Configuring FPN with GRC portal.

Hi,
My requirement is to configure FPN between SAP EP and GRC portal. GRC roles should be available in portal.
users in SAP EP will be assigned GRC roles and will work further. We don't want user to access the GRC url directly.
If anyone has done this before or has any idea please suggest.
Regards
Amit

Hi Amit,
In that case you need to configure SSO between your SAP Portal and GRC Portal which is non SAP Application.
Depending on your non-SAP Portal and SAP Portal datasource, if datasource is same, you may need to generate Logon Ticket while login in to Non-SAP portal itself and if different you may need to implement some user mapping feature.
[Single Sign-On to Non-SAP Systems and Applications|http://help.sap.com/saphelp_nw70/helpdata/en/12/9f244183bb8639e10000000a1550b0/frameset.htm]
[Single Sign-On with User ID and Password|http://help.sap.com/saphelp_nw70/helpdata/en/1c/22afe6b26011d5993800508b6b8b11/content.htm]
Also check below threads -
SAP.Net Connector & SAP Logon Ticket
How to create SSO2 tickets on non-SAP systems?
Regards,
Sen

Similar Messages

  • J2ee agent 2.2 configuration problem with Websphere Portal 5.1

    Hi,
    I am trying to configure j2ee agent 2.2 with Websphere Portal server.
    I have followed the document "Sun Java SystemAccess Manager
    PolicyAgent 2.2 Guide for IBM WebSphere Portal Server 5.1.0.2"
    Please see the thread "Problem with Sun's SSO system and Websphere Portal Server integration" for environment related information.
    Also the security on app server has been enabled and is talking to LDAP.
    My aim here is to enable application server (portal server) to autheticate requests.
    I am getting following error when I log into the portal application.
    07/03/2007 06:32:16:062 PM IST: Thread[Servlet.Engine.Transports : 1,5,main]
    AmFilter: now processing: SSO Task Handler
    07/03/2007 06:32:16:062 PM IST: Thread[Servlet.Engine.Transports : 1,5,main]
    SSOTaskHandler: SSO Validation failed for null
    07/03/2007 06:32:16:062 PM IST: Thread[Servlet.Engine.Transports : 1,5,main]
    URLFailoverHelper: Checking if https://apollo.maxnewyorklife.com:443/amserver/UI/Login is available
    07/03/2007 06:32:16:078 PM IST: Thread[Servlet.Engine.Transports : 1,5,main]
    WARNING: URLFailoverHelper: the url https://apollo.maxnewyorklife.com:443/amserver/UI/Login is not available
    javax.net.ssl.SSLHandshakeException: unknown certificate
         at com.ibm.jsse.bs.a(Unknown Source)
         at com.ibm.jsse.bs.startHandshake(Unknown Source)
         at com.ibm.net.ssl.www.protocol.https.b.o(Unknown Source)
         at com.ibm.net.ssl.www.protocol.https.q.connect(Unknown Source)
         at com.ibm.net.ssl.internal.www.protocol.https.HttpsURLConnection.connect(Unknown Source)
         at com.sun.identity.agents.common.URLFailoverHelper.isAvailable(URLFailoverHelper.java:190)
         at com.sun.identity.agents.common.URLFailoverHelper.getAvailableURL(URLFailoverHelper.java:129)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getLoginURL(AmFilterRequestContext.java:757)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectURL(AmFilterRequestContext.java:285)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectURL(AmFilterRequestContext.java:258)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectResult(AmFilterRequestContext.java:363)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectResult(AmFilterRequestContext.java:345)
         at com.sun.identity.agents.filter.SSOTaskHandler.doSSOLogin(SSOTaskHandler.java:210)
         at com.sun.identity.agents.filter.SSOTaskHandler.process(SSOTaskHandler.java:98)
         at com.sun.identity.agents.filter.AmFilter.processTaskHandlers(AmFilter.java:189)
         at com.sun.identity.agents.filter.AmFilter.isAccessAllowed(AmFilter.java:152)
         at com.sun.identity.agents.websphere.AmIdentityAsserterBase.processRequest(AmIdentityAsserterBase.java:195)
         at com.sun.identity.agents.websphere.AmTrustAssociationInterceptor.negotiateValidateandEstablishTrust(AmTrustAssociationInterceptor.java:91)
         at com.ibm.ws.security.web.TAIWrapper.negotiateAndValidateEstablishedTrust(TAIWrapper.java:101)
         at com.ibm.ws.security.web.WebAuthenticator.handleTrustAssociation(WebAuthenticator.java:191)
         at com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:928)
         at com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:531)
         at com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:262)
         at com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:132)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.dispatch(WebAppRequestDispatcher.java:506)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.forward(WebAppRequestDispatcher.java:208)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.doForward(WebAppInvoker.java:134)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.handleInvocationHook(WebAppInvoker.java:321)
