SAP-Windows Single Sign On Helpful Links
header | header |
---|---|
SAP SNC (Secure Network Communications) | http://help.sap.com/saphelp_nw04s/helpdata/en/e6/56f466e99a11d1a5b00000e835363f/content.htm |
SAP SSO with Microsoft NT LAN Manager SSP | http://help.sap.com/saphelp_nw04s/helpdata/en/32/431c3aadda4f25e10000000a11402f/frameset.htm |
SAP SSO with Microsoft Kerberos SSP | http://help.sap.com/saphelp_nw04s/helpdata/en/32/431c3aadda4f25e10000000a11402f/frameset.htm |
Using the SAP Cryptographic Library for SNC | http://help.sap.com/saphelp_nw04s/helpdata/en/32/431c3aadda4f25e10000000a11402f/content.htm |
- Windows SSO Links
- Kerberos Integration with NW AS Java
- Windows Integrated Authentication via Kerberos on an LDAP data source
- SAP SDN SAML info page
- SAML on SAP AS Java 6.40
Notes from meeting.
- BITCO : Sanjay to send link
- 7.1 NW and above for SAML.
- XI/PI (SAML Module built in)) : Santosh
NTLM Information
- Microsoft TechNet FAQ on Windows Passwords
- NTLM Authentication Scheme
- NT Hashing Scheme
- Custom NTLM Challenge
Notes on Integrating Java and Windows Integrated Authentication
- Tomcat Active Directory Integration
- Configure Tomcat for NTLM Auth
- NTLM with JCIFS Module
- Waffle Windows Authentication Framework
- IIS Tomcat ISAPI filter HOW-TO
- Tomcat with Windows Integrated Auth using Waffle
- JESPA Authentication Framework
- Java JAAS Module
- Grails SSO AD
.NET Examples
http://wertsch.de/portal/mysapsso2/decrypt.txt
http://code.google.com/p/moa-engine/source/browse/trunk/src/org/jucetice/javascript/utils/sap/SAPTicketVerifier.java?spec=svn50&r=50
Windows & BMC Remedy Single Sign On Notes
Windows Access Token
An access token contains the security information for a logon session. The system creates an access token when a user logs on, and every process executed on behalf of the user has a copy of the token. The token identifies the user, the user's groups, and the user's privileges. The system uses the token to control access to securable objects and to control the ability of the user to perform various system-related operations on the local computer. There are two kinds of access token, primary and impersonation.
We can use the token to get the logonSID. logonSID can be accessed via the GetTokenInformation from the Access Token Object.
Microsoft SSPI (Security Support Provider Interface)
Projects of Interest
- SPNEGO SourceForge Project
- AppliedCrypto Articles on SPNEGO and SSO
- Java Based SSO (IBM Developer Works Article)
- NTLM Basics