Tuesday, June 28

No Need to Remember SAP System Passwords - Implement SSO

What is SSO ?
As the name suggests, single sign on is a feature of SAP EP which enables users to logon to multiple systems during a sessions using only one username and password. SAP EP has various applications integrated into it and users can access those applications. These applications connect to various backend systems. Each system may have login credentials. But when a system is created in SAP EP and user is logged to SAP EP and tries to access data from a system, he not required to logon to that system again if single sign on is configured in the SAP Enterprise portal.
So how do we implement SSO in SAP EP?
There are 2 methods to do it:
1.    Using User mapping and
2.    Using logon tickets. Logon tickets method is recommended by SAP.
User mapping
User mapping can be used when the system is not able to accept the logon tickets. So the mapping is done between the portal ID and user-id and password of the target system. It is not necessary that portal logon id and ECC system logon id are same.
To create a SSO, you need to create a system in portal. Then you need to set various necessary properties of the system created. The logon method property of the system must be set to UIDPW. Also you need to set user mapping to access SAP ECC.
During single sign, secure information that is the user ID and password of the user are sent across network, so a secure protocol for the communication must be used. Recommended is secure socket layer protocol.
Logon tickets
Logon tickets are essentially ticket of user credentials and not the actual user credentials. They do not contain any passwords. This ticket is issued by the portal server after the user has logged in successfully. This ticket is stored in user’s local machine or client as a cookie. Then it can be used by  the external applications like SAP systems to logon. Logon ticket may contain portal user ID and a mapped user ID for logging on to external applications. It contains the valildity period, it contains the information which identifies the system which issued the logon ticket. It also may contain digital signature.

Single Sign On for Non-SAP Applications

Related Posts :

Save Costs, Time, and Efforts-install Business Packages
What Is an Enterprise Portal?

Posted by Mohammed Bohra at 12:39 AM
Labels: learn sap ep online, sap system password, single sign on, what is sap, what is sap ep, what is SSO. SSO

No comments:

Post a Comment

You are welcome to express your views here...

Subscribe to: Post Comments (Atom)