Entering content frame

Background documentation Scenarios for Changing the Password Locate the document in its SAP Library structure

The ICFX system logon can be used with every ICF logon procedure. Three scenarios are supported for logging on with user and password:

·        Logon using the logon ticket

·        Logon using basic authentication.

·        Logon when application is started

Logon Using the Logon Ticket (SSO Logon)

Once the user and password have been entered on the logon page the MYSAPSSO2 cookie is created that serves as the logon ticket. Applications started subsequently are authenticated using this ticket. The authentication remains active until the browser window is closed.

See also:

Password Changes in the SSO Environment

Prerequisites

·        The logon procedures Fields Authentication and SSO Authentication must be permitted in transaction SICF for the ICF node of your application.

To do this, in your application in the SICF on the title element Logon Data choose Alternative Sequence as the Procedure and the relevant two entries below this.

·        SSO must be configured correctly

·        Cookies must be allowed in the Web Browser

·        The URL must be fully qualified for starting the logon ( Structure linkFQDN)

Note

Logon using basic authentication becomes active when the SSO logon has been explicitly switched off (no logon with procedure SSO Authentication), or the SSO logon cannot be started due to an error in the configuration.

Logon Using Basic Authentication.

With basic authentication the authentication data is retrieved from the Web browser itself using a user dialog. For this reason on the system logon page these fields are inactive and are not activated until the user chooses the Logon pushbutton. The authentication remains valid until the browser window is closed.

See also:

Changing Your Password with Basic Authentication

Prerequisites

The logon procedure Basic Authentication must be permitted in transaction SICF for the ICF node of your application.
To do this, in your application in the SICF on the title element Logon Data choose Alternative Sequence as the Procedure and the relevant entry below this.

Logon When Application is Started (session-Based)

Caution

This procedure works only for applications that are stateful.

The authentication is valid only for the application just started. Once the application is closed or if the user switches to a different application the user must log on again.

The following applications work with the session-based logon procedure:

·        ITS applications

·        Web Dynpro applications

·        BSP applications that are stateful

Prerequisites

·        The logon procedure Fields Authentication must be permitted in transaction SICF for the ICF node. The logon procedures SSO Authentication and Basic Authentication must not be permitted.

To do this, in your application in the SICF on the title element Logon Data choose Alternative Sequence as the Procedure and the relevant entry below this.

·        Cookies must be allowed in the Web Browser

The URL must be fully qualified for starting the logon (Structure linkFQDN).

 

 

 

 

Leaving content frame