Professional Documents
Culture Documents
Configuring SAP GUI and SAP Logon For Single Sign
Configuring SAP GUI and SAP Logon For Single Sign
On
Use
To set up the use of Microsoft NTLM with SAP systems, you need to activate the SAP
Logon option on each SAP front end. The SAP Logon window includes a list of systems
or machines that you can log on to. For each of the systems or machines in the list for
which you want to implement SSO, follow the procedure below.
Prerequisites
Procedure
...
2. Set the Windows environment variable SNC_LIB on the PC where your SAP GUI runs.
The variable specifies the path to the gssntlm.dll file. You can do this using one of the
following methods:
○ Copy gssntlm.dll to a location of your choice and set the environment variable
SNC_LIB to that location, for example, <DRIVE>:\<SAPGUI_PATH>\gssntlm.dll.
Variable: SNC_LIB
Value: <DRIVE>:\<SAPGUI_PATH>\gssntlm.dll
iv. To activate the new environment variable setting, log off and then log on to your
Windows system again as the same user.
1. Copy gssntlm.dll to a directory of the default search path, for example,
%SystemRoot%\system32 and rename the file to sncgss32.dll.
This is the default file name that SNC uses when SNC_LIB is neither entered on the
command line nor available in the environment.
a. In the SAP Logon window, select the entry to modify and choose Edit → Advanced.
p:<DOMAIN_NAME>\SAPService<SID>
p:MYDOMAIN\SAPServiceHWA
Result
The SAP Logon window now displays an icon with a small yellow key beside the system
entry. This indicates that SSO is active.