Skip to Content
0
Former Member
Mar 25, 2008 at 01:52 PM

How secure is the SAP Logon Ticket

37 Views

I understand the SAP logon ticket is BASE64 coded and is stored as a non-persistent cookie in the client’s browser. Is it possible for anyone to hijack a user's SAP logon ticket and impersonate that user and to get SSO access to the backend applications? Thanks.