Start of Content Area

Background documentation Internet Transaction Server Security Locate the document in its SAP Library structure

To make your SAP System applications available for access from a Web browser, we provide the middleware component Internet Transaction Server (ITS). The ITS allows for effective communication between the two systems, regardless of their underlying system technology.

In the topics that follow, we describe the system component architecture as well as the security measures and concepts necessary for providing security to SAP Internet applications.

     Defining SAP Transactions as Internet Applications

     The Architecture of the Internet Transaction Server (ITS)

     A Secure Network Infrastructure for the ITS

     Protecting the Server and Network Components

     Protecting the Web Server

     Protecting the AGate Server

     Protecting the SAP System Application Servers

     TCP Ports Used by the ITS

     Using the SAProuter

     Using Other Firewall Components

     Example Network Setup

     Example Network Setup (with Client LAN)

     Using Additional Security Mechanisms / Providing Privacy

     Authenticating Users

     Authenticating Internet Users (Service Users)

     Authenticating Named Users With User ID and Password

     Authenticating Named Users Using X.509 Client Certificates

      Security Measures When Using Client Certificates

     Authenticating Named Users With Single Sign-On

     Protecting Session Integrity

     Security-Relevant Settings for IACs

     SAP Web AS with Integrated ITS

     Additional Information on SAP Internet Applications and the ITS

 

 

End of Content Area