Authentication Scenario1. User enter domain credentials on Liquid UI for iOS/Android Native SAP logon screen
2. Liquid UI Server receives the credential information and passes the credential to Active Directory which provides Kerberos security token to Liquid UI Server
3. Liquid UI Server forwards the Kerberos token to the system. The Kerberos token is validated on the SAP Application Server (ABAP), and user is logged into SAP ECC.
Pre-Requisites• Valid Windows Domain Login Credentials
•
Kerberos Configuration on SAP ECC (Transaction: RZ10)
• Liquid UI Server v3.5.549.0 and later
o Liquid UI Server should be on the DOMAIN
o Kerberos DLL, distributed as part of Liquid UI Server installation
Liquid UI Server Configurationsapproxy.ini - configuration file#Configuration for Unified Login based on Windows Domain Credentials
[Proxy1]
ListenPort = 3210
TargetServer = SAPSERVER
TargetServerPort = 3200
GuiXT = 10
SNCName=sidadm@DOMAIN
