Kontakt

Ansicht
Dokumentation

SSO2ADMU - Logon Ticket Administration for Single Sign-On (SSO)

SSO2ADMU - Logon Ticket Administration for Single Sign-On (SSO)

Fill RESBD Structure from EBP Component Structure   SUBST_MERGE_LIST - merge external lists to one complete list with #if... logic for R3up  
This documentation is copyright by SAP AG.
SAP E-Book

Title

Transaction SSO2 Single Sign-On Administration Server.

Purpose

Wizard for connecting a component system to a Workplace Server.

Features

Selection

Enter RFC destination or the host name and system number of the Workplace Server (WPS)

Output

Display Workplace Server information

  • System ID and client
  • Certificate (indicates whether the certificate is in the certificate list or access control list (ACL).
  • Profile parameter login/create_sso2_ticket
  • Determines whether the certificate must be added to the certificate list.

Display component system information

  • System ID and client
  • Profile parameter login/accept_sso2_ticket
  • Certificate list (indicates whether the Workplace Server certificate is in the list).
  • Access control list (indicates whether the Workplace Server certificate is in the list).

Activities

Main function of Workplace aktivieren button

The Workplace Server is added to the access control list and the Workplace Server certificate is added to the certificate list, if necessary.

Expert functions (in menu)

  • Enter SAP CA certificate in certificate list.
  • Enter Workplace Server certificate in certificate list
  • Remove certificate from certificate list
  • Add Workplace Server to access control list
  • Remove entry from access control list

Example

Technical Details

Workplace Server Release must be at least 4.6C.

The Workplace Server can be activated as often as needed.

If Workplace Server connection data is not specified, the system only displays the status of the local system.

If you enter the host and system number instead of an RFC destination on the selection screen, the system creates an RFC destination

_ and then uses this destination.

To check whether the Workplace Server certificate is signed by the SAP CA, compare the name of the issuer with the name of the issuer on the SAP CA certificate. You do not need to use a verify function.

All changes are saved immediately (including distribution of the file containing the certificate list (Personal Security Environment PSE) to all active application servers).

As of Release 4.6C, the system PSE is edited locally. Up to Release 4.6B, a new PSE (file name SAPSSO2.pse in directory DIR_GLOBAL) is used.

For PSE administration, the functions in function group SSFP that are called using RFC are either called from the Workplace Server (if the current system release is older than 4.6C) or locally (if the current system release is 4.6C or higher).

Title

Purpose

Integration

Prerequisites

Features

Selection

Standard Variants

Output

Activities

Example






SUBST_MERGE_LIST - merge external lists to one complete list with #if... logic for R3up   rdisp/max_wprun_time - Maximum work process run time  
This documentation is copyright by SAP AG.

Length: 3778 Date: 20240601 Time: 075922     sap01-206 ( 56 ms )