Anonymous user/SAP Integration

Hi
I am building a public website,accessible to anonoymous users.
Anonymous user will not logon to portal system.
is it possible to display  some data from SAP System for Anonymous users.To make connections to SAP System,
one requires   userid/password which is not possible for anonymous users.
Any solutions?
regards
John

Hi,
Create a dedicated shared user in the Backend for the anonymous access, for example EPGUEST.
Give this user the roles/authorization it needs in the Backend.
Map this user (using usermapping) to the Anonymous User, Role OR Group in the Portal.
The reason you need to user usermapping is because for Anonymous users the Portal doesn't generate SAP Logon Tickets so you wil not be able to SSO to the backend.
NOTE:
- be carefull what authorizations you provide this EPGUEST user in the backend.
- it must be a dialog user but, treat this user as a System user, so with a fixed password that cannot be changed by te user itself.
- if you want to open up WebDynpro 4 ABAP, ITS or any app running in the backend that is called via its URL then you need to be aware that the Portal is no HTTP Reverse Proxy, so in other words, you must put a Reverse Proxy solution in front of your landscape that you want to expose to the outside world.
Good Luck,
Benjamin Houttuin

Similar Messages

  • Printing as "anonymous" user

    Hi
    I am trying to enable printing for "nearly anonymous" users using integrated mode (tcc on windows clients).
    Users authenticate using a token that is saved in thair profile.xml but the userprofile allowes multiple login.
    This works as log as the profile.xml is restored before each login.
    The only thing that is not working is printing. :-/
    I built a test-user that has this token AND a password to do some tests:
    As long as there is only one session allowed for this user printig works using webtop and using tcc client.
    (called with -application "..." to start the application directly)
    When I set this user to allow multiple logins printing still works when I am logged in using webtop.
    Starting the application using tcc I can not print.
    Does anyone have further information about what is needed to print?
    Could this be an authentication issue as the profile.xml is changed (token is deleted) when I log in as long as multiple logins
    for this user are allowed.
    Any hints appreciated.
    Regards
    Sebastian Ries

    Most likely, the credential manager has the domain admin credentials for the connection to the server.
    Since you did not include the necessary information, I will make some assumptions and you can correct me.
    You have a client machine running Windows 7.  The print server target is Server 2008 or greater.  You have a queue view open on the client for the print share which is where you see both names.
    If my cred manager postulation is correct, the print job is created with the user account information.  The queue view is a representation of the local print job when Rendering on the Client is enabled, and the job when it goes to the print server. 
    When you see the regular user name, the print job is on the local machine.  After it is copied over to the server, it has the domain security token so you see that user name.
    check
    Control Panel\All Control Panel Items\Credential Manager
    Alan Morris Windows Printing Team

  • API's need to authenticate users while integrating SAP with ms ADS

    Hi
             Can anybody send me some code samples to authenticate users while integrating SAP with Microsoft ADS.Do suggest the methods(or API's) through which this authentication can be achieved.
    thanks in advance
    regards
    Yogalakshmi

    Hello Yogalakshmi,
    you should not crosspost. Please let us keep the discussion in the original topic:
    <a href="https://forums.sdn.sap.com/thread.jspa?threadID=73100&tstart=0">how to integrate SAP with Microsoft ADS</a>
    Regards
    Gregor

  • Anonymous user Unbale to access an WebDynpro ABAP iView

    Hi,
    I have developed an application using webdynpro ABAP and integrated that into portal.
    For this webdynpro application i have to create an iview, assigned it to a page, assigned this page to a custom role. I also set Authentication to anonymous for the page and iView. Assinged the custom role created to anonymous Group.
    But while running it i am getting an error "An exception occurred while processing your request. Send the exception ID to your portal administrator. Exception ID 04:55_25/10/11_0047_14739050"
    When I checked the log, it shows the error as "Deprecated scope of type SERVERSESSION_AT_LEAST_ONE_APP_SCOPE is used! Please replace the usage of scopes with new
    mechanism based on "Cross application session communication API".
    I also checked the note 1031159 and changed the configurations accordingly but getting the same above error.
    I am on EP7.3 version.
    Please guide me to move further successfully in showing the webdynbpro abap applicaiton to anonymous user.
    Thank you.

    Hi,
    I'm also working on EP7.3 and R3 WD4A integration. But I just can't find any WD for ABAP from whithin EP7.3 wizard.
    I tried to create the WD4A iview by right-clicking a PCD folder and then "New"->"iView"->"iView from remote source" to get a search screen. I choose a system alias (point to bk web as), use "*" as application id, and pick "WebDynpro for ABAP" as the application type.
    However, I always got "Nothing found. Change your search criteria."
    I did do some activation work on backend R3 SICF setting. I'm able to directly access  web dynpro via http://mywebas.domain:8000/sap/bc/webdynpro/mywd.... 
    If you're using the same scenario, please let me know anything I missed or any other special setting.
    Thanks

  • Anonymous user on 7.0 EHP1 SP07

    Dear all,
    I've started the development of an anonymous accessible Portal using NW 7.0 EHP1 SP03, so the all configurations was been done and it was working well, after update for SP07, the anonymous user can't show the contents, the note 837898 was fully applied.
    Another strange behaviour, the navurl that is generated using External Connector : wpccontent:// isn't redendered but if i publish a page using Single Web Pages Integration using iView (http://help.sap.com/saphelp_nw70ehp1/helpdata/en/ff/681a4138a147cbabc3c76bde4dcdbd/content.htm) it is rendered.
    Does anybody using this scenario?
    Best regards

    Dear Isaias,
    We are currently running NW 7.01 SP05 and are in the process of upgrading to SP07. We found that the upgrade to SP07 caused issues to anonymous access on the portal. We have since found SAP note 1504302 detailing the issue. The patch is not available via the Service Marketplace yet, but I have heard rumors of it being available by 17th September 2010.
    In respect to your other query, I could not replicate the issue (assuming I have correctly understood the problem) but I suspect that if anonymous access is being used for this page via the external connector, these issues may be linked.
    Best regards,
    Chris

  • Webdynpro iview to anonymous user

    hi,
    I have developent a local development component in webdynpro.
    For this webdynpro application i have to create an iview and assign it to an anonymous user.
    But if i create an webdynpro iview and assign it to the anonymous user, it gave me an exception of accss denied for the anonymous use.
    <b>Portal Runtime Error
    An exception occurred while processing a request for :
    iView : pcd:portal_content/com.enteg.entegbranchregistration.entegbranchRegistration/com.enteg.RegistratonRoles.RegistratonRoles/com.enteg.RegistrationForm.RegistrationForm/Get_Registered1.java_sap_com_cafeugpuiinst_com_sap_caf_eu_gp_ui_inst_AInstantiation
    Component Name : com.sap.portal.wdintegrator.WebDynproIntegrator
    Problem creating the Application Integrator, exception occured during onNodeReady was: com.sapportals.portal.prt.runtime.PortalRuntimeException: Access is denied: com.sap.portal.appintegrator.sap.WebDynproPageBuilder - user: Guest, .
    Exception id: 04:54_01/02/07_0017_16028850
    See the details for the exception ID in the log file</b>
    How to assign the webdynpro iview to the anonymous user,
    Why is the access denie for the anonymous user.
    Please help....
    Thanks in advance,
    shami.

    Hello Shami,
    please take a look to this note: Note 1031159 - Anonymous user access to Web Dynpro Pages/iViews.
    Hope that helps.
    Best Regards,
    Olaf Reiss

  • Access to WPC Web Pages by Anonymous Users?

    Hello,
    i want to give anonymous users access to Web Pages that were created with the Web Page Composer.
    In did the following:
    1. create the Web Pages,Site Navigation etc....
    2. edited the permissions of the site: grant anonymous users Read Access.
    3.included the site navigation into the navigation of the anoymous users
    When i access the portal as anonymous users and try to open a Web Page, i get a logon screen for Authentification.
    I think that there is a problem, that i didn't find any way to set the Authentification Scheme for these Web Pages to "Anonymous". This is the way it has to be done with other iViews.
    When i am accessing the page with an authenticated users, i have no problem with displaying the same Web Pages.
    Is there anywhere an attribute i need to set? Or is it currently not supported?
    Regards,
    Marcus
    Message was edited by:
            Marcus Böhm

    1. Configuration in PCD - go to Content Administration -> Portal Content-> Portal Content -> Web Page Composer -> Container iViews -> WPC
    Default Containers. All of the iViews in this location should have the
    "anonymous" authentication scheme. The next location which should be
    checked is Content Administration -> Portal Content -> Portal Content ->Web Page Composer -> iView Templates. Again all of the iViews should
    have the "anonymous" authentication scheme. The same applies to all the
    templates which reside in Content Administration -> Portal Content ->
    Portal Content -> Web Page Composer -> Page Layout Templates. Finally
    check if all the pages which reside in Content Administration -> Portal
    Content -> Portal Content -> Web Page Composer -> Page Layouts have the
    "anonymous" authentication scheme.
    2. Configuration in KM - make sure that all the pages, which should be
    displayed to an anonymous user have in their permissions the Anonymous
    Users Group.
    3. Security zones - if you go to System Administration -> Permissions ->Security Zones -> com.sap.nw.wpc -> wpc -> no_safety and you open the
    permissions of this object, the Anonymous Users group must be added in
    the list.
    If all mentioned objects have their setting as described and you still
    experience problems (e.g. you see a browser dialog window for
    authentication), the reason most probably is, that the KM is not
    configured for anonymous access. A full description of the needed steps
    is provided with note 837898.

  • Business Object and SAP Integration

    All,
    We've BOJ Data Services XI installed.
    Would like to integrate with SAP, does anyone know how or have good information about Business Object and SAP Integration?
    Please adivce.

    Hi Lynn,
    If you need to have Business Objects and SAP work together in conjunction you need to have the Business Objects Integration Kit for SAP. Integration Kit provides the database drivers and other features for reporting off SAP.
    Link to download the useru2019s Guide:
    -     Please go to Http://help.sap.com
    - Click on Business Objects tab
    - Select the product as Integration Kit for SAP
    User guide: Business Objects Integration Kit for SAP Useru2019s Guide.
    I hope that helps you.
    Regards,
    Prashant

  • WPC content for anonymous user

    Dear SDNites
    We have recently started a project in which we are using Web Page Composer(WPC) for web content development. We have configured the WPC content for anonymous users. After the configurations, anonymous users could access this content without entering any user id and password. But after the restart of the portal, it started prompting login screens even for the anonymous users.We have checked all the required configurations and these seem fine to me. Can you please help me on how to resolve this issue?
    Best Regards
    Pavan

    Hi Pavan,
    Please refer to this thread.
    https://forums.sdn.sap.com/thread.jspa?threadID=948170&tstart=0
    https://www.sdn.sap.com/irj/sdn/thread?threadID=943740&tstart=150
    Hope this helps.
    Cheers,
    Sandeep Tudumu
    Edited by: Sandeep Tudumu on Jul 7, 2008 10:22 PM

  • WPC for Anonymous user

    Dear All,
    We are on SAP NW 7.3 and trying to provide the WPC page for anonymous users.
    Have designed the WPC content, connected to a role and gave the role to anonymous user, but when we go to portal
    http://<host>:<port>/irj/portal/anonymous it gives a logon page. To resolve the issue have gone thru all the posts and recommendations but still the same error.
    Tried to follow the blog 'Webpage composer Anonymous User access' but in NW 7.3 can find the PCD location 'WebpageComposer', - but in templates we have the WPC Templates and have given the required permissions
    Also the security zones are changed.
    Has it something to do with the 'Staging Area' folder  (Navigating through the role Accesible Area Management -> content Editor), because when we create any new Area/Page(WPC Area/Page) it creates the same in this folder, which is present as a KM Folder. This folder does not allow to set the permissions (Accesible Area Management -> Content Library -> Staging Area -> Details -> Permissions)
    Your valuable suggestions would really help me to resolve this issue.
    Thanks,
    Srv

    Dear All,
    Got the reply from SAP to perform the below steps and its working fine for us.. just in case any one of you needs this info.
    1. Add the "authentication scheme" property to the WPC design time page template: a. Go to "System Administration" ' "Content Model Management" ' "Property Classification" b. Under "Object Type" select "Page" c. Under "Template" select "WPC Design Time Page" d. Under "Available Properties" locate "Authentication Scheme" and add it to the "Selected Properties" 2. Go to the Area Management Role and locate the area and the page that you would like to be available to anonymous users 3. Set End User permissions for "Anonymous" group on the area 4. Publish the page(s) and the area 5. Navigate to "Content Administration". Make sure the "Area Management"role isn't open in some other tab or browser window 6. In the Portal Content Catalog, locate the role which is available to anonymous users and has the WPC area connected to it. 7. Open the role, open the connection 8. For each page under the workset (area): a. Open the page b. For each iview and page under the page, open the iview/page and navigate to its properties: i. Locate the "Authentication Scheme" property and change it to "anonymous" ii. Save the object iii. For pages, open the page and perform the same process for each iview under the page iv. Save

