Basic Authentication Against an SSO-Integrated Service

With basic authentication to an SSO-integrated back end, a user name and password are sent to SAP Mobile Platform Server, and the security profile uses the HTTP/HTTPS Authentication provider to pass the credentials to an SSO-enabled Web server for validation, which returns an SSO cookie to the security profile. Basic authentication against an SSO-integrated service is the least secure and the least common SAP Mobile Platform SSO scenario.

To ensure that SAP Mobile Platform Server knows who a user is after a successful SSO-based login, in Management Cockpit, select Check Impersonation in the security profile settings. When using the basic authentication scenario, SAP Mobile Platform already has the user name, but additional principals can be returned as well.