Show TOC

Configuring a Reference System for User MappingLocate this document in the navigation structure

Prerequisites

  • Users have the same user ID in all ABAP back-end systems that are configured to use logon tickets for SSO. Passwords do not have to be identical.

  • The system you want to use as a reference system has been defined as a system object in the portal.

    The system must exist in the system landscape of the portal and have a system alias.

    For more information, see the following:

  • This procedure requires you to restart SAP NetWeaver Application Server (AS) Java. Plan for the required downtime while the AS Java restarts.

Context

When you use logon tickets for Single Sign-On (SSO) to ABAP-based systems, users must have the same user IDs in all ABAP-based systems that are configured to use logon tickets. If the ABAP user IDs are different from the portal user IDs, you must define a reference system. Users then map their portal user ID to the user ID in the reference system.

The mapped user ID is included in the logon ticket and enables SSO using logon tickets to all ABAP-based systems in which the user has the same user ID.

Procedure


  1. Set the user mapping properties.

    You must always set a value for the property User Mapping Type .

    For more information, see System Properties for User Mapping .

  2. Start UME configuration.

    For more information, see Configuring User Management .

  3. Choose the Modify pushbutton.

  4. Choose the User Mapping tab.

  5. In SAP Reference System field, select the system alias of the ABAP-based system.

  6. Save your entries.

  7. Restart the AS Java.

Results

You can either map the user ID or you can have the users map their own user IDs themselves. To map the user IDs for the users, you can use the identity management application of the AS Java. To enable users to map their own user IDs, you must enable users to edit their own profiles and then grant them access to an application that enables them to access their profile, such as the portal preferences.

For more information, see the following:

The user mapping function connects to the reference system using the user ID and password to verify that the password entered by the user is correct. The next time the user logs on to the portal, the portal generates a logon ticket for the user that contains both the portal user ID and mapped user ID.