Authentication and Single Sign

More documents

Recommendations

Info

Ticket Verification for Non-SAP Components Web Server Filter • SSO with SAP Logon Tickets to Web applications • Application needs to support authentication with an HTTP header variable Web Server Filter with Delegation for Windows Server 2003 • SSO with SAP Logon Tickets to a Microsoft Web-based application Java Ticket Verification Library • SSO with SAP Logon Tickets to non-SAP Java applications • Development required C Ticket Verification Library • SSO with SAP Logon Tickets to non-SAP C applications • Development required Dynamic Link Library SAPSSOEXT • SSO with SAP Logon Tickets to Java and C applications • Available for most kernel platforms • Development required Remark: Platform limitations may apply! © SAP AG 2005, Authentication and Single Sign On / Patrick Hildenbrand / 20
Multi Domain SSO Recommendation: • Use one DNS (sub-) domain for SSO purposes ( increased security!) • E.g. portal.sso.company.com, its.sso.company.com, … • Set UME property ”domainrelaxlevel” accordingly Alternative: Configure SAP EP for multi domain SSO • Ticket sending instances required in every domain • Portal sends SAP Logon Ticket content via client redirects to every ticket sending instance. • Client will get as many cookies as domains (also see SAP Note 654982) • Configuration details: http://help.sap.com Netweaver '04 documentation Security User Authentication and Single Sign-On Authentication on the Portal Single Sign-On Single Sign-On with SAP Logon Tickets • EP6 SP2 only supported on per project basis, see SAP note 673824 © SAP AG 2005, Authentication and Single Sign On / Patrick Hildenbrand / 21
Page 1 and 2: Authentication and Single Sign-On P
Page 3 and 4: Authentication Identifies a Subject
Page 5 and 6: Why Use Single Sign-On? Typical sit
Page 7 and 8: What the Administrator Wants … Ce
Page 9 and 10: Web-Based Authentication Methods
Page 11 and 12: Authentication and SSL with X.509 C
Page 13 and 14: Obtaining a X.509 Certificate Digit
Page 15 and 16: SAP Logon Tickets - SSO Process Por
Page 17 and 18: What is a SAP Logon Ticket • SAP
Page 19: SSO to Non-SAP Components Using SAP
Page 23 and 24: Adding the User Name Header • The
Page 25 and 26: Header Based Authentication Best Pr
Page 27 and 28: SAML - SSO Process Authentication A
Page 29 and 30: Pluggable Authentication Service (P
Page 31 and 32: Pluggable Authentication Service: A
Page 33 and 34: JAAS Authentication J2EE Browser Wi
Page 35 and 36: Single Sign-On for SAP GUI for Wind
Page 37 and 38: SSO From Web to Traditional - ITS
Page 39 and 40: Prerequisites 1) Users have the sam
Page 41 and 42: System Preparation 1. Export Portal
Page 43 and 44: Agenda Authentication and Identitie
Page 45 and 46: Single Sign-On Possibilities Authen
Page 47 and 48: Further Information Public Web: ww

Authentication and Single Sign

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?