on 04-05-2009 7:08 PM
Hello All,
I have been reading a lot on SSO these days and just trying to understand the concepts better.I have configured SSO in my landscape with no issues but I did that by reading the guides and all.
I have some confusions
what does the parameter login/create_sso2_ticket signifies.
I know that the value of this can be either 0 or 1 or 2
I have configured 2 in my system
but what does these values(0,1,2) signifies.
Please dont refer to the links.I have gone through many links but I want to understand the concept behind this,banking on you all to help me out with this
Thanks
Rohit
Hi,
You can use Single Sign-On (SSO) tickets to allow SSO between SAP systems, and even beyond to non-SAP systems. An SSO ticket can be a logon ticket or an assertion ticket. The logon ticket is transferred as a cookie with the name MYSAPSSO2. The assertion ticket is transferred as an HTTP header variable with the name MYSAPSSO2. Note that this requires additional configuration steps for the issuing and accepting systems.
The issuing system should permit the generation of an SSO ticket
The SSO tickets are significantly smaller without the certificate.
By default kernel value is set to 3
Regards,
PARAMVIRSINH JETAWAT
SAP BASIS CONSULTANT
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
goto RZ11 input you parameter and press info
you will get all the informantion
Samrat
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Values mean,
login/create_sso2_ticket = 0 : Ticket generation deactivated
login/create_sso2_ticket = 1 : SSO ticket including certificate
login/create_sso2_ticket = 2 : SSO ticket without certificate
Regards
Juan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Rohit
login/accept_sso2_ticket should be always set to '1' as the system needs to accept the ticket.
login/create_sso2_ticket :
1. Set login/create_sso2_ticket = 0 unless the server should also be able to issue tickets.
2. If the application server should also be able to create logon tickets, set the profile parameter login/create_sso2_ticket to the value 1 or 2 in instance profile.
You could manage with create* = 0. and why not give it a try !
Bhudev
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.