SAP Note 1418011 - SAP-SSOLIST: Set handling from domain- to host-specific

Component : Internet Communication Framework -

Solution : https://service.sap.com/sap/support/notes/1418011 (SAP Service marketplace login required)

Summary :
This SAP Note addresses issues with MYSAPSSO2 cookies and SAP SSOLIST used for Single Sign-On (SSO). When logon with MYSAPSSO2 fails, the cookie is blacklisted in SSOLIST, causing subsequent logon attempts to fail under certain domain-level settings. Additionally, if login/ticket_only_by_https is enabled, SSOLIST transmission is restricted to HTTPS, hindering SSO across multiple systems. The solution involves ABAP corrections transitioning SSOLIST handling from domain-specific to host-specific to prevent these issues, ensuring smoother SSO operations across various SAP system configurations.

Key words :
profile parameter login/ticket_only_by_https = 1, profile parameterlogin/ticket_only_by_https = 1, listed abap corrections, host-specific handling, domain-specific handling, logon ticket fails, sap ssolist cookie, login/ticket_only_by_https, logon fails, ssolist ticket

Related Notes :

1616535Secure configuration of ICM for the ABAP application server
1158004Missing evaluation of the client certificate for HTTP