Purpose
With this PAS option, the user’s Windows ID and password are verified on the Windows NT domain controller. The user must therefore provide his or her Windows domain user ID and password when he or she accesses the PAS service. The PAS then verifies this information with the Windows domain controller. If successful, then the user’s ID in the SAP system is obtained from the user external ID mapping table and a logon ticket is created for the user. Single Sign-On is then available to SAP services using the logon ticket.
Prerequisites
For the prerequisites for using Windows NT domain authentication for PAS, see the following topics:
Process Flow
See the graphic below:
Using User ID and Password Verification on the Windows NT domain controller
The process is as follows:
Result
The user accesses the SAP service after authenticating him or herself using his or her Windows NT domain user ID and password.
When the user accesses further SAP services, the logon ticket is used for Single Sign-On access.