Enable single sign-on (SSO) over secure paths for OData applications.
Preparing the SAP Gateway
Configure the SAP Gateway to push OData application data to SAP Mobile Server, including configuring the RFC destination for HTTPS on the Gateway.
Using Keytool to Generate Self-Signed Certificates and Keys
Whenever possible, use a PKI system and a trusted CA to generate production-ready certificates and keys that encrypt communication among different SAP Mobile Platform components. You can then use keytool to import and export certificate to the platform's keystores and truststores. Otherwise, you can also use keytool to generate self-signed certificates and keys.
Configuring X.509 Certificates for SAP Single Sign-on
Import, export, and generate the X.509 certificates that secure communication paths between SAP Mobile Server and the SAP enterprise information system (EIS), and for client authentication, including single sign-on (SSO) with X.509 or SSO2 tokens.
Provisioning Security Artifacts
Typically, you must provision SAP Mobile Platform security artifacts before applications can be used. The manner by which an artifact is provisioned depends on the artifacts themselves, the device types used, and your deployment environment.