Hi Steve,
as far as I got your use case, you do not require a platform Secure Login Library (recommended: CommonCryptoLib) on your AS Java system. It is only required for:
- ICM (where CommonCryptoLib is already part of)
- SNC protected RFC Destinations
- HSM based Secure Login Server User CAs
Kerberos based SSO or SPNEGO in AS JAVA is coming out of the box, meaning it uses standard JCE APIs only. This includes SPNEGO client authentication profiles of SLS.
However, SLES12 is also supported by SLS as well as CCL. We always support the latest platforms of AS ABAP and JAVA. It´s just missing in the PAM.
-- Stephan