Start of Content Area

Procedure documentation Configuring a Trust Relationship for SAML Token Profiles Without Logon Ticket Configuration  Locate the document in its SAP Library structure

Use

If you do not want to use logon tickets in your system landscape, you need to manually configure the trust relationship between the systems and exchange the certificates.

Prerequisites

      The X.509 client certificates for the WS Security PSEs have been signed by a Certification Authority, so that encryption can be used. The certificate contains the CA v3 extension Subject Key Identifier.

Procedure

...

       1.      Export the WS provider system certificate.

More information: Exporting the AS ABAP Certificate 

       2.      Import the WS provider system certificate into the WS consumer system.

More information: Trust Manager 

       3.      Export the WS consumer system certificate.

More information: Exporting the AS ABAP Certificate  

       4.      Import the WS consumer system certificate into the WS provider system.

More information: Trust Manager 

       5.      Include the imported certificates in the access control lists of systems, if necessary

 

 

End of Content Area