- SAP NetWeaver Tutorial
- SAP NetWeaver - Home
- SAP NetWeaver - Introduction
- SAP NetWeaver - Architecture
- SAP NetWeaver - Components
- SAP NetWeaver - Release Details
- SAP NW - NW Version in ECC System
- SAP NetWeaver - Setting Up NW
- SAP NW - Installation Options
- Passing Parameters for Installation
- SAP NW - Transport Management
- Managing Background Jobs
- SAP NW - NW Business Client
- SAP NW - Service Configuration
- Business Client Installation
- NWBC Transaction & Navigation
- SAP Application based on NW
- SAP NetWeaver - Portal
- SAP NetWeaver - Create a System
- Enterprise Portal Roles & Group
- SAP NW - Knowledge Management
- SAP NW - KM Administration
- SAP NetWeaver - Developer Studio
- SAP NetWeaver - Web Content
- Process Integration Options
- SAP NetWeaver - Gateway
- SAP NetWeaver - Security
- SAP NetWeaver - PFCG Roles
- SAP NW - Authentication Methods
- SAP NW - Communication Security
- SAP NetWeaver Useful Resources
- SAP NW - Questions and Answers
- SAP NetWeaver - Quick Guide
- SAP NetWeaver - Useful Resources
- SAP NetWeaver - Discussion
SAP NetWeaver - Authentication Methods
To authenticate the user, the ABAP front-end server uses the authentication and Single Sign-On (SSO) mechanisms provided by SAP NetWeaver. Following mechanisms can be used for authentication
SPNEGO/KERBEROS
SPNEGO is used when a client application wants to authenticate to a remote server, but neither end is sure what authentication protocols the other supports. The pseudomechanism uses a protocol to determine what common Generic Security Services Application Program Interface (GSSAPI) mechanisms are available, selects one and then dispatches all further security operations to it. This can help organizations deploy new security mechanisms in a phased manner.
SAP Logon Tickets
SAP Logon Tickets represent user credentials in SAP systems. When enabled, the users can access multiple SAP applications and services through SAP GUI and web browsers without further username and password inputs. SAP Logon Tickets can also be a vehicle for enabling SSO across SAP boundaries. In some cases, logon tickets can be used to authenticate into third party applications such as Microsoft-based web applications.
X.509 Certificates
An X.509 certificate contains information about the identity to which a certificate is issued as well as the identity that issued it. Many of the certificates that people refer to as Secure Sockets Layer (SSL) certificates are in fact X.509 certificates.