Preparing Operating System Users

Use

If you want to install tp, the operating system users must fulfill the following requirements.

Procedure

Operating System Users - UNIX

Operating system tools are used to check the authorizations for the files in the transport directory. To transport in a group of systems connected for the purpose of transport, tp gives the group belonging to the owner of a file all authorizations for that file. Group sapsys, containing all the owners of the SAP Systems (<sapsid>adm), plays a central role here.

  • All owners of SAP Systems (at UNIX level) must be in the group sapsys.
  • The group sapsys must have the same group identification number (gid) on all the computers of the transport group. (This is proposed, but not guaranteed by the installation tools.)

Operating System Users - Windows

Each user that wants to use the transport system requires read and write authorization in the transport directory.

If you call a transport program directly from the operating system level, only use the operating system user <SAPSID> ADM.

If you call a transport program from the SAP System (Change and Transport Organizer or Transport Management System), the user under which the SAP System was started is used. This user is SAPService<SAPSID> for a standard installation of the operating system user.

To check which user started the SAP System, choose My Computer ® Right-click ® Manage ® Services and Applications ® Services ® SAP<SAPSID>_<Sysno.> ® Log on As.

For each SAP System that is part of the transport group, you must give read and write authorization to the following operating system users:

<SAPSID> ADM (for example, C11ADM)

SAPService<SAPSID> (for example, SAPServiceC11)

Operating System Users – IBM eServer iSeries

Each user who wants to use the transport system at operating system level must be a group member in the group profile <sapsid>OFR.

This gives the user authorization to call transport programs. The programs themselves inherit the rights of user <sapsid>OWNER.

Note that at present user names and passwords must be exactly the same in all SAP systems. This is a restriction required for remote access using /QFileSvr.400 from OS/400.