User Administration and Authentication

Use

The SAP NetWeaver Mobile scenario uses the user management and authentication mechanisms provided with the SAP NetWeaver platform, in particular the SAP NetWeaver Application Server for ABAP and Java. Therefore, the security recommendations and guidelines for user administration and authentication as described in the SAP NetWeaver Application Server for ABAP Security Guide and SAP NetWeaver Application Server for Java Security Guide also apply to SAP NetWeaver Mobile.

In addition to these guidelines, we include information about user administration and authentication that specifically applies to the SAP NetWeaver Mobile in the following topics:

• User Management

  This topic lists the tools to use for user management, the types of users required, and the standard users that are delivered with the SAP NetWeaver Mobile scenario.

• User Data Synchronization

  The Data Orchestration Engine shares user data with the mobile client and the back end. This topic describes how the user data is synchronized with these other sources.

• Integration into Single Sign-On Environments

  You can configure the mobile client to support single sign-on (SSO) if the device is available with an online connection. The SSO technology is based on SAP logon tickets.

• Passwords (Without Single Sign-On)

  The user management of the mobile client manages user IDs and local logon passwords. The local logon password is used for local user authentication. A second password, called the synchronization password, is used for synchronization with the DOE. The technical difference between the local logon password and the synchronization password allows you to scale on the basis of security and usability.