Integration of Security Administration in the SAP NetWeaver Admi (SAP Library - Release Notes for SAP NetWeaver Syst./Standalone Engines) Administrator (Enhanced)

Integration of Security Administration in the SAP NetWeaver Administrator (Enhanced)

Use

The security administration and configuration functions are integrated in the SAP NetWeaver Administrator (NWA). The security functions in the NWA enable security administrators to manage security configuration from a Web browser. In addition, the NWA enables management of stand-alone SAP NetWeaver systems or of remote systems registered in a System Landscape Directory.

The security management functions in the NWA replace the Visual Administrator as the security administration and configuration tool.

Effects on System Administration

The NWA enables Web browser based management of the following security administration and configuration functions:

· Authentication Policy Management

The SAP NetWeaver Administrator enables login module and authentication policy administration from a Web browser.

Authentication administrators can manage login module options and the login module order in an authentication stack for stand alone SAP NetWeaver systems or for remote systems registered in a System Landscape Directory.

· Keystoremanagement

Security administrators can manage system key storage from the SAP NetWeaver Administrator.

Security administrators use a web browser to access Key Storage Management and manage public key certificates, key pairs, key storage view and review code based security settings.

· Wizard based configuration of trusted systems for logon ticket SSO

Security administrators can use a configuration wizard to configure trust between SAP NetWeaver systems for Single Sign-On with logon tickets.

Security administrators choose the AS ABAP or AS Java based system to configure to accept logon tickets from a SLD directory. The wizard provides step-by-step guidance in configuring a ticket accepting system and enables both automatic discovery of the certificate of the ticket issuing system or manual import of the certificate from the file system.

· SAML trusted partners configuration in NWA

Security administrators can use the trusted systems management functions of the NWA to configure systems in a SLD for SSO with Security Assertion Markup Language (SAML).

· Destination Service

The Desination service has also been integrated in the NWA. System administrators can use the Destination service to set up remote connections to other AS Java or AS ABAP systems.