Hierarchy
SAP_BASIS (Software Component) SAP Basis Component⤷
BC-SEC-SSF (Application Component) Secure Store and Forward⤷
SECF (Package) Secure Store & Forward (SSF) Support
IMG Activity
| ID | BCDIGSI_SSO2ADM | Workplace Single Sign-On Administration |
| Transaction Code | S_BIO_23000010 | (empty) |
| Created on | 20000207 | |
| Customizing Attributes | BCDIGSI_SSO2ADM | Workplace Single Sign-On Administration |
| Customizing Activity | BCDIGSI_SSO2ADM | Workplace Single Sign-On Administration |
Document
| Document Class | SIMG | Hypertext: Object Class - Class to which a document belongs. |
| Document Name | BCDIGSI_SSO2ADM |
Title
Transaction SSO2 Single Sign-On Administration Server.
Purpose
Wizard for connecting a component system to a Workplace Server.
Features
Selection
Enter RFC destination or the host name and system number of the Workplace Server (WPS)
Output
Display Workplace Server information
- System ID and client
- Certificate (indicates whether the certificate is in the certificate list or access control list (ACL).
- Profile parameter login/create_sso2_ticket
- Determines whether the certificate must be added to the certificate list.
Display component system information
- System ID and client
- Profile parameter login/accept_sso2_ticket
- Certificate list (indicates whether the Workplace Server certificate is in the list).
- Access control list (indicates whether the Workplace Server certificate is in the list).
Activities
Main function of Workplace aktivieren button
The Workplace Server is added to the access control list and the Workplace Server certificate is added to the certificate list, if necessary.
Expert functions (in menu)
- Enter SAP CA certificate in certificate list.
- Enter Workplace Server certificate in certificate list
- Remove certificate from certificate list
- Add Workplace Server to access control list
- Remove entry from access control list
Example
Technical Details
Workplace Server Release must be at least 4.6C.
The Workplace Server can be activated as often as needed.
If Workplace Server connection data is not specified, the system only displays the status of the local system.
If you enter the host and system number instead of an RFC destination on the selection screen, the system creates an RFC destination
<host>_<sys_no.> and then uses this destination.
To check whether the Workplace Server certificate is signed by the SAP CA, compare the name of the issuer with the name of the issuer on the SAP CA certificate. You do not need to use a verify function.
All changes are saved immediately (including distribution of the file containing the certificate list (Personal Security Environment PSE) to all active application servers).
As of Release 4.6C, the system PSE is edited locally. Up to Release 4.6B, a new PSE (file name SAPSSO2.pse in directory DIR_GLOBAL) is used.
For PSE administration, the functions in function group SSFP that are called using RFC are either called from the Workplace Server (if the current system release is older than 4.6C) or locally (if the current system release is 4.6C or higher).
Example
Requirements
Standard settings
Recommendation
Activities
Further notes
Business Attributes
| ASAP Roadmap ID | 306 | Establish System Administration |
| Mandatory / Optional | 2 | Optional activity |
| Critical / Non-Critical | 1 | Critical |
| Country-Dependency | A | Valid for all countries |
Assigned Application Components
| Documentation Object Class | Documentation Object Name | Current line number | Application Component | Application Component Name |
|---|---|---|---|---|
| SIMG | BCDIGSI_SSO2ADM | 0 | HLB0100169 | Security |
Maintenance Objects
| Maintenance object type | C | Customizing Object |
| Assigned objects | ||||||
|---|---|---|---|---|---|---|
| Customizing Object | Object Type | Transaction Code | Sub-object | Do not Summarize | Skip Subset Dialog Box | Description for multiple selections |
| IMGDUMMY | D - Dummy object | SSO2 |
History
| Last changed by/on | SAP | 20011026 |
| SAP Release Created in | 46D |
