You can use the security configuration options of SAP NetWeaver to enforce access control by requiring users to interactively enter their user ID and password. Users can submit their credentials in a browser popup or using a specifically designed Web page.
For the case where users have to access multiple SAP NetWeaver systems, you can enable SSO by using an intermediary mapping system to map user IDs in different systems.
After a user enters and submits a user ID and a password, these authentication credentials are transported over the network to the SAP NetWeaver Application Server (AS). The SAP NetWeaver system checks the authentication credentials and uses its Identity Management functions to determine the user account authorizations on successful authentication.
For more information about authorizations in SAP NetWeaver, see Identity Management .
Your SAP NetWeaver systems can deploy cryptographic solutions to protect the integrity and confidentiality of the user ID and password during their transport over the network. For additional security and in open communication environments such as the Internet, however, we recommend that you enable transport layer security solutions, such as Secure Socket Layer or Secure Network Communications (SNC).
For more information, see Network and Transport Layer Security .
Depending on the methods used to protect the confidentiality and integrity of the user ID and password, SAP NetWeaver can use the HTTP standard basic, form, and digest authentication.
For more information about the security aspects when using the user ID and password authentication, see Basic Authentication (User ID and Password) .
To authenticate users with a user ID and password, you have to configure the appropriate SAP NetWeaver Application Server mechanism.
The configuration activities depend on the underlying technology used for the SAP NetWeaver Application Server.
For more information, see the following sections: