Is it possible to login into the Java instance without password's input,...
Dear Sirs, I try to do an authorization to my NW 7.3 Java instance through my Windows domain authorization.I done: 1) Create connection to LDAP-server and tested it.2) Add windows domain certificate...
View ArticleSAML2.0 Message Based Authentication - AS ABAP
Hello All, We have recently (successfully) configured SAML2.0 on AS ABAP (ERP 6.05/NW7.02) for authenticating Web Applications (Web Dynpros, Fiori Apps...etc) via a Web Browser internediary, and using...
View ArticleRe: Is it possible to login into the Java instance without password's input,...
Please check Using Kerberos Authentication on SAP NetWeaver AS Java - User Authentication and Single Sign-On - SAP Library (NW7.3)Using Kerberos Authentication for Single Sign-On - User Authentication...
View ArticleUsing Kerberos for SNC with Users in Different Domains
Dear All, In chapter "4.7.3.1.6 Using Kerberos for SNC with Users in DifferentDomains" of the SAP SSO Implementation guide it is mentioned that itmight also be possible to setup SNC for users in...
View ArticleRe: Using Kerberos for SNC with Users in Different Domains
Hi Matthias, From the traces file provided I could see that your issue happens because your client workstation did not get a ticket from the AD. Could you check if: - You configure the SPN of your...
View ArticleRe: Is it possible to login into the Java instance without password's input,...
Hello I did not really understand the problem. Please explain with screenshots. SPNego is mechanism through which after logging on to windows domain, user need not enter credentials while accessing...
View ArticleThird party application forcing java stack to restart when logged in through SSO
Hi We have APW Third party application installed on Enterprise portal 7.4.When we tried to login APW portal through SSO it forces Java stack services to restart.If we use APW directly without SSO it...
View ArticleRe: Third party application forcing java stack to restart when logged in...
Hello Manish I need to see dev_server0 and std_server0.out log files of server node after it is crashed by APW login. Cheers,Tapan
View ArticleRe: Third party application forcing java stack to restart when logged in...
Hi Manish, Please check the configuration once agian about the third party connection and the portal.Also provide the "dev_server0" which under in directory /usr/sap/SID/J00/work and default trace...
View ArticleRe: Is it possible to login into the Java instance without password's input,...
Hi I guess you didn't setup the JAVA login stack properly. Can you share a screen shot of your login module stack? Cheers,Chenyang Xiong
View ArticleSSO (MSAD PKI) X.509 certificate attributes for user mapping in Secure Login...
Hello Experts, Need some help on how to force SAP Secure Login Client to use X.509 user certificate's 'Subject Alternative Name' attribute as a mapping field for SSO instead of using 'Subject Name'...
View ArticleRe: SSO (MSAD PKI) X.509 certificate attributes for user mapping in Secure...
Hello, if you have non-unique SubjectNames in one PKI CA structure you have a problem, which should be solved on the PKI side. But there is an option for GSS (ClientNameSource) which can be configured...
View ArticleRe: SAP NWSSO2.0 SP03 SPNEGO not working( No Webgui/NWBC or Portal )
By Adjusting User Mapping Mode in SPNEGO from PrincipleandREALM to Principle only my Portal SSO started working.
View ArticleSAML 2.0 and AD Security Group Membership
In ADFS 2.0, as a part of the token, I can pass the ADsecurity groups the user is in. Does SAP SSO have the ability to send andreceive SAML 2.0 tokens with AD security group membership?
View ArticleRe: SAML 2.0 and AD Security Group Membership
Hi Jeff, SAP SAML 2.0 Identity Provider is able to include any group (or role) assignment of the user (available in the NetWeaver AS Java UME) as SAML Attribute in the generated SAML 2.0...
View ArticleRe: SSO (MSAD PKI) X.509 certificate attributes for user mapping in Secure...
Great, thanks a lot Alexander, worked like a charm, placed gss.xml within DIR_EXECUTABLE kernel directory and now ABAP system takes SNC User Name as a SAN field of x.509 cert. However things are...
View ArticleClik here to view.
SSO Between HTTP and HTTPS Protocol?
Hi all, We are calling third party java application inside sap portal using iView.Both portal and java applications are same Domain but we are using HTTPS protocol for sap portal and HTTP protocol for...
View ArticleClik here to view.
"GSS-API(maj): No credential were supplied"
Hi all, We are making a proof of concept on SSO on ABAP (SAP-GUI + web) via SAP Secure Login Client and SPNEGO for ABAP.All youtube-video configrations have been performed . You know: Implementing SAP...
View ArticleRe: "GSS-API(maj): No credential were supplied"
Hi Peter, To have more information about your issue you should configure the trace in Secure Login Client. Please check the implementation guide here...
View Article