  • Login Page coming for Anonymous User

    Hi All,
    we have configured anonymous user for our portal. Created a role for anonymous access - added pages and iViews under that. All the iViews and pages are modified with authentication scheme property to Anonymous.
    Now when we access the portal with the url http://host:port/irj its showing the login box in the top part of the page and in the bottom part its showing the anonymous role which we created.
    Let me tell you what we have done...
    Created role, iViews for Anonymous role, set the authentication property to 'Anonymous'.
    In Visual Admin-> Server-> Services-> UME Provider set the variable ume.login.anonymous_user.mode to 1.
    Variable ume.login.basicauthentication to 1.
    Variable ume.login.guest_user.uniqueids to Guest.
    Then we have updated the index.html file under <drive>:\usr\sap\<SID>\<instance_number>\j2ee\cluster\serverX\apps\sap.com\irj\servlet_jsp\irj\root .. we changed
    <b><body onload="location.replace('portal' + document.location.search)"></body></b>
    to <b><body onload="location.replace('servlet/prt/portal/prtroot/com.sap.portal.navigation.portallauncher.anonymous' + document.location.search)"></body></b>
    But now when a guest user accesses the portal http://host:port/irj it gived the strange screen (logon + content page) as I described earlier.
    Please let us know where are we missing...
    thanks & regards,
    Shubhadip

    Hi,
    1 .  I have created a iView and set the authentication scheme anonymous.
    2.  Also I created a role and added the iview to a role.
    3. The role has only 1 iview.  The entry pt is yes  for the iview
    4.  The role has permissions of end user for anonymous user.
    5 I checked the masthead iview also.. It aslo has authentication scheme anonymous
    When I try accessing the iView  in the form <http/https>://<server>:<port>/irj/servlet/prt/portal/prtroot/pcd!3aportal_content!2fmyfolder!2fmyiView
    I am able to view it without any login..
    But when the url is accessed <http/https>://<server>:<port>/irj/portal/anonymous
    I see a login page in the Detailed navigation..
    Please help me solve this problem ..
    Thanks,
    Preeti

  • Anonymous user access to GP Process iView

    Hi GP/Portal Gurus,
    I've created an iView for my GP process. The problem is only authenticated users can successfully access to this GP Process iView. Anonymous users will get an error in accessing GP process iView. I've given the Page and iView authentication scheme as anonymous. But still, it doesn't work.
    The error message is:
    "com.sap.tc.webdynpro.clientserver.session.SessionExpiredLongJumpException: Application session has expired: No application session with ID oJji4PrZdG5ox8ITkiHTpAsDdNOJtMyv78EPQ66xiLlA/pcd:portal_content/cafUAT/formBrole/sap.com/cafeugpuiinst/AInstantiation/base exists. Hint: A follow-up request was sent to Web Dynpro, but no corresponding session was found under the existing sessions. Reasons: a) Session has expired; b) Web Dynpro is called with incorrect session parameters; c) Application session has been destroyed due to proceeding exception. Please restart the application..."
    Appreciate any help.
    Rgds,
    Hapizorr

    Hi Hapizorr
    From what you have posted, please try to login again into portal and then proceed with the creation of iView.
    Please let us know the behaviour this time.
    Regards
    Navneet

  • Anonymous user - getting id/password popup when accessing KM folder & files

    Hi All,
    We are trying to expose a KM folder [/documents/myDocs] to anonymous users (User: Guest assigned to 'Anonymous Users' group)
    i've created a KM Navigation iview and assigned to 'anonymous' role (and this role assigned to 'Anonymous Users' group).
    when i open the page as a Guest user, i get:
    - i see that an image (annotations image : /etc/public/mimes/images/ico16_note.gif ) opens the popup even though i have given '/etc' folder READ permissions to 'Anonymous Users' group; and FULLCONTROL to 'Everyone' group)
    - Also, when I navigate to an inner folder and try opening a PDF file, i get a popup asking for id & password
    i checked default trace and i see this error:
    Guest | ACCESS.ERROR | /documents/myDocs/RPT/RPT_NOTIFY/RPT_HELP.pdf | leaf_delete
    Guest | ACCESS.ERROR | /documents/myDocs/RPT/RPT_NOTIFY | node_delete
    i have already gone through SAP NOTE:  837898 - How to configure anonymous CM access. Doesn't help.
    Can anyone help?
    Waiting for ur response, Thank you,
    SK.

