Consume 3rd party authentication (providers) in SP13

Similar Messages

• Service Manager 2012 R2 connector to check 3rd party email providers like gmail, etc.

  Is there a solution that allows you to create requests from email massages sent to 3rd party email providers like gmail, yahoo, etc.?  Similar to the way the Exchange connector works with Exchange.

  Hi Herb,
  Now provided by SCUtils :)
  SCUtils Email Connector supports IMAP/POP3 so all mail servers are supported.
  Cheers,
  Marat
  Site: www.scutils.com  Twitter:
  LinkedIn:
  Graveyard:

• 3rd party authentication - PingFederater

  We are looking to use a 3rd party authentication tool (PingFederater) and was wondering if anyone has ever tried this.

  Hi,
  i never heard that this should work. When i take a look at the tech specs of the product i never saw BOE working with these technologies.
  Beside it is not listed in the PAM i think this would not work.
  To have an official statement i would recommend you open a Support Message with the SAP Support.
  Regards
  -Seb.

• 3rd party authentication before ACS (TACACS+) auth

  Dear experts,
  I've been struggling to find out information on 3rd party authentication integration to the ACS. I know that ACS can use external databases, but this is not what I'm looking for.
  I have someone, who wishes to use ACS for user authentication and at the same time develop real single sign-on to their corporate infrastructure. I have the product that can deliver this Single Sign-On, but thus far I've been able to reduce Sign-Ons to two (ACS and then Single Sign-On).
  What I would like to know is, that can I implement a third party authentication _before_ ACS authentication. In this scenario the 3rd party authentication server would be the first point of contact. After successfully receiving the user credentials from the user, the authentication server would forward this inforamtion to ACS. So is there any kind of descriptions / API documentation on how to implement this? If this is possible, my customer could get real single sign-on to multitude of Intranet services and continue utilizing the ACS investment.

  Here is a document on Monitoring and Reporting Tool Integration into Network Admission Control.
  http://www.cisco.com/en/US/netsol/ns466/networking_solutions_white_paper0900aecd801dee49.shtml

• Consuming 3rd party web service in Java web dynpro application

  Hi All,
  I am working on a scenario where external(3rd party) web service has to be consumed in WD Java application. I am provided with WSDL file. Let me explain how I usually consume other webservices:
       Create model->AWS model->Remote Location/file System->provide url->create/choose service group->finish
       Then I would generate the code in custom controller by applying template
        I assign provider system as local for the service group in nwa.
  This is normal process to me. I am struck with this 3rd party web service. Please share your ideas on the same. Any help is highly appreciated.
  BR,
  Manoj

  I ve created a provider system pointing to where 3rd party WS resides. i am trying to connect through WSIL. While pinging that provider system, I don't see that particular WS(that I am gonna consume). And while assigning this Provider system to service group, processing state getting 'Failed'.
  What could be reason?

• Using Weblogic LDAP JAAS credentials for 3rd party authentication

  Hello to all!
  I'm posting this question because I'm developing a software layer that will connect a weblogic based web application, with LDAP authentication, to a 3rd party application, also with LDAP authentication, and I'm having difficulties in getting a <b><i>javax.security.auth.Subject</i></b> object from the weblogic server.
  I already have a way of doing it, but it requires that a username and a password exist in some sort of storage, in order to work (either hardcoded (which is to be avoided as much as possible) or stored in a file (which is to be avoided if possible, but if nothing better exists...)).
  I'm using a Weblogic 11g server, with LDAP authentication (LDAP provider placed in last at the provider list, with flag SUFFICIENT) and I'm developing the software layer using Oracle's jDeveloper 11g Release 1.
  Now, this 3rd party application requires a <b><i>javax.security.auth.Subject</i></b> object in order to perform authentication.
  How do I get this from the weblogic server ?
  Of the following approaches, can you tell me which are the most correct ones ?
  <ul>
  a)<b>
      LoginContext lc = null;
      try {
          lc = new LoginContext("<JAAS instance name>");
          lc.login();
      } catch (LoginException e) {
          e.printStackTrace();
      javax.security.auth.Subject subject = lc.getSubject();
  </b>
  </ul>
  <ul>
  b)<b>
      LoginContext lc = new LoginContext("<JAAS instance name>"
          new MyClass.CallbackHandler(userid, password));
      lc.login();
      javax.security.auth.Subject subject = lc.getSubject();
      javax.security.auth.Subject.doAs(subject, myClassObject);
  </b>
  </ul>
  <ul>
  c)<b>
      javax.security.auth.Subject subjectA = weblogic.security.Security.getCurrentSubject();
      subjectA.doAs(subjectA, myClassObject);
  </b>
  </ul>
  Thanks in advance,
  Nuno B.