         at com.ibm.ws.webcontainer.cache.invocation.CachedInvocation.handleInvocation(CachedInvocation.java:71)
         at com.ibm.ws.webcontainer.srp.ServletRequestProcessor.dispatchByURI(ServletRequestProcessor.java:246)
         at com.ibm.ws.webcontainer.oselistener.OSEListenerDispatcher.service(OSEListener.java:334)
         at com.ibm.ws.webcontainer.http.HttpConnection.handleRequest(HttpConnection.java:56)
         at com.ibm.ws.http.HttpConnection.readAndHandleRequest(HttpConnection.java:652)
         at com.ibm.ws.http.HttpConnection.run(HttpConnection.java:448)
         at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:936)
    07/03/2007 06:32:16:078 PM IST: Thread[Servlet.Engine.Transports : 1,5,main]
    URLFailoverHelper: disconnected the connection for availability check
    07/03/2007 06:32:16:078 PM IST: Thread[Servlet.Engine.Transports : 1,5,main]
    ERROR: URLFailoverHelper: No URL is available at this time
    07/03/2007 06:32:16:078 PM IST: Thread[Servlet.Engine.Transports : 1,5,main]
    ERROR: AmFilter: Error while delegating to inbound handler: SSO Task Handler, access will be denied
    [AgentException Stack]
    com.sun.identity.agents.arch.AgentException: No URL is available at this time
         at com.sun.identity.agents.common.URLFailoverHelper.getAvailableURL(URLFailoverHelper.java:133)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getLoginURL(AmFilterRequestContext.java:757)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectURL(AmFilterRequestContext.java:285)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectURL(AmFilterRequestContext.java:258)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectResult(AmFilterRequestContext.java:363)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectResult(AmFilterRequestContext.java:345)
         at com.sun.identity.agents.filter.SSOTaskHandler.doSSOLogin(SSOTaskHandler.java:210)
         at com.sun.identity.agents.filter.SSOTaskHandler.process(SSOTaskHandler.java:98)
         at com.sun.identity.agents.filter.AmFilter.processTaskHandlers(AmFilter.java:189)
         at com.sun.identity.agents.filter.AmFilter.isAccessAllowed(AmFilter.java:152)
         at com.sun.identity.agents.websphere.AmIdentityAsserterBase.processRequest(AmIdentityAsserterBase.java:195)
         at com.sun.identity.agents.websphere.AmTrustAssociationInterceptor.negotiateValidateandEstablishTrust(AmTrustAssociationInterceptor.java:91)
         at com.ibm.ws.security.web.TAIWrapper.negotiateAndValidateEstablishedTrust(TAIWrapper.java:101)
         at com.ibm.ws.security.web.WebAuthenticator.handleTrustAssociation(WebAuthenticator.java:191)
         at com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:928)
         at com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:531)
         at com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:262)
         at com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:132)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.dispatch(WebAppRequestDispatcher.java:506)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.forward(WebAppRequestDispatcher.java:208)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.doForward(WebAppInvoker.java:134)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.handleInvocationHook(WebAppInvoker.java:321)
         at com.ibm.ws.webcontainer.cache.invocation.CachedInvocation.handleInvocation(CachedInvocation.java:71)
         at com.ibm.ws.webcontainer.srp.ServletRequestProcessor.dispatchByURI(ServletRequestProcessor.java:246)
         at com.ibm.ws.webcontainer.oselistener.OSEListenerDispatcher.service(OSEListener.java:334)
         at com.ibm.ws.webcontainer.http.HttpConnection.handleRequest(HttpConnection.java:56)
         at com.ibm.ws.http.HttpConnection.readAndHandleRequest(HttpConnection.java:652)
         at com.ibm.ws.http.HttpConnection.run(HttpConnection.java:448)
         at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:936)
    07/03/2007 06:32:16:078 PM IST: Thread[Servlet.Engine.Transports : 1,5,main]
    AmFilter: result =>
    FilterResult:
         Status      : FORBIDDEN
         RedirectURL     : null
         RequestHelper:
              null
         Data:
              null
    07/03/2007 06:32:16:078 PM IST: Thread[Servlet.Engine.Transports : 1,5,main]
    AmIdentityAsserter: result => TAIResult: status: 403, principal: null, subject: null
    From whatever analysis I have done so far, I believe this issue is related to the personal certificate for sun one webserver (on which access manager & LDAP are installed) not registered with the application server (portal server).
    I am not sure about the way I go by solving the issue.
    Please can anybody help me out.
    Thanks,
    Yaseer
    Message was edited by:
    yazee
    Message was edited by:
    yazee

    Ankush,
    I am getting error as follows in the webserver error log:-
    Error receiving request from 172.23.213.75 (SSL_ERROR_CERTIFICATE_UNKNOWN_ALERT: SSL peer had some unspecified issue with the certificate it received)
    Although I can get into am console but with https://apollo.maxnewyorklife.com/amconsole
    Tried the same thing, but couldnt resolve it. I will give it another go.
    Generally I am getting same error again and again.
    In my amWebsphere log file of j2ee agent (under root\am_wps_agent\agent_001\logs\debug) error I get.....
    07/15/2007 04:19:11:656 PM IST: Thread[Servlet.Engine.Transports : 0,5,main]
    AmFilter: now processing: SSO Task Handler
    07/15/2007 04:19:11:766 PM IST: Thread[Servlet.Engine.Transports : 0,5,main]
    SSOTokenValidator.validate(): Exception caught
    com.iplanet.sso.SSOException: Invalid sessionid formatjava.lang.IllegalArgumentException: Invalid server id in session id com.iplanet.services.naming.ServerEntryNotFoundException: Naming Service is not available.
         at com.iplanet.sso.providers.dpro.SSOProviderImpl.createSSOToken(SSOProviderImpl.java:205)
         at com.iplanet.sso.SSOTokenManager.createSSOToken(SSOTokenManager.java:325)
         at com.sun.identity.agents.common.SSOTokenValidator.validateInternal(SSOTokenValidator.java:252)
         at com.sun.identity.agents.common.SSOTokenValidator.validate(SSOTokenValidator.java:157)
         at com.sun.identity.agents.filter.SSOTaskHandler.process(SSOTaskHandler.java:88)
         at com.sun.identity.agents.filter.AmFilter.processTaskHandlers(AmFilter.java:189)
         at com.sun.identity.agents.filter.AmFilter.isAccessAllowed(AmFilter.java:152)
         at com.sun.identity.agents.websphere.AmIdentityAsserterBase.processRequest(AmIdentityAsserterBase.java:195)
         at com.sun.identity.agents.websphere.AmTrustAssociationInterceptor.negotiateValidateandEstablishTrust(AmTrustAssociationInterceptor.java:91)
         at com.ibm.ws.security.web.TAIWrapper.negotiateAndValidateEstablishedTrust(TAIWrapper.java:101)
         at com.ibm.ws.security.web.WebAuthenticator.handleTrustAssociation(WebAuthenticator.java:191)
         at com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:928)
         at com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:531)
         at com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:262)
         at com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:132)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.dispatch(WebAppRequestDispatcher.java:506)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.forward(WebAppRequestDispatcher.java:208)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.doForward(WebAppInvoker.java:134)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.handleInvocationHook(WebAppInvoker.java:321)
         at com.ibm.ws.webcontainer.cache.invocation.CachedInvocation.handleInvocation(CachedInvocation.java:71)
         at com.ibm.ws.webcontainer.srp.ServletRequestProcessor.dispatchByURI(ServletRequestProcessor.java:246)
         at com.ibm.ws.webcontainer.oselistener.OSEListenerDispatcher.service(OSEListener.java:334)
         at com.ibm.ws.webcontainer.http.HttpConnection.handleRequest(HttpConnection.java:56)
         at com.ibm.ws.http.HttpConnection.readAndHandleRequest(HttpConnection.java:652)
         at com.ibm.ws.http.HttpConnection.run(HttpConnection.java:448)
         at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:936)
    07/15/2007 04:19:11:766 PM IST: Thread[Servlet.Engine.Transports : 0,5,main]
    SSOTaskHandler: SSO Validation failed for AQIC5wM2LY4SfcwoaNKFd01DvjYeNPbR3wXaa9sMVjcKtwo=@AAJTSQACMDE=#
    07/15/2007 04:19:11:766 PM IST: Thread[Servlet.Engine.Transports : 0,5,main]
    URLFailoverHelper: Checking if https://apollo.maxnewyorklife.com:443/amserver/UI/Login is available
    07/15/2007 04:19:11:797 PM IST: Thread[Servlet.Engine.Transports : 0,5,main]
    WARNING: URLFailoverHelper: the url https://apollo.maxnewyorklife.com:443/amserver/UI/Login is not available
    javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.g: No trusted certificate found
         at com.ibm.jsse2.bw.a(Unknown Source)
         at com.ibm.jsse2.bx.a(Unknown Source)
         at com.ibm.jsse2.bx.a(Unknown Source)
         at com.ibm.jsse2.v.a(Unknown Source)
         at com.ibm.jsse2.v.a(Unknown Source)
         at com.ibm.jsse2.u.a(Unknown Source)
         at com.ibm.jsse2.bx.a(Unknown Source)
         at com.ibm.jsse2.bx.l(Unknown Source)
         at com.ibm.jsse2.bx.startHandshake(Unknown Source)
         at com.ibm.net.ssl.www.protocol.https.b.o(Unknown Source)
         at com.ibm.net.ssl.www.protocol.https.q.connect(Unknown Source)
         at com.ibm.net.ssl.internal.www.protocol.https.HttpsURLConnection.connect(Unknown Source)
         at com.sun.identity.agents.common.URLFailoverHelper.isAvailable(URLFailoverHelper.java:190)
         at com.sun.identity.agents.common.URLFailoverHelper.getAvailableURL(URLFailoverHelper.java:129)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getLoginURL(AmFilterRequestContext.java:757)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectURL(AmFilterRequestContext.java:285)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectURL(AmFilterRequestContext.java:258)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectResult(AmFilterRequestContext.java:363)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectResult(AmFilterRequestContext.java:345)
         at com.sun.identity.agents.filter.SSOTaskHandler.doSSOLogin(SSOTaskHandler.java:210)
         at com.sun.identity.agents.filter.SSOTaskHandler.process(SSOTaskHandler.java:98)
         at com.sun.identity.agents.filter.AmFilter.processTaskHandlers(AmFilter.java:189)
         at com.sun.identity.agents.filter.AmFilter.isAccessAllowed(AmFilter.java:152)
         at com.sun.identity.agents.websphere.AmIdentityAsserterBase.processRequest(AmIdentityAsserterBase.java:195)
         at com.sun.identity.agents.websphere.AmTrustAssociationInterceptor.negotiateValidateandEstablishTrust(AmTrustAssociationInterceptor.java:91)
         at com.ibm.ws.security.web.TAIWrapper.negotiateAndValidateEstablishedTrust(TAIWrapper.java:101)
         at com.ibm.ws.security.web.WebAuthenticator.handleTrustAssociation(WebAuthenticator.java:191)
         at com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:928)
         at com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:531)
         at com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:262)
         at com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:132)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.dispatch(WebAppRequestDispatcher.java:506)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.forward(WebAppRequestDispatcher.java:208)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.doForward(WebAppInvoker.java:134)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.handleInvocationHook(WebAppInvoker.java:321)
         at com.ibm.ws.webcontainer.cache.invocation.CachedInvocation.handleInvocation(CachedInvocation.java:71)
         at com.ibm.ws.webcontainer.srp.ServletRequestProcessor.dispatchByURI(ServletRequestProcessor.java:246)
         at com.ibm.ws.webcontainer.oselistener.OSEListenerDispatcher.service(OSEListener.java:334)
         at com.ibm.ws.webcontainer.http.HttpConnection.handleRequest(HttpConnection.java:56)
         at com.ibm.ws.http.HttpConnection.readAndHandleRequest(HttpConnection.java:652)
         at com.ibm.ws.http.HttpConnection.run(HttpConnection.java:448)
         at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:936)
    Caused by: com.ibm.jsse2.util.g: No trusted certificate found
         at com.ibm.jsse2.util.f.b(Unknown Source)
         at com.ibm.jsse2.util.f.b(Unknown Source)
         at com.ibm.jsse2.util.d.a(Unknown Source)
         at com.ibm.jsse2.bn.checkServerTrusted(Unknown Source)
         at com.ibm.jsse2.z.checkServerTrusted(Unknown Source)
         ... 39 more
    07/15/2007 04:19:11:797 PM IST: Thread[Servlet.Engine.Transports : 0,5,main]
    URLFailoverHelper: disconnected the connection for availability check
    07/15/2007 04:19:11:797 PM IST: Thread[Servlet.Engine.Transports : 0,5,main]
    ERROR: URLFailoverHelper: No URL is available at this time
    07/15/2007 04:19:11:797 PM IST: Thread[Servlet.Engine.Transports : 0,5,main]
    ERROR: AmFilter: Error while delegating to inbound handler: SSO Task Handler, access will be denied
    [AgentException Stack]
    com.sun.identity.agents.arch.AgentException: No URL is available at this time
         at com.sun.identity.agents.common.URLFailoverHelper.getAvailableURL(URLFailoverHelper.java:133)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getLoginURL(AmFilterRequestContext.java:757)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectURL(AmFilterRequestContext.java:285)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectURL(AmFilterRequestContext.java:258)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectResult(AmFilterRequestContext.java:363)
         at com.sun.identity.agents.filter.AmFilterRequestContext.getAuthRedirectResult(AmFilterRequestContext.java:345)
         at com.sun.identity.agents.filter.SSOTaskHandler.doSSOLogin(SSOTaskHandler.java:210)
         at com.sun.identity.agents.filter.SSOTaskHandler.process(SSOTaskHandler.java:98)
         at com.sun.identity.agents.filter.AmFilter.processTaskHandlers(AmFilter.java:189)
         at com.sun.identity.agents.filter.AmFilter.isAccessAllowed(AmFilter.java:152)
         at com.sun.identity.agents.websphere.AmIdentityAsserterBase.processRequest(AmIdentityAsserterBase.java:195)
         at com.sun.identity.agents.websphere.AmTrustAssociationInterceptor.negotiateValidateandEstablishTrust(AmTrustAssociationInterceptor.java:91)
         at com.ibm.ws.security.web.TAIWrapper.negotiateAndValidateEstablishedTrust(TAIWrapper.java:101)
         at com.ibm.ws.security.web.WebAuthenticator.handleTrustAssociation(WebAuthenticator.java:191)
         at com.ibm.ws.security.web.WebAuthenticator.authenticate(WebAuthenticator.java:928)
         at com.ibm.ws.security.web.WebCollaborator.authorize(WebCollaborator.java:531)
         at com.ibm.ws.security.web.EJSWebCollaborator.preInvoke(EJSWebCollaborator.java:262)
         at com.ibm.ws.webcontainer.webapp.WebAppSecurityCollaborator.preInvoke(WebAppSecurityCollaborator.java:132)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.dispatch(WebAppRequestDispatcher.java:506)
         at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.forward(WebAppRequestDispatcher.java:208)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.doForward(WebAppInvoker.java:134)
         at com.ibm.ws.webcontainer.srt.WebAppInvoker.handleInvocationHook(WebAppInvoker.java:321)
         at com.ibm.ws.webcontainer.cache.invocation.CachedInvocation.handleInvocation(CachedInvocation.java:71)
         at com.ibm.ws.webcontainer.srp.ServletRequestProcessor.dispatchByURI(ServletRequestProcessor.java:246)
         at com.ibm.ws.webcontainer.oselistener.OSEListenerDispatcher.service(OSEListener.java:334)
         at com.ibm.ws.webcontainer.http.HttpConnection.handleRequest(HttpConnection.java:56)
         at com.ibm.ws.http.HttpConnection.readAndHandleRequest(HttpConnection.java:652)
         at com.ibm.ws.http.HttpConnection.run(HttpConnection.java:448)
         at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:936)
    Thanks,
    Yaseer

  • BOXI 3.0 integration with SAP Portal

    Hi All,
    May I know how to integrate BOXI 3.0 reports with SAP portal 7.0/7.1?
    Best Regards,
    Ritesh

    Hi,
    Please find a thread to understand BOXI integration with SAP portal.
    Configure BO with SAP Portal
    BO integration kit for SAP is available at
    https://boc.sdn.sap.com/node/18962
    Best Regards,
    Ritesh

  • Log4J with weblogic Portal 9.2

    Can anybody have sample process to configure Log4J with weblogic Portal 9.2?
    Sample code alongwith log4jConfig.xml and other required jsr files would be helpful.
    I want to store all the log messages to defult weblogic dirctory. i.e base_doman\servers\AdminServer\logs

    Do you want your app to log messages using log4j (in which case the setup is no different in WLP than with any other app using log4j, read the log4j docs) or do you want weblogic server messages to be sent to Log4j?

  • Configuring GZip for OracleAS Portal

    How do you configure gzip with OracleAS portal.
    Currently i have added the gzip jar file in my application, and configured the same through the Web.xml file as
    <filter>
    <filter-name>Compress</filter-name>
    <filter-class>com.appln.GZIPFilter</filter-class>
    </filter>
    <filter-mapping>
    <filter-name>Compress</filter-name>
    <url-pattern>/portal</url-pattern>
    </filter-mapping>
    However the GZipFilter class is not getting invoked.
    I think the problem is the the way the url-pattern is written.
    Can someone please tell me how could this be written, so that the gzip utility is activated.
    Regards,
    Mukta

    How do you configure gzip with OracleAS portal.
    Currently i have added the gzip jar file in my application, and configured the same through the Web.xml file as
    <filter>
    <filter-name>Compress</filter-name>
    <filter-class>com.appln.GZIPFilter</filter-class>
    </filter>
    <filter-mapping>
    <filter-name>Compress</filter-name>
    <url-pattern>/portal</url-pattern>
    </filter-mapping>
    However the GZipFilter class is not getting invoked.
    I think the problem is the the way the url-pattern is written.
    Can someone please tell me how could this be written, so that the gzip utility is activated.
    Regards,
    Mukta

  • Unable to connect Enterprise portal with GRC AC CUP

    Hi Guru's ,
    We are configuring Portal with CUP so that we can provision portal roles. We have installed RTA in EP ( both producer and consumer) and have set up the connector portals We have setup the parameters of the connectors as below. Not sure why when I am trying to import role this is not working. Can you please help.
    ASSIGN_ROLES:OC
    saprole
    ASSIGN_GROUPS:OC
    sapgroup
    CHANGE_USER:OC
    sapuser
    CREATE_USER:OC
    sapuser
    CREATE_USER:password
    password
    DELETE_USER:OC
    sapuser
    LOCK_USER:OC
    sapuser
    LOCK_USER:islocked
    true
    LOCK_USER:type
    CHANGE_USER
    ROLESEARCH_URI
    http://server:port/UserroleSearchForAEService_5_3/Config1?wsdl&style=document
    ROLESEARCH_URI_PASSWORD
    password defined for Portal user (for retrieving roles)
    ROLESEARCH_URI_USERNAME
    Portal user id (for retrieving roles)
    ROLE_DATA_SOURCE
    ROLE.UME_ROLE_PERSISTENCE.un :
    SCHEMA_ID
    SAPprincipals
    UNLOCK_USER:OC
    sapuser
    UNLOCK_USER:islocked
    false
    USER_DATA_SOURCE
    Choose data source as configured in Portal UME:
    USER.PRIVATE_DATASOURCE.un:
    USER.R3_DATASOURCE.
    USER. CORP_LDAP.

    Hi GS GRC team,
    Check the below link from RIG that explains you the detailed steps to configure CUP with EP:
    [RIG Document on configuring GRC CUP with EP|http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/502a14db-6261-2c10-22b5-95117ab0e5ed?quicklink=index&overridelayout=true]
    Regards,
    Raghu

  • Help with Apache Reverse Proxy configuration with SAP Portal and SAP Webgui

    Dear Experts,
    I have an issue configuring Apache to work with SAP Portal and ERP webgui. Accessing Portal through Reverse Proxy is working fine. But the problem arises when we try to open an iView ERP webgui transaction page from Portal with the Reverse Proxy. Have anyone implemented similar requirements and could advice on the configuration required on the Apache side? Thank you

    hi,
    pls check the below links for reference:
    https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/24396589-0a01-0010-3c8c-ab2e3acf6fe2
    searchsap.techtarget.com/searchSAP/downloads/chapter-december.pdf
    1)Learn to implement the reverse proxy filter and portal gateway in SAP Enterprise Portal 6.0 on Web Application Server 6.40.
    https:/.../irj/sdn/nw-portalandcollaboration?rid=/webcontent/uuid/006efe7b-1b73-2910-c4ae-f45aa408da5b
    .2 )Configuring the Portal for Your Reverse Proxy Filter Solution . ... This document describes the reverse proxy filter mechanism in SAP Enterprise ...
    https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/32ad9b90-0201-0010-3c8a-c900cd685f8f
    3)have full reverse proxy functionality. Possibly. filter. requests. Internet ... Reverse proxy (optionally with authentication etc.) ...
    https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/c066c390-0201-0010-3cba-cd42dfbcc8be
    Note:please reward points if solution found helpfull
    Regards
    Chandrakanth.k

  • Configuring UWL in Federated Portal Network(FPN)

    Hi,
    I have a requirement to integrate UWL in FPN. Could some one throw light on this?
    Thanks.
    Best Regards,
    Shiva

    Hi,
    mabye this statement from SAP note https://service.sap.com/sap/support/notes/880482 does help you:
    Universal Worklist (UWL): It is recommended to configure only one UWL in the central consumer portal, for the following reasons:
    Multiple UWL instances are not synchronized. It is not possible to aggregate the work items from more than one UWL iView into a single UWL iView. UWL items from KM like subscriptions and approval workflows cannot be sent to remote UWLs either (thus KM and UWL should be configured in the same portal).
    Regards,
    Sascha

  • Recommended configuration for load balanced Portal with load balancer, multiple gateways and multiple servers.

    Does anyone have a recommended network, hardware and software configuration guide for a Portal installation running with multiple gateways load balanced (ie one URL) that talk to multiple servers?

    David,
    We've used Resonate (software) to load balance the gateways. It allows
    you to group all the gateways under 1 virtual URL and load balance the
    incoming connections over each gateway depending on the rules that you
    define in Resonate. Look in the SUN portal whitepapers there is one that
    talks about it specifically.
    As far as load balancing the calls to the portals, the gateways will
    automatically load balance across all the portals that they know about
    using a simple round-robin rotation. You may be able to use Resonate in
    front of the portals but you may need to activate persistance within
    Resonate to ensure that the user always ends up on the portal that he
    established his initial connection on (if you want that), check with Sun
    on this one.
    David Broeren wrote:
    Recommended configuration for load balanced Portal with load balancer,
    multiple gateways and multiple servers.
    Does anyone have a recommended network, hardware and software
    configuration guide for a Portal installation running with multiple
    gateways load balanced (ie one URL) that talk to multiple servers?
    Try our New Web Based Forum at http://softwareforum.sun.com
    Includes Access to our Product Knowledge Base!

  • Integrating internet pricing configuration with SAP portal

    hi all,
    Internet pricing configuration whic is a part of CRM is used for configuring products online. Is it possible to integrate it with SAP portal?
    Thanks in advance
    Ramanan

    hi,
    pls check the below links for reference:
    https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/24396589-0a01-0010-3c8c-ab2e3acf6fe2
    searchsap.techtarget.com/searchSAP/downloads/chapter-december.pdf
    1)Learn to implement the reverse proxy filter and portal gateway in SAP Enterprise Portal 6.0 on Web Application Server 6.40.
    https:/.../irj/sdn/nw-portalandcollaboration?rid=/webcontent/uuid/006efe7b-1b73-2910-c4ae-f45aa408da5b
    .2 )Configuring the Portal for Your Reverse Proxy Filter Solution . ... This document describes the reverse proxy filter mechanism in SAP Enterprise ...
    https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/32ad9b90-0201-0010-3c8a-c900cd685f8f
    3)have full reverse proxy functionality. Possibly. filter. requests. Internet ... Reverse proxy (optionally with authentication etc.) ...
    https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/c066c390-0201-0010-3cba-cd42dfbcc8be
    Note:please reward points if solution found helpfull
    Regards
    Chandrakanth.k

  • How to configure AMconfig.properties on gateway with 2 portal servers

    Hello,
    I run into an issue where I want to setup 1 portal gateway with 2 portal servers(+ access manager) all on separate machines. How can I define in AMconfig.properties that there are possible two portal servers.
    All is version 2005Q1
    Please see part of my actual AMconfig.properties :
    # grep portal AMConfig.properties
    com.iplanet.am.directory.host=portal1.domain.int
    com.iplanet.am.server.host=portal1.domainl.int
    com.iplanet.am.console.host=portal1.domain.int
    com.iplanet.am.profile.host=portal1.domain.int
    com.iplanet.am.naming.url=http://portal1.domain.int:80/amserver/namingservice
    com.iplanet.am.notification.url=http://portal1.domain.int:80/amserver/notificationservice
    com.iplanet.am.localserver.host=portal1.domain.int
    com.sun.identity.liberty.interaction.wspRedirectHandler=http://portal1.domain.int:80/amserver/WSPRedirectHandler
    Kind Regards
    Roland Vlerick

    See this thread.
    Error Installing Groupware Portlets for WLP 10.3.2
    Brad

  • How to configure KM in federated portal network

    Dear Friends,
      Can anyone help me in configuring KM in federated portal network. If KM is configured in producer portal how to make use of that KM content in consumer portal.
       Is it possible to directly configure KM in consumer portal?
      Please help me out.
      Thanks & Regards
      Sireesha.

    Hi Sireesha,
    1) In order to use all capabilities provided by Knowledge Management, the
    recommended solution would be to use KM only on one portal in the federation.
    This could be the central consumer portal or alternatively one of the producer
    portals. Then all features, like versioning, taxonomies, approval workflows,
    subscriptions, template-based publishing … will be available in this portal.
    2) In case KM has to be federated to different producer portals, KM iViews (e.g.
    Document iViews, Navigation iViews) could be integrated with the content sharing
    modes provided by FPN. However, this is not a deep integration, because only a
    redirect to the remotely located iViews is performed. The services themselves, like
    taxonomies, will not be available in the consumer portal.
    The recommended approach is to Configure KM on Consumer Portal only or Producer portal only.
    Regards,
    Shailesh Nagar

  • Install and config issues with Oracle Portal, Forms, Reports and Discoverer

    For a while now I've been struggling with migrating a testing database to a newer version.
    And right now I'm pretty much stuck at trying to configure Oracle Portal, Forms Reports and Discoverer
    What I've got:
    Windows server 2008 R2 64bit
    Oracle 11g database
    Java 6u27 64bit
    JDK 1.6 64bit (using this after 1.7 ended up throwing out bugs while trying to start a weblogic server)
    JDK 1.7 64bit
    Weblogic 10.3.5 (or so i think - I've installed from the wls1035_generic.jar from the oracle website)
    PFRD 11.1.1.2 with 11.1.1.3 installed over it, installed without config
    and a hanging up configuration
    Basically I've been trying to install PFRD (only forms, reports and enterprise manager from it actually) but it kept failing once it got to the configuration stage, so I installed without config, applied 11.1.1.3 and now trying to run the config manually with the good old \bin\config.bat
    Result - the config froze for approx.18 hours then failed
    There isn't much useful info I could deduct from the logs, mostly just says one or more configuration parts failed. At one place it mentions trying to set up a domain and starting up an adminserver for it - and apparently that's where it hangs up and finally times out and fails.
    I'm a little clueless what to do about it as the logs don't say anything else of use I could understand. Any ideas there?

