|
|
|
After disambiguation, Federation Manager asserts one attribute from the user directory record to the SAP Web AS as a valid SAP Web AS user. Federation Manager passes the value of this attribute in an identity cookie, named FEDPROFILE cookie.
The User Directory configuration in the Federation Manager UI is where you specify which attribute Federation Manager includes in the FEDPROFILE cookie.
In the Federation Manager UI, select the User Directory tab and complete the following field for your user directory type:
Specify any user attribute in the user record at the relying party directory that identifies the SAP Web AS user name. The value of the user attribute you select must match the value of the Web AS username in the SAP Web AS user store.
For example, the relying party directory has a user record with an attribute mail=JSmithSAP. If you set the Universal ID to mail, the SAP Web AS user directory must also contain a user name record set to JSmithSAP.
The value of the user attribute gets included in the FEDPROFILE cookie to provide access to the application on the SAP Web AS.
| Copyright © 2012 CA. All rights reserved. |
|