Configuring SNC (IRC server--> ABAP Application server)

Purpose:

To connect to an SAP system application server, the IRC application uses the Java Connector/.NET connector and RFC. To secure such connections, use SNC.

For more information see the SNC User's Guide, which is available on the SAP Service Marketplace at http://service.sap.com/security .

Prerequisites:

  • The external security product is installed on the IRC server. Ex: SAP Cryptographic library package.

    If you use a different security product, then see your security product’s documentation for any product-specific configuration steps.

  • You are familiar with the SNC infrastructure. You know which Personal Security Environment (PSE) the application server uses for SNC and you know whether you are using a single PSE for both communication partners or individual ones. For more information, see Using the SAP Cryptographic Library for SNC and Configuring the Use of the SAP Cryptographic Library for SNC in the SAP Library.
  • SNC is activated on the SAP application server.

Procedure :

  1. Either create a Personal Security Environment (PSE) in IRC or copy the SAP application server’s SNC PSE to the IRC’s SECUDIR directory.
  2. Either create a Personal Security Environment (PSE) in IRC or copy the SAP application server’s SNC PSE to the IRC’s SECUDIR directory.
  3. If you are using individual PSEs, then exchange the two servers’ public-key certificates.
  4. Set the IRC’s SNC parameters.
  5. Maintain the SNC system access control list on the SAP application server.
  6. Maintain the extended user Access Control List (ACL) on the SAP application server.