    Trying the step by step, the only difference between that and what i do seems to be the file copying (which I can't do - there is no windows\extra\ directory anywhere, the files mentionned seem to already be on their places and either only there, or exactly the same) and clistering
    So far the news ain't good - the config process hangs on creating domain ->Step Creating Domain started
    It isn't frozen per se - the process doesn't use up any processor time, memory consumption within bounds, it reacts to button clicks and all..it just doesn't do anything concerning the said domain
    the last thing the .out file shows:
    Creating a new AdminServer Object ...
    AdminServer port is 7002
    Starting the domain ...
    LOADING DLL : E:\OracleDb\Middleware\develtools\install\config\\StartUtil64.dlland in the log:
    [2011-09-08T11:57:03.456+02:00] [as] [NOTIFICATION] [] [oracle.as.install.engine] [tid: 14] [ecid: 0000J98U0KsFS8XLxuDCiW1EQ92r000005,0] Setting >valueOf(DOMAIN_PORT) to:7002. Value obtained from:USERit's the same it did last time, when after 18hours it woke up with .out saying:
    oracle.as.provisioning.util.ConfigException:
    Error while starting the domain.
    Cause:
    An error occurred while starting the domain.
    Action:
    See logs for more details.
         at oracle.as.provisioning.util.ConfigException.createConfigException(ConfigException.java:123)
         at oracle.as.provisioning.weblogic.ASDomain.startDomain(ASDomain.java:3173)
         at oracle.as.provisioning.weblogic.ASDomain.startDomain(ASDomain.java:3033)
         at oracle.as.provisioning.engine.WorkFlowExecutor._startAdminServer(WorkFlowExecutor.java:1644)
         at oracle.as.provisioning.engine.WorkFlowExecutor._createDomain(WorkFlowExecutor.java:634)
         at oracle.as.provisioning.engine.WorkFlowExecutor.executeWLSWorkFlow(WorkFlowExecutor.java:390)
         at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:866)
         at oracle.as.install.classic.ca.standard.StandardWorkFlowExecutor.execute(StandardWorkFlowExecutor.java:65)
         at oracle.as.install.classic.ca.standard.AbstractProvisioningTask.execute(AbstractProvisioningTask.java:26)
         at oracle.as.install.classic.ca.standard.StandardProvisionTaskList.execute(StandardProvisionTaskList.java:61)
         at oracle.as.install.classic.ca.ClassicConfigMain.doExecute(ClassicConfigMain.java:124)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:619)
    Caused by: oracle.as.provisioning.util.ConfigException:
    Error while starting the domain.
    Cause:
    Starting the Admin_Server timed out.
    Action:
    See logs for more details.
         at oracle.as.provisioning.util.ConfigException.createConfigException(ConfigException.java:123)
         at oracle.as.provisioning.weblogic.ASDomain.startDomain(ASDomain.java:3143)
         ... 18 more
    oracle.as.provisioning.exception.ASProvisioningException
         at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:872)
         at oracle.as.install.classic.ca.standard.StandardWorkFlowExecutor.execute(StandardWorkFlowExecutor.java:65)
         at oracle.as.install.classic.ca.standard.AbstractProvisioningTask.execute(AbstractProvisioningTask.java:26)
         at oracle.as.install.classic.ca.standard.StandardProvisionTaskList.execute(StandardProvisionTaskList.java:61)
         at oracle.as.install.classic.ca.ClassicConfigMain.doExecute(ClassicConfigMain.java:124)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:619)
    Caused by: oracle.as.provisioning.exception.ASProvWorkflowException: Error Executing workflow.
         at oracle.as.provisioning.engine.WorkFlowExecutor._createDomain(WorkFlowExecutor.java:685)
         at oracle.as.provisioning.engine.WorkFlowExecutor.executeWLSWorkFlow(WorkFlowExecutor.java:390)
         at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:866)
         ... 13 more
    progress in calculate progress4
    progress in calculate progress4
    oracle.as.provisioning.exception.ASProvisioningException
         at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:872)
         at oracle.as.install.classic.ca.standard.StandardWorkFlowExecutor.execute(StandardWorkFlowExecutor.java:65)
         at oracle.as.install.classic.ca.standard.AbstractProvisioningTask.execute(AbstractProvisioningTask.java:26)
         at oracle.as.install.classic.ca.standard.StandardProvisionTaskList.execute(StandardProvisionTaskList.java:61)
         at oracle.as.install.classic.ca.ClassicConfigMain.doExecute(ClassicConfigMain.java:124)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:619)
    Caused by: oracle.as.provisioning.exception.ASProvWorkflowException: Error Executing workflow.
         at oracle.as.provisioning.engine.WorkFlowExecutor._createDomain(WorkFlowExecutor.java:685)
         at oracle.as.provisioning.engine.WorkFlowExecutor.executeWLSWorkFlow(WorkFlowExecutor.java:390)
         at oracle.as.provisioning.engine.Config.executeConfigWorkflow_WLS(Config.java:866)
         ... 13 more
    Going to execute executeAfterConfig
    java.lang.IllegalStateException: Action:Application Configuration failed with error:Configure Classic Failed.
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.fail(ConfigAction.java:227)
         at oracle.as.install.classic.ca.ClassicConfigMain.doExecute(ClassicConfigMain.java:129)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:619)
    In Config Module Finish Event...and the log continuing with some variable setting notifications and this:
    [2011-09-08T08:27:45.272+02:00] [as] [ERROR] [] [oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager] [tid: 14] [ecid: >0000J93lRQOFS8XLxuDCiW1EPpn_000005,0] One or More configurations failed. Exitingthen again more traces and notifications until the end marking config as failed
    I'm kinda paranoid about the double backslash in the dll path, but other than that no clue as to why the domain doesn't set up
    the other link you mentionned seems to have no relevance yet
    does that clear up anything for you though?
    ..can the lack of SOA suite have anything to do with the problem?

