07-29-2011 8:55 AM
We have a requirement to implement secure access from SAP GUI with user authenticaion (username/password) against windows active directory.
Requirement:
1. Windows AD to authenticate the username/password.
2. Password reset to happen in Windows AD.
3. Password reset button in SAP logon screen to be disabled.
EU Steps:
1. End user logs into Windows client (running windows 7) authenticate against AD
2. EU clicks on the SAP GUI link to be prompt for a username/password
3. Username/Password to be authoticated against AD
Please Note: We don't want to change the way EU logging in the future.
Benefit:
1. Same username/password to login into Windows and SAP systems
2. Password change/reset to be done centrally, in Windows AD
3. Access to all SAP systems with same username and password.
Please point me in the right direction to implement this requirement.
07-29-2011 9:06 AM
Hari,
This exact requirement can be met using a SAP certified third-party product, which you can find at http://ecohub.sdn.sap.com/irj/ecohub/solutions/trustbrokersecureclient
Thanks,
Tim
07-29-2011 9:31 AM
Hi Tim
Thanks for the quick response. But as a requirement after AD authentication when the EU clicks on SAP GUI, username/password should be prompted.
1. Does "TrustBrokeru2122 Secure Client" support this?
2. Can the same be achieved without buying Third Party products?
Thanks
Hari
07-29-2011 9:37 AM
Hi Tim
>
> Thanks for the quick response. But as a requirement after AD authentication when the EU clicks on SAP GUI, username/password should be prompted.
>
> 1. Does "TrustBrokeru2122 Secure Client" support this?
Yes, absolutely - it is one of the big differentiators with this product when compared with others (including commercial products available from SAP)
> 2. Can the same be achieved without buying Third Party products?
No, it cannot unless you develop your own code.
>
> Thanks
> Hari