    Hello SK,
    Download com.sap.km.cm.par and open it on Developer Studio, check if Authentication Scheme=anonymous for both docs and navigation components
    When you open the page the image is displayed by the docs (com.sap.km.cm.docs) component, if the system is displaying a login screen at navigation the solution above might fix it
    regards,
    Rafael

  • Anonymous User Help

    I have configured an anonymous user and created a new framework page to display the content. When the page first loads, the correct framework page, theme, and content appear. However, if I click on one of the content tabs (even if it is the first one, which is currently showing correctly), I get the error "No portal desktop is defined for this user.If this problem persists, contact your system administrator."
    I have checked all permissions on everything to ensure that they are set correctly. Is there some type of session management that needs to be configured for anonymous users? It seems to load great the first time, and then after that is when the error occurs. Logged in users do not have this error.
    Thanks for any help offered.

    Hi,
    . Changing the Main Rules
    o Go to Portal content --> Portal Administrators -->Super administrators -->Main rules.
    o Right click and select edit object.
    o Click "Add IF Expression". Another IF statement is added. Already existing IF statement is necessarry.
    o Here you select If user = some user
    o Click the "Then" Statement. Now go to the Portal desktop you created and right click the portal desktop and select "Add portal desktop to expression".
    o Now save the rule collection.
    You are done for the user. Now close the browser and loggin with the specific user.
    Also, check these links for further assistance.
    https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/8d9d9c90-0201-0010-e9a4-ed82031e1908
    https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/e549a890-0201-0010-3f8b-d3b852457ebd
    regards,
    Sandeep
    Message was edited by:
            Sandeep Tudumu

  • Anonymous Users can see pages and files only about 10 minutes

    We have set Anonymous access permission to an KM repository. After the portal restarting very strange things are happen. An user who belongs to the Anonymous Users group can see and open pages (created by WPC),  files and hyperlinks. But after about ten minutes of such browsing a login screen begins to appear. Since that time the user canu2019t see and open any file of the repository.
    We have accurately read and applied recommendations of the Note 837898 - How to configure anonymous CM access.
    All URL Generator Service properties are exactly satisfied recommended values (e.g. /irj/go/*).
    We have granted Read permissions to all required repositories and recourses for Everyone and Anonymous Users groups (checked End User fieled as well).
    The site navigation structure and pages have been developed by mean of Web Page Composer (WPC).
    Security Zone (no safety) of WPC has been set with Read permission of Everyone and Anonymous Users groups.
    How to work around this?

    >
    Kyle Lawrence wrote:
    > Vladimir -
    >
    > Vladimir -
    >
    > Does this behaviour occur outside of WPC? 
    This behavior occurs then we click link inside pages generated in WPC. After that the anonymous see the login screen.
    > For example, if the anonymous user only has portal content, does the timeout occur? 
    What do you mean? Between ten and twenty minutes an anonymous user lost the ability to access any pages generated in WPC, any file contained in the portal, any XML Forms generated by XML Forms Builder (e.g. the News XML pages).
    > Does the timeout occur if the user does not navigate anywhere in the portal? 
    I'm not sure we didn't check. It's most likely that after a number previews of the pages it happens.
    > Does the timeout occur with  only KM and not WPC?
    >
    Again between ten and twenty minutes an anonymous user lost the ability to access any pages generated in WPC, any file contained in the portal, any XML Forms generated by XML Forms Builder (e.g. the News XML pages).
    Please read the following clarification of our situation.
    During setting up access of anonymous user to Web Page Composer pages we need to use Web Content repository that is not in the Documents repository.
    As is in the note 837898 there are no prefixes for WPC pages in the URL Generator Service.
    So the an anonymous user get login screen then attempt to access any WPC pages of the Web Content repository.
    How to achieve that content in the Web Content repository get as Content Link property the value '/irj/go/km/docs/wpccontent/u2026', rather than '/irj/servlet/prt/prtroot/...'?
    > It almost sounds like the user's logonticket has expired after 10 minutes.
    >
    As far as I know an anonymous user doesn't provided with logon ticket at all. You can check this in the SDN SAP Help.
    > Regards,
    >
    > Kyle

Maybe you are looking for