Show TOC

Single Sign-On for Web-Based AccessLocate this document in the navigation structure


SAP NetWeaver enables you to use a number of options for Single Sign-On (SSO) when users access the system from a web client, such as a web browser. You can use the SSO options for web-based access to enable users to securely access information and back-end system resources located in an intranet or on the Internet. The communication for web-based authentication and respectively access authentication use mechanisms that are supported by the HTTP protocol for Internet communication.


For this access scenario, users can access resources from a web browser. SAP NetWeaver Application Server (SAP NetWeaver AS) Java and ABAP are the technology stacks that support the authentication functions for the web-based access to SAP NetWeaver AS.

The authentication functions of SAP Enterprise Portal are enabled by SAP NetWeaver Application Server Java. You can access AS ABAP web-enabled applications by using the Internet Communication Framework (ICF).

SAP NetWeaver Application Server ABAP and AS Java enable you to use a number of authentication options for integrating web-based user access in SSO environments. For advanced integration scenarios, for example logon tickets, SAML, and client certificates, SAP NetWeaver Application Server ABAP and AS Java enable the use of cryptographic functions to support the security of the authentication process.

For more information, see Digital Signatures and Encryption .

To increase security of the user authentication and SSO process for open environments such as the Internet, you can also use network and transport layer security mechanisms.

For more information, see Network and Transport Layer Security .

In addition, the identity management functions of SAP NetWeaver AS enable you to manage the users that can access resources in a SSO environment.

For more information, see Identity Management .