SAP ABAP Data Element ICFSAMLAUTH (Permitted Logon Procedure for SAML)
Hierarchy
SAP_BASIS (Software Component) SAP Basis Component
   BC-SEC (Application Component) Security
     SECC (Package) Basis Security (Kernel Components)
Basic Data
Data Element ICFSAMLAUTH
Short Description Permitted Logon Procedure for SAML  
Data Type
Category of Dictionary Type D   Domain
Type of Object Referenced     No Information
Domain / Name of Reference Type XFELD    
Data Type CHAR   Character String 
Length 1    
Decimal Places 0    
Output Length 1    
Value Table      
Further Characteristics
Search Help: Name    
Search Help: Parameters    
Parameter ID   
Default Component name    
Change document    
No Input History    
Basic direction is set to LTR    
No BIDI Filtering    
Field Label
  Length  Field Label  
Short  
Medium  
Long 20 Permitt. Logon Proc. 
Heading  
Documentation

Definition

Selection of the externally-used logon procedure required for access.

Use

In the context of the SAML protocol, the issuing system communicates the logon procedure used for access to it.

You can use this information to allow access to particularly sensitive resources only if a secure logon procedure was used on the issuing system.

Possible settings are:

  • "All": All logon procedures of the issuing system are permitted.
  • "Single Selection": You can individually select the permitted logon procedures of the issuing system.
    • "Password": The logon to the issuing system was performed using a password.
    • "Client Certificate": The logon to the issuing system was performed using a client certificate.
    • "Other": You can enter a comma-separated list of permitted logon procedures in the adjacent input field. Access to the resource is only allowed if the logon procedure certified by the issuing system in the SAML assertion appears in this list.

Dependencies

Example

History
Last changed by/on SAP  20041230 
SAP Release Created in 700