To set up the use of Microsoft NTLM with SAP systems, you need to authorize SAP users to log on with SSO by assigning them to Windows users.
You have completed the following procedures:
The User Maintenance window appears.
p:<DOMAIN_NAME>\<NT_USERNAME>
where <DOMAIN_NAME> is the Windows domain that the Windows user belongs to
and <NT_USERNAME> is the logon ID of the Windows user.
p: is a prefix that all SNC names require.
For the Windows user Miller belonging to the domain MYDOMAIN, enter:
p:MYDOMAIN\MILLER
This can be useful, for example, to let the user work in a different domain where SSO using NTLM is not available.
You have now finished setting up SSO. The next time this SAP system user logs on to the system, the application is opened without requiring the user to enter a user name and password.
If only one possible match exists between the Windows account and the SAP system user ID, the logon screen is skipped, unless the profile parameter snc/force_login_screen = 1 is present in the instance profile of the application server.