on 05-12-2005 12:52 PM
Hi all,
I want to use a cookie approach on SAP Enterprise Portal i.e. when the user first logs on, i would create a cookie and store the encrypted password in it so that next time he hits the portal, he is directly authenticated with the help of the cookie.
For this above functionality, i need to know how the encryption & decryption techniques can be achieved by using the SAP Encryption libraries.
Would be highly appreciative if i get some info on this.
Thanx & regards,
Jitendra Chaudhari
India
You can use logon ticket for the implementation you want to do. For security issues you are talking about then you can use the SSL connection for the client who is accessing the SAP Enterprise portal. For SAP Logon Ticket see the login modules CreateTicketLoginModule and EvaluateTicketLoginModule
Initially set the ume.configuration.active = true
For the security related issues ypu can set the following properties in the login modules
1) ume.logon.security.enforce_secure_cookie to TRUE.
Marks the SAP logon ticket as a secure cookie, to enforce that the client browser sends the cookie only when an SSL connection to the J2EE Engine or the reverse proxy is established.
2) ume.logon.httponlycookie to TRUE
If true, the SAP logon ticket is set to HttpOnly. This prevents it from being read by malicious client-side script code such as JavaScript. The setting is only effective for clients that use Microsoft Internet Explorer 6.0 SP1 or higher.
I would suggest to use the 1st option as SAP also recommend the use of SSL connection for Logon Tickets.
I wish this could help you a bit.
Thanks and with regards
Pravesh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Please check the following link, I think what you are looking for is Single sign on or SSO
http://help.sap.com/saphelp_erp2004/helpdata/en/9f/75b1c1cb174e4d87182d8223a6bd88/frameset.htm
Hope that helps.
Regards,
Siddhesh Ghag
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
94 | |
11 | |
11 | |
10 | |
9 | |
8 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.