable with the SAPGUI.

- The passwords are not subject to the password change requirement, that is, they cannot be initial or expired.

- Only a user administrator can change the password.

- Multiple logon is permitted.

- Usage: Anonymous system access (for example, public Web services)

Hope it helps.

Please award points if it is useful.

Thanks & Regards,

Santosh