SAP NetWeaver enables you to use a number of options for Single Sign-On (SSO) when users access the system from a web client, such as a web browser. You can use the SSO options for web-based access to enable users to securely access information and back-end system resources located in an intranet or on the Internet. The communication for web-based authentication and respectively access authentication use mechanisms that are supported by the HTTP protocol for Internet communication.
For this access scenario, users can access resources from a web browser. The technology stacks of SAP NetWeaver Application Server (SAP NetWeaver Application Server) support the authentication functions for web-based access.
The authentication functions of SAP NetWeaver Portal are enabled by SAP NetWeaver AS for Java.
For SAP NetWeaver Application Server for ABAP, you can access web-enabled applications by using the Internet Communication Framework (ICF).
SAP NetWeaver Application Server enables you to use a number of authentication options for integrating web-based user access in SSO environments. For advanced integration scenarios, for example logon tickets, SAML, and client certificates, SAP NetWeaver Application Server enables the use of cryptographic functions to support the security of the authentication process.
To increase security of the user authentication and SSO process for open environments such as the Internet, you can also use network and transport layer security mechanisms.
In addition, the identity management functions of SAP NetWeaver Application Server enables you to manage the users that can access resources in a SSO environment.