SAP ABAP Data Element SECPOL_DISABLE_TICKET_LOGON (Indicator: Ticket Logon has been deactivated)
Hierarchy
SAP_BASIS (Software Component) SAP Basis Component
   BC-SEC-LGN (Application Component) Authentication and SSO
     SECURITY_POLICY (Package) Security Policies
Basic Data
Data Element SECPOL_DISABLE_TICKET_LOGON
Short Description Indicator: Ticket Logon has been deactivated  
Data Type
Category of Dictionary Type D   Domain
Type of Object Referenced     No Information
Domain / Name of Reference Type SECPOL_DISABLE_TICKET_LOGON    
Data Type INT4   4-byte integer, integer number with sign 
Length 10    
Decimal Places 0    
Output Length 1    
Value Table      
Further Characteristics
Search Help: Name    
Search Help: Parameters    
Parameter ID   
Default Component name    
Change document    
No Input History    
Basic direction is set to LTR    
No BIDI Filtering    
Field Label
  Length  Field Label  
Short  
Medium  
Long 40 Disable Ticket Logon 
Heading  
Documentation

Definition

You can use this security policy attribute to prevent a user logging on to the system using a logon ticket or an authentication assertion ticket.

Use

Value    Meaning

0    Ticket logon is permitted (if possible)

1    Logon tickets are rejected
    (Authentication assertion tickets are not affected by this)

2    Both logon tickets and authentication assertion tickets are rejected

There is no equivalent profile parameter for this security policy attribute.

Dependencies

Whether a user can log on to the system using a logon ticket or an authentication assertion ticket also depends on other factors:

  • Profile parameter login/accept_sso2_ticket has been set to the value 1.
  • A trust relationship must have been established with the ticket-issuing system.
  • The ticket must be received within its validity period.

Example

History
Last changed by/on SAP  20110908 
SAP Release Created in 800