NW SSO system with Client- backend encryption and SSO
Make sure that sapcrypto.dll and relevant profile parameters exist. |
|
Download secure login library and client
SECURE LOGIN LIBRARY 1.0 SECURE LOGIN CLIENT 64BIT 1.0 SECURE LOGIN CLIENT 32BIT 1.0 |
![]() |
Extract SLLIBRARY04_5-10010553.SAR to a temporary folder. |
![]() |
Extract SECURELOGINLIB.SAR to folder SLL in the application server instance directory <Drive>\usr\sap\<SID>\<Instance>\SLL |
![]() |
Test secure login library. From command prompt in SLL directory run
|
![]() |
Maintain instance profile parameters. Snc at this time is not enabled. SPN of service user for Kerberos logon procedure is determined by the parameter snc/ identity/as |
snc/force_login_screen = 0 snc/permit_insecure_start = 1 snc/data_protection/use = 3 snc/data_protection/max = 3 snc/data_protection/min = 2 snc/r3int_rfc_qop = 8 snc/r3int_rfc_secure = 0 snc/accept_insecure_r3int_rfc = 1 snc/accept_insecure_gui = 1 snc/accept_insecure_rfc = 1 snc/accept_insecure_cpic = 1 snc/enable = 0 snc/identity/as = p:CN=SAPService<SID> snc/gssapi_lib = C:\usr\sap\<SID>\D30\SLL\secgss.dll |
Create pse.zip
|
|
Restart the application server |
![]() |
Transaction STRUST Verify that system PSE is active |
![]() |