You can use the Security page to configure the security authentication protocols that are used by SHR—Lightweight Single Sign-On (LW-SSO) and SAP BusinessObjects Trusted Authentication.
The Security page includes:
Field | Description |
---|---|
Enabled | Enable or disable LW-SSO. |
Domain | Domain for which LW-SSO is valid; by default, the SHR host system's domain is enabled |
Expiration Period |
Period for which the LW-SSO session is valid; The default value is 60 minutes Note: The LW-SSO expiration period should be at least the same value as that of the application session expiration value. The recommended value is 60 minutes. For applications that do not require high levels of security, you can configure higher values, such as 300 minutes. Note: All applications participating in an LW-SSO integration must use the same GMT time. |
Init String |
Shared key used for encryption and decryption of a LW-SSO session token Note: For LW-SSO, ensure that the other applications in the Single Sign-On environment have LW-SSO enabled and are working with the same Init String. |
Protected Domains | Domains for which LW-SSO is protected; by default, the SHR host system's domain is protected |
Field | Description |
---|---|
Enabled | Enable or disable SAP BusinessObjects Trusted Authentication |
Shared Secret | Shared key used for encryption and decryption of a Trusted Authentication session token |
Use the Security page to:
Note: This page is only visible if SHR is installed on the system.