07-15-2010 10:37 PM
Hi
Has anyone come across a good detailed technical document that articulates the SSO integration between SAP and CA?
I have to write a paper to move from an ITS integration to a NetWeaver /supported build.
I am a CA SiteMinder consultant and a very long time ago used to be a Basis consultant so I understand both contexts but obviously looking to reduce the amount of writing i need to do....................
07-15-2010 11:31 PM
Hi Derek,
Let me try add some extra value here...
SAP doesn't offer a documentation about how to implement eTrust SiteMinder for SAP WAS. Maybe CA can have information about this.
In SAP Note 1257108 you can see the following:
"...
Other third-party products for SSO (for example CA's SiteMinder) may be
functional, but since SAP's support does not have any experience or
information available, therefore, contact the respective vendor's
support channels if you have any questions or issues.
..."
SAP just provides general information how to implement Kerberos authentication for Single Sign-On. You can refer to following link:
http://help.sap.com/saphelp_nw70/helpdata/en/43/4bd58c6c5e5f34e10000000a1553f6/frameset.htm
Below links may also be useful:
http://help.sap.com/saphelp_nw70/helpdata/EN/68/5ddc40132a8531e10000000a1550b0/frameset.htm
http://help.sap.com/saphelp_nw70/helpdata/EN/d0/a3d940c2653126e10000000a1550b0/frameset.htm
and
All the best,
Cristiano
07-15-2010 11:57 PM
Hi please go through this statement,
"Many of the SAP NetWeaver systems also support the use of the SSL protocol and client certificates for user authentication. In this case, the authentication takes places using the underlying protocols and no user intervention is necessary, which also provides for a Single Sign-On environment.
Users need to receive their client certificates from a Certification Authority (CA) as part of a public-key infrastructure (PKI). If you do not have an established PKI then you can alternatively use a Trust Center Service to obtain certificates. The CA you choose to use must be designated as a trusted CA on the Web server."
Read it yourself at this link:
http://help.sap.com/saphelp_NW70/helpdata/de/8a/cb136e68592f478266d19bb2b89766/content.htm