Hi All,
I am configuring the SSO 2.0 for NWBC with SPNego. The back-end system is SAP ECC 6.0 EHP7, NetWeaver 7.40, Kernel 741.
After the configuration, SPNego authentication failed, resulting in a logon prompt. Therefore, I tried to troubleshoot SPNego using the instruction the note 1732610 - SPNego ABAP: Troubleshooting Note
Following is the screenshot of the HTTP analyzer that I used:
As can be seen from the screenshot, I think the only missing part is the creation of HTTP Security session between the browser and AS_ABAP. It seems that:
- AS_ABAP did return 401 return code
- The browser did transferred the SPNego token in the "Authorization" header, the token is long so it should not be NTLM format
How can I continue the troubleshoot the issue? At least I know that HTTP Session Management for the client I used has been activated.
At the server side, the configuration is fine when I check the work process trace. Then I tried use the report "SEC_TRACE_ANALYZER" to analyze SPNego runtime. However, I cannot access the SPNego Tracing in SPNEGO transaction. So how can we activate the function?
I then tried to execute the report "SEC_TRACE_ANALYZER" but I don't know exactly how to use it. After having clicked on Activate User Trace, I navigate to the URL of NWBC using a web browser, then executed the report, but nothing shows (both keeping SAPSYS as the user and change to my own user shows no output)
I really don't know how to continue the troubleshooting. Would you please provide some feedback to troubleshoot this issue?
Best regards,
Duy