With this parameter you can configure the Web-based administration interface.
You have to set the parameter if you want to monitor and administrate the ICM with the browser.
For more information, see: Using the Web Administration Interface
To use the ICM administration functions you must have created an initial administration user for yourself in the browser. This procedure is described in Using the Web Administration Interface.
The ICM has opened the port that you as the administrator want to set up.
For more information, see: icm/server_port_<xx>, Option PORT
Work area |
Internet Communication Manager, SAP Web Dispatcher |
Unit |
Character string |
Standard value |
icm/HTTP/admin_0 = PREFIX=/sap/admin,DOCROOT=$(DIR_ICMAN_ROOT)/admin,AUTHFILE=$(icm/authfile) |
Dynamically changeable |
No |
The parameter has the following syntax:
Syntax
icm/HTTP/admin_<xx> = PREFIX=<URL-Präfix>, DOCROOT=<Verzeichnis> [, AUTHFILE=<Dateiname>, PORT=<Admin-Port>, HOST=<Admin-Host>, CLIENTHOST=<Admin-Client>]
This is explained below.
<xx> stands for a number. The numbers must be used from 0 in acendending order.
For more information, see: Generic profile parameters with the ending _<xx>
PREFIX: URL prefix that is called for this HTTP subhandler. The same procedure is used as with the SAP Web Dispatcher.
For more information, see: Processing Administration Requests
DOCROOT: Root directory of the administration files.
AUTHFILE: File name of the authoring file, where the hash values of the passwords for admin users are stored. Default value: icmauth.txt If you do not have to authenticate the user (for instance, if the user has already been authenticated in the http_auth handler), you can you can specify AUTHFILE=none.
For more information, see: icm/HTTP/auth_<xx>
Caution
In the authorization file users and their group affiliation are in plain text, and the passwords are encrypted. Protect the file from undesired reading in accordance with your security standards.
PORT: Local TCP/IP port where admin requests are accepted. This port must be specified in the parameter icm/server_port_<xx>. The relevant protocol is used according to whether the port is HTTP or HTTPS.
Recommendation
SAP recommends HTTPS, because otherwise the password of the admin user is transferred unencrypted.
Note
Note that you have to specify a port with PROT=HTTPS if you use HTTPS. You cannot use any port that is configured for End-to-End SSL (PROT=ROUTER).
HOST: Local host name or IP address where admin requests are accepted. If localhost or 127.0.0.1 is specified here, only local users can use the Web-based interface. If nothing is specified, admin requests are accepted by all host names.
CLIENTHOST: Name or IP address where admin requests are accepted. This can restrict administration to one client host. If nothing is specified, admin requests are accepted by each host.
If the parameter has the value
icm/HTTP/admin_<xx> = PREFIX=sap/icm/admin, DOCROOT=./admin, PORT=8888
and port 8888 is defined as an HTTPS port in
icm/server_port_0 = PROT=HTTPS, PORT=8888, TIMEOUT=15
and the host name is saphost the ICP files are located in the subdirectory admin in the executable directory. You can administrate the ICM from the browser by entering the URL
https://saphost:8888/sap/icm/admin
in every line.
Log on with the initial user that you created when setting up the Web Administration. See Creating Administration Users
Note the following documentation associated with this parameter: