SAP Security Online- SAP Web AS Security


	R/3 Security
	BW Security
	Enterprise Portal
	CUA
	Single Sign On
	SOX/ SoD
	OSS
	HR Security
	Solution Manager
	Interview Questions

Web AS Security

Introduction

The SAP Web Application Server is a further development of the SAP Application Server technology. Based on the highly scalable SAP Application Server infrastructure, new technologies have been implemented to directly process HTTP requests or other protocols coming from the Internet, and to send HTTP requests to the Internet.

To allow this additional function of processing and sending HTTP requests, the SAP kernel has an additional process, the ICM, which uses threads to communicate on the Internet, as a server or as a client. As a result, your users can access the SAP applications using their Web browser and the HTTP directly, instead of having to access them using a middleware component. However, in this case, the applications must be designed and written for the Internet scenario. Traditional applications can still be accessed using the SAP GUI for Windows, or even the SAP GUI for HTML through an SAP ITS. HTTPS is also supported by using these applications.

The Internet Communication Framework (ICF) provides the framework for implementing the SAP Web AS applications. The ICF consists of the interfaces that enable the SAP Web AS function as a Web server or a Web client.

Monitoring ICM

Transaction SMICM performs the following functions:

Monitors the ICM.

Views threads.

Views active services and ports.

Views trace files.

Displays the cache content and statistics.

Restarts the ICM.

The ICF provides a framework for developing the SAP Web AS Internet applications Business Server Pages (BSPs).

Applications are organized in a hierarchical tree.

You can use transaction SICF to create and maintain BSPs.

You can use this transaction to create and maintain virtual hosts for the SAP Web AS.

Use transaction SE80 to view and test the BSPs.

Load Balance

Redirections:

Simple

Bad user experience and maintenance

DNS based methods:

Suitable for intranet scenario

Suitable for global load balancing

Not suitable for server load balancing

Load balancing device:

Transparent for client

AlwaysthesameURL

One official IP address for all application servers

One server certificate for all servers

Technically challenging

Usually preferable

Enabling SSL on SAP WEB AS ... coming up

SAP Help | SAP Service Market Place | SAP SDN