Electronic Signature extended to LDAP for SSO
The standard SAP electronic signature function supports a local and a remote ABAP password based "signature". This is configurable. In the case of SSO solutions, it is preferable to disable the ABAP password to prevent it from being used however the electronic signature function prevents this. An extension of the configuration to include a standard LDAP bind and / or custom coding to an authentication "service" would improve the security and usability of the electronic signature functionality.
Update: SAP has provided a BAdi as alternate (freely definable) method to authenticate users performing electronic signatures in SAP Note 1515711 - System signature does not support external authentication. Thank you SAP!