Show TOC Start of Content Area

Background documentation Integration into Single Sign-On Environments  Locate the document in its SAP Library structure

Use

Guided Procedures running in a portal environment supports the Single Sign-On (SSO) mechanisms provided by the Application Server Java. Therefore, the security recommendations and guidelines for user administration and authentication as described in the SAP NetWeaver Application Server Java Security Guide also apply to GP.

The supported mechanisms are listed below.

Secure Network Communications (SNC)

SNC is available for user authentication and provides an SSO environment when using Remote Function Calls.

SAP Logon Tickets

GP supports the use of logon tickets for SSO when using a Web browser as the front-end client. In this case, users can be issued a logon ticket after they have authenticated themselves with the initial SAP system.  The ticket can then be submitted to other systems (SAP or external systems) as an authentication token. The user does not need to enter a user ID or password for authentication, but can access the system directly after the system has checked the logon ticket.

Client Certificates

As an alternative to authentication with a user ID and password, users using a Web browser as a front-end client can also provide X.509 client certificates for authentication. In this case, user authentication is performed on the Web server with the Secure Sockets Layer Protocol (SSL Protocol) and no passwords have to be transferred. User authorizations are valid in accordance with the authorization concept in the SAP system.

More Information

Integration Into Single Sign-On Environments in the Portal Security Guide

 

End of Content Area