Authentication and Single Sign

More documents

Recommendations

Info

Support of SAML in the SAP WebAS 640 Java Only SAML client for authentication available at destination site is available Support limited • Only browser artifact scenario supported • Digital signatures for SOAP documents are ignored • No support for additional “Condition” elements • The received assertion may only contain one authentication statement • The authentication statement must contain the NameIdentifier • AuthorizationDesicionStatement and AttributeStatement are ignored Nevertheless SAML is strategic within SAP. In the future there will be further support for SAML. © SAP AG 2005, Authentication and Single Sign On / Patrick Hildenbrand / 28
Pluggable Authentication Service (PAS) Requires the external (standalone) version of the Internet Transaction Server (ITS) Provides the following authentication variants: • Windows NT LAN Manager protocol (NTLM) • Verifying user ID and password on the Windows domain controller • SSL and X.509 client certificates • Arbitrary mechanism on the Web server or an intermediate that sets HTTP header variable • LDAP bind • Arbitrary mechanisms provided by a partner product like Radius RSA SecureID Netegrity Siteminder ... © SAP AG 2005, Authentication and Single Sign On / Patrick Hildenbrand / 29
Page 1 and 2: Authentication and Single Sign-On P
Page 3 and 4: Authentication Identifies a Subject
Page 5 and 6: Why Use Single Sign-On? Typical sit
Page 7 and 8: What the Administrator Wants … Ce
Page 9 and 10: Web-Based Authentication Methods
Page 11 and 12: Authentication and SSL with X.509 C
Page 13 and 14: Obtaining a X.509 Certificate Digit
Page 15 and 16: SAP Logon Tickets - SSO Process Por
Page 17 and 18: What is a SAP Logon Ticket • SAP
Page 19 and 20: SSO to Non-SAP Components Using SAP
Page 21 and 22: Multi Domain SSO Recommendation:
Page 23 and 24: Adding the User Name Header • The
Page 25 and 26: Header Based Authentication Best Pr
Page 27: SAML - SSO Process Authentication A
Page 31 and 32: Pluggable Authentication Service: A
Page 33 and 34: JAAS Authentication J2EE Browser Wi
Page 35 and 36: Single Sign-On for SAP GUI for Wind
Page 37 and 38: SSO From Web to Traditional - ITS
Page 39 and 40: Prerequisites 1) Users have the sam
Page 41 and 42: System Preparation 1. Export Portal
Page 43 and 44: Agenda Authentication and Identitie
Page 45 and 46: Single Sign-On Possibilities Authen
Page 47 and 48: Further Information Public Web: ww

Authentication and Single Sign

Create successful ePaper yourself

Delete template?

Save as template?