Configuring the Trust Relationship for SAML Token Profiles Without Logon Ticket Configuraiton for Validation with the Ticket PSE

If you do not want to use logon tickets in your system landscape, you need to manually configure the trust relationship between the systems and exchange the certificates.

Procedure

Export the WS provider certificate.
For more information, see the following:
- Exporting the AS ABAP Certificate
- Exporting the AS Java Certificate
Import the WS provider's certificate into the WS consumer.
- If the WS provider is SAP NetWeaver AS ABAP, see Trust Manager.
- If the WS provider is SAP NetWeaver AS Java, see Importing Certificate and Key From the File System.
Export the certificate of the WS consume.
For more information, see the following:
- Exporting the AS ABAP Certificate
- Exporting the AS Java Certificate
Import the WS consumer certificate into the WS provider.
- If the WS consumer is SAP NetWeaver AS ABAP, refer to Trust Manager.
- If the WS consumer is SAP NetWeaver AS Java, refer to Importing Certificate and Key From the File System.
Include the imported certificates in the access control lists of systems, if necessary