Configuring the System for Issuing Logon
Tickets
Procedure
...
Set the following profile parameters on the SAP Web Application Server:
Profile Parameters Used for Logon Tickets
Parameter |
Value |
Comment |
login/accept_sso2_ticket |
1 |
Allows the server to accept an existing logon ticket. |
login/create_sso2_ticket |
2 |
|
login/ticket_expiration_time |
Desired value |
Default = 60 hours |
For more information, see the documentation provided for the profile parameters in transaction RZ11.
You can use the SSO administration wizard to view the current server's SSO configuration. (Execute the tool without specifying an RFC destination.)
Renewing the Server’s Certificate
You should replace
the server’s SSO PSE before the public-key certificate expires.
Otherwise users will not be able to receive a logon ticket and will not be
able to use Single Sign-On. See
Creating or Replacing
a PSE.