Show TOC

 Configuring SNC Between the UME and an ABAP-Based SystemLocate this document in the navigation structure

Use

You can set up the User Management Engine (UME) to use an ABAP-based system as a data source for user management data. The UMEuses the Java Connector and RFC to connect to the SAP NetWeaver Application Server (AS) ABAP. To secure these connections, you use Secure Network Communications (SNC).

Prerequisites
  • Your UME is configured to use an ABAP-based system as its data source.
  • As part of configuring SNC between an AS Java and an AS ABAP, you have performed all steps required prior to setting the SNC parameters on the AS Java. For more information, see Configuring SNC Between AS Java and AS ABAP .
  • This procedure requires you to restart the AS Java so you should plan for the required down time while the AS Java restarts
Procedure
  1. Edit the required UME properties as required.

    For more information about editing UME properties, see Editing UME Properties .

    Note

    In the following property names, the default value for <adapterID> for an ABAP-based  system used as a data source is master . Check the UMEproperty ume.logon.r3master.adapterid to see if it has been set to a different value.

    Property Description

    ume.r3.connection. <adapterID>.snc_lib

    Optional.

    Location of cryptographic library.

    ume.r3.connection. <adapterID>.snc_myname

    SNC name of the UME. This is the distinguished name in the UME PSE in the following format: p:<distinguished_name_of_UME_PSE>

    ume.r3.connection. <adapterID>.snc_partnername

    Required.

    SNC name of ABAP system. This is the distinguished name in the ABAP system's SNC PSE in the following format: p:<dist inguished_name_of_R/3_PSE>

    ume.r3.connection. <adapterID>.snc_mode

    Required.

    To activate SNC, this must be set to 1 .

    ume.r3.connection. <adapterID>.snc_qop

    Optional.

    Level of protection to use for the connection.
  2. Assign the SNC name of the UME to the system user for UME-ABAP communication.
    1. On the AS ABAP system, use transaction SU01 to edit the system user for UME-ABAP communication.
    2. Choose the SNC tab.
    3. Enter the SNC name for the UME.

      This is the same name you entered for the UME property ume.r3.connection.<adapterID>.snc_myname.

    4. Choose  with the quick info text Save.

    For more information about the system user for UME-ABAP communication, see Requirements for the System User for UME-ABAP Communication .

  3. Restart the AS Java.
Result

You have configured the UME for SNC communication with the AS ABAP back-end system.

You must still maintain the system ACL on the AS ABAP. For more information, see Maintaining the System ACL on the Application Server .

Example

The following is an example of values for the UMEproperties required for SNC.

Property Value

ume.r3.connection. master.snc_lib

c:\SAPJ2EE_Engine\SAPCryptoLib\sapcrypto.dll

ume.r3.connection. master.snc_myname

p:CN=UME, OU=MYOU, O=MYCOMPANY, C=DE

ume.r3.connection. master.snc_partnername

p:CN=ABC, OU=MYOU, O=MYCOMPANY, C=DE

ume.r3.connection. master.snc_mode

1