Prerequisites (SAP Library - Web Dynpro for ABAP)

Prerequisites

SAP Web AS System

You are using a system from SAP Web AS 6.40 and have implemented at least Support Package 2.

Checklist for configuration in the system

The following is set in the SAP Web AS System.

Short instructions for configuring the security functionality (SSO2)

Note

You only need these settings if you want to support SSO2. This means they are optional.

Also note that the SAP Cryptographic Library is not needed. For SSO2 the SAP Security Library is sufficient. This delivered in the standard SAP Web AS System.

...

1. The profile parameter login/accept_sso2_ticket is set to 1 and login/create_sso2_ticket set to 1 or 2.

You can find details in Structure link Configuring the System for Issuing Logon Tickets.

2. The system is now restarted.

3. The SAP Web AS is configured for Structure link using SSL (optional, but recommended):

...

a. A PSE was generated.
You can find details in Structure link Creating SSL Server PSE.

b. A certificate requirement was created for the PSE.
You can find details in Structure link Creating Certificate Requirements for the SSL Server PSEs.

c. The certificate requirement was sent to a certification authority (CA)
You can find details in Structure link Sending Certificate Requirements to a CA.

d. The generated PSE was imported.
You can find details in Structure link Importing Certificate Replies.

e. The certificate list of the PSE was entered.
You can find details in Structure link Maintaining the SSL Server PSE Certificate List

Note

These settings are all explained in Structure link Security on the SAP Web Application Server.
See also Note 51007 “Setting Up SSL On the Web Application Server”.

Configuring the Internet Communication Manager (ICM)

In the Structure link Internet Communication Manager (ICM) you have configured the HTTPS service (in Goto ® Services in Transaction SMICM), see also Displaying and Changing Services.

Testing the Settings

See Testing Security Settings

Browser

End users have the option to have browser cookies activated in their browser’s security settings.

When the user ID and password is sent, the activation of cookies in the browser is checked. If it is determined that the browser does not accept cookies, which is why SS02 is not supported and cannot be used, the user receives a confirmation with the option of performing the logon once again using Basic Authentication.