  • Process flow - Active Directory integration with Enterprise Portal

    Hi
    I have seen number of documents/forum discussions on integrating Microsoft Active Directory (LDAP) with Enterprise Portal, but unable to find out the process flow for achieving the same.
    I have installed Enterprise Portal 6 (SP13) running on Web AS 640 (J2EE Standalone). The UME is currently configured to use Java database. (i.e datasourceconfiguration_database_only.xml)
    I intend to proceed as below for integrating with Active Directory and integrate with Windows authentication:
    1) Configure UME to use an LDAP Server as Data Source using Config Tool
    http://help.sap.com/saphelp_erp2004/helpdata/en/cc/cdd93f130f9115e10000000a155106/frameset.htm
    2) Configure Enterprise Portal UME i.e http://<host name>:50000/irj - System Administration - System Configuration - UM Configuration
    <b>Should I configure Data Sources & LDAP Server here as I have already configured these using J2EE Config tool (point no.1).</b>
    3) Integrate Windows authentication with EP using IISProxy module.
    I hope the above will enable me to logon to Portal without supplying username and password once you are logged on to the PC using your Windows user name and password.
    Also, any schema updates required to Activie Directory i.e What additional data is stored in A.D.
    I would appreciate your guidance on this.
    Thanks in advance,
    Chandu

    Hi Chandau,
    you wanted that some users are not taken into account by the User Management Engine (UME).
    This behavior can be established by specifying the
    ume.ldap.negative_user_filter property for the LDAP data sources in the data source configuration file. Using this property one can define that all users and accounts that
    match the defined conditions are filtered out by the UME API.
    A detailed documentation can be found in the SAP Online Help:
    http://help.sap.com/saphelp_nw04/helpdata/en/9a/f43541b9cc4c0de10000000a1550b0/
    content.htm
    In the following example of a data source configuration file for Microsoft Active Directory
    Server the attribute userPrincipalName is used as Logon ID of a portal user id (j_user).
    Here the user accounts that have one of the following Logon ID’s (index_service,
    notificator_service and cmadmin_service ) are filtered out.
    <dataSources>
    </dataSource>
    <dataSource id="CORP_LDAP">
    <privateSection>
    <ume.ldap.negative_user_filter>
    userPrincipalName=[index_service,notificator_service,cmadmin_service]
    </ume.ldap.negative_user_filter>
    </privateSection>
    </dataSource>
    </dataSources>

  • False Positives with GRC AC 5.2

    Hi,
    I actually have been working with GRC AC 5.2 (Compliance Calibrator) and we encountered several problems with false positives, working in the risk analysis.
    ¿do anyone knows how to solve this problem? ¿do you have documents or links to help?
    Thanks,
    Ricardo.

    Thank you Alpesh for response.
    In fact, i have several problem with false positives, but with transactional level. For example, i have a user with pfcg and su01 transaction. The configutation of profiles in SAP r/3 system do not allow to user involved in this, to execute both transactions in end-to-end process, i mean, the user have a transaction vía s_tcode object, have some other objects related with pfcg and su01 transactions, but he doesn´t have the values that allow to a transactions work properly. Then the Compliance Calibrator informs risks that it doesn´t exists.
    It seems that is a ruleset configuration problem in the CC, then my question is, ¿the standard ruleset detects properly these problems?
    Let my explain the reason that causes the problem.
    We have been working with personalized ruleset, for customer-request. For that reason we look the usobt_c table and we form the ruleset-->functions in CC so that this functions were equal to usobt_c table. We did that because the standard ruleset shows false positives, such as first example of this post.
    Thank you very much,
    RCL.
    Edited by: Ricardo  Carrasco on Jun 18, 2009 11:58 PM

Maybe you are looking for

  • Field length change in Web Dynpro Components iView

    Hi, We are using SAP MDM Web Dynpro Components - Configuration Manager (NW7.3) to develop the UI. One of the issue while disply field is, Though field maintained in MDM has only 2 charaters UI that displays a full-screen-width field. I would like to

  • Problem while dropping snapshot

    Dear sir I am a junior dba, now I have a problem while I drop a customerinfo snapshot from Oracle 9.2.0.4 database. It seem to be the snapshot has been dropped correctly. But I found it's still remained in user's schema and looks like normal table. I

  • Significance of Secondary field in doc_link of parameter ct_doc_flow

    Hi , Does any one know what is the significance of ' Secondary' field (Document Flow: Secondary Object)in internal table  doc_link of parameter ct_doc_flow in FM CRM_ORDER_MAINTAIN . Regards, Nithish Edited by: nithish P on Dec 20, 2011 2:49 PM

  • Problem in integration senario?

    hi experts, iam doing simlane diagram in integration senario in IR part  for this i have created two Actions.in integration senario when iam creating Actions between two  between sender and receiver iam not geting asynchronous action,iam geting synch

  • Shift+Delete = Forward Delete is Driving Me Mad

    Is there any way to make Shift+Delete do normal backward-delete instead of forward-delete? Edit a keyboard layout maybe?