This document provides instructions for setting up single sign-on (SSO) certificates for portals and CRM systems which involves 4 steps: 1) Generate a new SAP logon ticket, 2) Setup SAP backend trust by importing the portal certificate, 3) Check that certificates are working properly, and 4) Perform connection tests. It requires R3 OS access, downtime to set a parameter, and an enterprise portal administrator user.