Authentication on the J2EE Engine 
Purpose
The J2EE Engine implements the Java Authentication and Authorization Service (JAAS) standard to support various authentication methods. This enables you to choose the required authentication mechanisms for your applications.
Applications running on the J2EE Engine can either use declarative or programmatic authentication. Both types of authentication rely on the same underlying technology, login modules and login module stacks. Programmatic authentication additionally uses authentication schemes. SAP ships login modules and authentication schemes to support various authentication mechanisms. The following sections describe these concepts and include configuration steps:
● Declarative and Programmatic Authentication
Explains the difference between declarative (container-based) authentication and programmatic (UME) authentication. The type of authentication that an application uses has consequences for the login module stack it uses and on where you configure authentication.
● Login Modules and Login Module Stacks
Provides conceptual and configuration information about login modules and login module stacks. These are part of the Java Authentication and Authorization Services (JAAS) standard. Both declarative and programmatic authentication are based on login modules and login module stacks. Login modules define authentication logic. Login module stacks enable you to define a sequence of authentication logic performed for an application.
Provides conceptual and configuration information on authentication schemes that are used in programmatic authentication only.
● Configuring Authentication Mechanisms
Describes how to configure different authentication types, such as Basic authentication with username and password, client certificates authentication, SAP logon tickets, Simple Assertion Markup Language (SAML) and Kerberos authentication.
See also:
J2EE Engine User
ManagementAuthentication for Web Applications Users on the J2EE Engine in the Developers Manual