Show TOC Start of Content Area

Procedure documentation Configuring SNC Between the UME and an ABAP-Based System  Locate the document in its SAP Library structure

Use

You can set up the User Management Engine (UME) to use an ABAP-based system as a data source for user management data. The UME uses the Java Connector and RFC to connect to the SAP NetWeaver Application Server (AS) ABAP. To secure these connections, you use Secure Network Communications (SNC).

Prerequisites

      Your UME is configured to use an ABAP-based system as its data source.

      As part of configuring SNC between an AS Java and an AS ABAP, you have performed all steps required prior to setting the SNC parameters on the AS Java. For more information, see Configuring SNC Between AS Java and AS ABAP.

      This procedure requires you to restart the AS Java so you should plan for the required down time while the AS Java restarts

Procedure

...

       1.      Edit the required UME properties as required.

For more information about editing UME properties, see Editing UME Properties.

Note

In the following property names, the default value for <adapterID> for an ABAP-based  system used as a data source is master. Check the UME property ume.logon.r3master.adapterid to see if it has been set to a different value.

Property

Description

ume.r3.connection.
<adapterID>.snc_lib

Optional.

Location of cryptographic library.

ume.r3.connection.
<adapterID>.snc_myname

SNC name of the UME. This is the distinguished name in the UME PSE in the following format:
p:<distinguished_name_of_UME_PSE>

ume.r3.connection.
<adapterID>.snc_partnername

Required.

SNC name of ABAP system. This is the distinguished name in the ABAP system’s SNC PSE in the following format:
p:<distinguished_name_of_R/3_PSE>

ume.r3.connection.
<adapterID>.snc_mode

Required.

To activate SNC, this must be set to 1.

ume.r3.connection.
<adapterID>.snc_qop

Optional.

Level of protection to use for the connection.

       2.      Assign the SNC name of the UME to the system user for UME-ABAP communication.

                            a.      On the AS ABAP system, use transaction SU01 to edit the system user for UME-ABAP communication.

                            b.      Choose the SNC tab.

                            c.      Enter the SNC name for the UME.

This is the same name you entered for the UME property ume.r3.connection.<adapterID>.snc_myname.

                            d.      Choose This graphic is explained in the accompanying text with the quick info text Save.

For more information about the system user for UME-ABAP communication, see Requirements for the System User for UME-ABAP Communication.

       3.      Restart the AS Java.

Result

You have configured the UME for SNC communication with the AS ABAP back-end system.

You must still maintain the system ACL on the AS ABAP. For more information, see Maintaining the System ACL on the Application Server.

Example

The following is an example of values for the UME properties required for SNC.

Property

Value

ume.r3.connection.
master.snc_lib

c:\SAPJ2EE_Engine\SAPCryptoLib\sapcrypto.dll

ume.r3.connection.
master.snc_myname

p:CN=UME, OU=MYOU, O=MYCOMPANY, C=DE

ume.r3.connection.
master.snc_partnername

p:CN=ABC, OU=MYOU, O=MYCOMPANY, C=DE

ume.r3.connection.
master.snc_mode

1

 

End of Content Area