Quantcast
Channel: SCN: Message List - SAP Single Sign-On
Viewing all articles
Browse latest Browse all 2732

Re: bypass the end-user having to select the cert/token the first time they use SSO?

$
0
0

Hi Scott,

 

we havealmostthe same problem: We createdfor each Windows Active Directorydomainin our landscapeanauthenticationprofileandusedthe active directory domain nameinthe nameof the profile (for example "authentication profile - DOMAIN.CORP"). Thenwe distributedaregkeyvia logonscript that created an entryin the HKCU Windowsregistry:

 

[HKEY_CURRENT_USER\SOFTWARE\SAP\SecureLogin\applications\DEFAULT]

"GssTargetName"="*"

"profile"="authentication profile - %USERDNSDOMAIN%"

"allowFavorite"=dword:00000001

 

The environment variable %USERDNSDOMAIN% was "translated / interpreted" by the logon script. A possible solution would be: use a REG_EXPAND_SZ reg type instead. Only drawback is: a windows relogon / restart is needed.

 

Best regards

Kai


Viewing all articles
Browse latest Browse all 2732

Trending Articles