Start of Content Area

Function documentation Single Sign-On for Web Services  Locate the document in its SAP Library structure

Use

SAP NetWeaver enables you to configure the use of several mechanisms to enable SSO for providing and consuming Web services (WS). Web services support interoperable machine-to-machine interaction over a network, where a call to a WS can pass through several WS intermediary systems. Therefore, for WS access the actual user authentication can be performed by an external system, which then enables the user to consume a WS with SSO.

Web services provided and consumed with SAP NetWeaver use the Simple Object Access Protocol (SOAP) over HTTP for communication purposes. Thereby, SAP NetWeaver enables you to use SSO mechanisms for WS consumption and provision at the respective communication protocol levels.

      Transport level authentication – the authentication information is transferred in the HTTP headers.

      Document level authentication – the authentication information is transferred  in the SOAP headers.

The Document authentication mechanisms are based on the WS-Security standard v1.0 (WS-Security 2004), developed by the Organization for the Advancement of Structured Information Standards (OASIS).

Integration

You can use Web services to enable system communication independently of the underlying technology stack. In addition, Web services enable communication over the Internet standard HTTP protocol, which enables you to exchange information among systems independently of their underlying programming language and using the standards based communication channels of the Internet.

The WS-Security standard for WS communication is a security standard for SOAP messages that does not rely on the security mechanisms available for the HTTP protocol. WS-Security enables you to use the standard XML format to securely exchange the user authentication and SSO information between Web service providers and consumers. In addition, WS-Security enables you to use additional document level security and authentication mechanisms such as digital XML signatures, XML encryption, time stamps, and security tokens. These document level authentication options enable you to adapt authentication and SSO to the specific requirements for using Web services.

Features

The configuration steps required for enabling authentication and SSO for WS depend on the underlying technology stack of SAP NetWeaver that you use.

 

 

End of Content Area