SSO Options with DBMS User Management

From SAP NetWeaver AS you can enable single sign-on (SSO) options for database management system (DBMS) users.

The following table lists the options you can set for DBMS users in User Managment (transaction SU01).

SSO Options for DBMS Users
SSO Option	Description
Kerberos	Kerberos authentication (external) by specifying the user principal name (UPN) specified in the Microsoft Active Directory or the Kerberos Key Distribution Center as the external ID. For this option, provide the external ID to map to the DBMS user name. Tip We recommend you use DBMS user: Mass processing (report RSUSR_DBMS_USERS), which derives the external ID from the SNC name. The function in User Management (transaction SU01) requires you to enter the ID manually.
SAML	SAML authentication (external) by selecting the identity provider and then entering the user ID known by the SAML identity provider.
X509	X.509 certificates by adding the user's public key certificate(s).
SAP Logon Ticket	Users log on initially to a system to obtain a logon ticket. The issuing system uses cryptographic functions to digitally sign the logon ticket, thus certifying its authenticity. Users can then use the logon ticket to access other systems (SAP or non-SAP) that have an established trust relationship with the issuing system.
SAP Assertion Ticket	Authentication assertion tickets are a form of bearer token used to identify a user to another system.