login/create_sso2_ticket

Posted by — January 19, 2015 in SAP PARAMETER Leave a reply

Parameter

login/create_sso2_ticket

Short text

Permit generation of SSO tickets

Parameter Description

You can use Single Sign-On (SSO) tickets to allow SSO between SAP systems, and even beyond to non-SAP systems. An SSO ticket can be a logon ticket or an assertion ticket. The logon ticket is transferred as a cookie with the name MYSAPSSO2. The assertion ticket is transferred as an HTTP header variable with the name MYSAPSSO2. Note that this requires additional configuration steps for the issuing and accepting systems.

The issuing system should permit the generation of an SSO ticket

• login/create_sso2_ticket = 1 : SSO ticket including certificate
• login/create_sso2_ticket = 2 : SSO ticket without certificate
• login/create_sso2_ticket = 3 : Generate only assertion tickets

The SSO tickets are significantly smaller without the certificate.

Application Area

Logon

Default Value

3

Who is permitted to make changes?

Customer

Are other parameters affected or dependent?

login/ticket_expiration_time
login/ticket_only_by_https
login/ticket_only_to_host

These parameters affect only logon tickets. They do not affect assertion tickets.

Values allowed

0 / 1 / 2 / 3

You May Also Like

jstartup/shutdown_timeout : Timeout for the jstart controller process to wait for shutdown of child processes

jstartup/security_level : Security level for jcontrol

jstartup/sdm_properties : Path to SDM properties file

jstartup/recorder : Flight recorder configuration

Leave a Reply?