Administration When Using the Pluggable Authentication Service (SAP Library

Administration When Using the Pluggable Authentication Service

The pluggable authentication service (PAS) is a service that is available with the stand-alone Internet Transaction Server (ITS). It allows you to authenticate your SAP users using external mechanisms instead of those provided by SAP. Based on the external authentication, the PAS issues the user a logon ticket, which is then used for further authentication when accessing the SAP services. In this way, you can integrate your SAP services into an existing Single Sign-On environment that uses non-SAP authentication.

Prerequisites

The system is configured for using PAS. For more information, see Structure link Pluggable Authentication Services for External Authentication.

Restrictions

Access to the ticket-issuing server must take place over a stand-alone ITS.

Tasks on Demand

The tasks involved with PAS are primarily configuration, however, when you create a new user you must also Structure link maintain his or her external user ID in the table USREXTID.

Note

You can use table maintenance (transaction SM30) to maintain this table directly or you can schedule the report RSUSREXTID to fill this table on a regular basis.