Show TOC Start of Content Area

Procedure documentation E-Commerce Logon Procedures  Locate the document in its SAP Library structure

Use

The logon procedures determine how users log on to the applications and the steps the system takes to verify users and perform checks on authorizations.

Within the Web-based application you can activate one of two following logon procedures.

      E-Commerce logon procedure

      E-Commerce logon procedure with UME

You carry out necessary configuration for the procedures in the usertype parameter in the Application Configurations area in Extended Configuration Management for the Web-based application. You do this as follows:

Lo ...

       1.      Log on to XCM at: http://<server>:<port>/<appname>/admin/xcm/init.do.

       2.      Select Start ® Application Configurations ® Customer and select the application configuration.

       3.      Choose Display Advanced Settings.

       4.      Set the value for the usertype parameter.

Note

Note that the CRM Web Channel B2C application has its own logon implementation and, therefore, does not integrate either of the two logon procedures specified above. Also, UME integration is not supported within B2C CRM Web Channel.

E-Commerce logon procedure

The E-Commerce logon procedure is technically part of the SAP E-Commerce Web application and has the following characteristics:

·        Logon using SU01, user IDs, user aliases, and SSO

·        Expired/existing password change

·        Switch to SSL before user logs on

·        Logoff function

·        It can read but not create a Single-Sign-On (SSO) ticket

·        Supports the SU05 to SU01 user migration concept

·        No cookies needed

·        All configuration is done in the E-Commerce XCM administration tool

E-Commerce logon procedure with UME

The User management Engine (UME) provides generic user management functionality for Web-based applications and is technically part of the SAP Web AS Java 7.0. UME is made up of a logon and a user administration interface. In SAP E-Commerce only the UME logon interface can be integrated to enhance your Web-based application logon functionality. It has the following characteristics:

·        It only works with user IDs

·        Support of several logon variants (Single sign-on, X.509, JAAS, etc)

·        UME defines its own user storage (e.g. user data can be stored in an external database or LDAP).

·        Enhanced password functionality (forgotten password, reset, contact administrator)

·        It reads and generates Single-Sign-On (SSO) tickets

·        Secure Sockets Layer (SSL) switch

·        Logoff function

·        Cookies needed

·        In addition to configuration in the CRM Web Channel application UME configuration is also needed. In addition your SAP CRM system must be configured to work with SSO tickets.  

Integrating UME with your E-Commerce logon procedure ensures that the system carries out the following checks when a user tries to logon to an application:

       1.      The system carries out the first check when the user logs on using the user ID and password. The system calls the UME logon application, which checks the user data and creates a Single-Sign-On (SSO) ticket if the check is successful.

       2.      The system uses this SSO ticket to perform the second security check, this time within the CRM Web Channel application the user is trying to access.

The E-Commerce logon procedure with UME runs as in the diagram below:

This graphic is explained in the accompanying text

 

Once logged on with the UME logon application, the user can access all SSO enabled applications using this SSO ticket.

Procedure

To enable the E-Commerce logon procedure with UME you need to carry out the following configuration activities:

       1.      Configure the UME logon application.

For more information on configuring the UME logon module, see the UME Configuration documentation in SAP Solution Manager.

       2.      Set the correct value for the usertype parameter in XCM (see above).

       3.      Configure the CRM backend system to accept the SSO tickets created by the UME.

       4.      Enable SSO switch in XCM (optional):

       Log on to XCM at: http://<server>:<port>/<appname>/admin/xcm/init.do

       Select Start  ® General Application Settings ® <appname> ® <appname>config

       Select the SSLEnabled parameter and set the value to true.

Note

To provide SSO functionality you must ensure that the used user ID for the logon is based on the SU01 user ID (and not the SU01 user alias). For more details, see E-Commerce with UME.

See Also

For more information on installing the E-Commerce logon procedure with UME, see SAP Note 805713.

 

End of Content Area