Logon and Security
On the Logon and Security tab page in transaction SM59, you can configure various logon data, authentication methods and security options, depending on the connection type.
Use
Make the following settings on the tab page:
Connection Types: ABAP, R/2, Logical, TCP/IP (2, 3, L, T)
Trust relationship (for type 3 only) If the target system is a Trusted System select Yes.
· Logon screen
Here, you can determine whether a logon screen should appear the first time the destination is called.
You should not use this option with background programs.
The logon screen cannot be used together with a trusted system relationship.
SNC (Secure Network Communications only available for types 3 and T)
If you have an active SNC-supported security system, you can activate additional security options that you set by editing the SNC options.
· Authorization
If you enter a literal in this field, the system performs a check on the client side at runtime to check whether the caller has the relevant authorization to call via this destination. The specified literal must be entered in the caller’s authorization profile in authorization object S_ICF.
· For the destination in transaction SM59, enter the following data:
· Value in field AUTHORITY of destination: "CHECK".
· In authorization object S_ICF, define the following:
· Value in field ICF_FIELD: "DEST"
· Value in field ICF_VALUE: "CHECK".
· Logon
· Language
System language to be used
· Client
Client code
· User
User name to be used for remote logon, if different from current user name
· Password Status
Whether a user password has already been saved
· Password
User password
· Current User
The logon to the remote system should be performed using the currently logged on user name.
Connection Types: Internal, CMC, ABAP Driver (I, M, X)
· Authorization
If you enter a literal in this field, the system performs a check on the client side at runtime to check whether the caller has the relevant authorization to call via this destination. The specified literal must be entered in the caller’s authorization profile in authorization object S_ICF.
· For the destination in transaction SM59, enter the following data:
· Value in field AUTHORITY of destination: "CHECK".
· In authorization object S_ICF, define the following:
· Value in field ICF_FIELD: "DEST"
· Value in field ICF_VALUE: "CHECK".
Connection types HTTP/External and HTTP/ABAP (G, H)
Logon Procedure
· Logon with User
In this section you can specify what sort of Authentication you want to user for the destination with a logon that is to use a user.
· Logon with Ticket
If the logon is not with a user but with a Logon Ticket then you can make the necessary settings in this section.
Security Options
· Status of Secure Log
Here, you can determine whether to use SSL for the destination, and enter the relevant SSL client certificate if applicable.
You can also determine whether to use the SAP logon ticket for the authentication.
· Authorization for the Destination
If you enter a literal in this field, the system performs a check on the client side at runtime to check whether the caller has the relevant authorization to call via this destination. The specified literal must be entered in the caller’s authorization profile in authorization object S_ICF.
· For the destination in transaction SM59, enter the following data:
· Value in field AUTHORITY of destination: "CHECK".
· In authorization object S_ICF, define the following:
· Value in field ICF_FIELD: "DEST"
· Value in field ICF_VALUE: "CHECK".
· Logon
· Language (HTTP/ABAP only)
System language to be used
· Client (HTTP/ABAP only)
Client code
· User
User name to be used for remote logon, if different from current user name
· Password Status
Whether a user password has already been saved
· Password
User password
· Current User (HTTP/ABAP only)
The logon to the remote system should be performed using the currently logged on user name.