Security and Identity Management at SAP


SAP Security, Identity Management and Single Sign-On


Welcome to the SAP Security and Identity Management pages in the SDN Wiki. This is the SDN WIKI starting point for topics around SAP product security, SAP NetWeaver and platform security, SAP NetWeaver Identity Management, SAP NetWeaver Single Sign-On as well as security services and partner information.


Moderator of this WIKI section is Kristian Lehment.

Link to the SAP NetWeaver Identity Management WIKI

Frequently Asked Questions (FAQ)

SAP NetWeaver Identity Management FAQ

FAQ - LDAP
FAQ - SNC (SAPcryptolib) for Business Objects Servers
FAQ - SNC on SAP Web AS ABAP - Common Issues regarding setup
FAQ - Product Security Find the answers sorted by the different security categories
FAQ - SSL on ABAP Server


Link to the SAP NetWeaver SIngle Sign-On space on SCN

Authentication and Single Sign-on

Single Sign-On with SPNego (NWAS Java)
Single Sign on for Web Services
EasyDMS and Single Sign On (SSO)
User Mappings in the Authentication Framework of SAP NetWeaver Application Server (AS) Java
Using OAuth 2.0 from a Web Application with SAML Bearer Assertion Flow
Single Sign-On with SAML 2.0
OAuth 2.0 - Constrained Authorization and Single Sign-On for OData Services

Web Services (AS ABAP)

Recommended Interoperable WS Security Scenarios on AS ABAP
Single Sign on for Web Services
Authorizations


Guidelines

Security Guidelines

Best Practices

Best Practices - How to find TCodes changed after upgrade regarding SU24-data
Upgrade Steps for Security - quick reference
Best practice - How to perform a client copy when CUA is active
Using Event Agents in NW IDM
Best Practices - How to convert certificates from a .p7b file to Base64 (.cer) format
Gateway security settings - extra information regarding SAP note 1444282
Security Token Service Configuration
Best Practice - How to analyze and secure RFC connections

Interesting References / Links

List of ABAP-transaction codes related to SAP security
QA Metrics for Role Design
Security Functionality Wishlist-Topics


Quick Links- related to SAP SECURITY -



Recently Updated











Labels

topic-homepage topic-homepage Delete
development development Delete
security security Delete
identity identity Delete
idm idm Delete
nw_idm nw_idm Delete
Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.

Child Pages (33)

  Hide Child Pages  |  View in Hierarchy
ABAP Web Service Configuration for SAML Sender Vouches
Authorizations
Best Practice - How to analyze and secure RFC connections
Best practice - How to perform a client copy when CUA is active
Best Practices - Display Audit Roles
Best Practices - How to convert certificates from a .p7b file to Base64 (.cer) format
Best Practices - How to find TCodes changed after upgrade regarding SU24-data
Collection of SAP Security Tables
Configure Trust for SAML SenderVouches authentication ( ABAP)
Documentation of SAP Identity Management APIs
Gateway security settings - extra information regarding SAP note 1444282
Global Security Alliance (GSA) - Now IA4SP
Issue with Custom Risks option in RAR
List of ABAP-transaction codes related to SAP security
OAuth 2.0 - Constrained Authorization and Single Sign-On for OData Services
Recommended Interoperable WS Security Scenarios on AS ABAP
Rewriting WSDL for Metro 2.0 (Web Service Runtime)
SAP NetWeaver Identity Management - Overview
SAPPress Single Sign On with SAP
Security FAQ
Security Functionality Wishlist-Topics
Security Guidelines
Single Sign on for Web Services
Single Sign on for Web Services from .Net
Single Sign On using Active Directory and Centrify DirectControl
Single Sign on using SAML with Apache Axis2 (Web Service Runtime)
Single Sign on using SAML with IBM DataPower (XML Appliance)
Single Sign on using SAML with Sun Metro 2.0 (Web Service Runtime)
Single Sign-On with SAML 2.0
Single Sign-On with SPNego (NWAS Java)
Testing Mobile Leave Request Application
Upgrade Steps for Security - quick reference
User Mappings in the Authentication Framework of SAP NetWeaver Application Server (AS) Java