  Here is a document on Monitoring and Reporting Tool Integration into Network Admission Control.
  http://www.cisco.com/en/US/netsol/ns466/networking_solutions_white_paper0900aecd801dee49.shtml

• How to consume 3rd Party WSDL which contains the Include statement

  I have a 3rd Party WSDL I am trying to consume using the BizTalk WCF Consume Wizard.
  When I try and consume the WSDL it gives me blank XSDs and Binding files. It does produce the Port Types in an Orchestration.
  This
  article mentions how to use the svcutil tool to get around the use of Import statements but does not give the full command. I have tried svcutil /t:metadata <Path of WSDL> but get an error stating can't load file or assembly.
  Any ideas anyone?

  Hi，
  Please refer to the blog which might helpfull:
  #The BizTalk WCF Service Consuming Wizard and a Look at the Artefacts Created
  http://jamescorbould.wordpress.com/2013/09/27/biztalk-and-wcf-consuming-a-wcf-service-part-2-the-biztalk-wcf-service-consuming-wizard-and-a-look-at-the-artefacts-created/

• 3rd party smtp providers

  i have trouble sending email to our other company locations was going to try sending via 3rd party smtp 
  can anyone recommend a one? i found smtp2go have not used one before will it work for this for what i need?
  has anyone used smtp2go?

  Hi Mattie,
  Appears you are looking for a small scale solution.
  Otherwise you can try Exchange Online Protection (Microsoft), Cloud Email Security (Triniton - Websense), MessageLabs - Symantec.
  Regards,
  Satyajit
  Please “Vote As Helpful”
  if you find my contribution useful or “Mark As Answer” if it does answer your question. That will encourage me - and others - to take time out to help you.

• Competent Apple 3rd Party Service Providers?

  My threads concerning this issue are so old they've been archived. Alittle background.
  500mhz Pismo with 20 gb hd purchased new 11/2000.
  HD actually caught fire 10/2003. Apple promptly repaired under warranty.
  Replaced power supply (flying saucer) in 2006. Replaced batteries and maxed out the RAM in spring of 2007. Running 10.3.9 at the time.
  10/2007: Pismo's video and audio vanish although hd continues to run. Video and audio return after reboot but this only works for a brief time. Since then, Pismo has visited 3 regional shops for 12 visits. Everything replaced and upgraded according to the shops; $1000 spent to date. Pismo worked very briefly on a handful of occassions but always failed in the same manner as described above or just plain didn't start up the vast majority of the time.
  My question: Is there a secret Apple 'handshake' or 'password' I need to know to get this unit properly repaired? A special 'wink'? Do I need a commendation from an Isis high priestess?
  The one competent, honest Apple 3rd party tech left the area years ago and the local company owned Apple Store refuses to work on a unit this old. My nephew is a Dell tech at the nashville, TN facility and has offered to take a look.
  Any and all constructive comments appreciated.

  eww,
  Thanks for the response. The money hasn't been the issue here and you know it as we've gone around about this before. Two of the three shop I've never done business with before; third shop is local and had a dreadful rep years ago. I gave'em another shot as the techs bought the shop from the original owner - nothing changed except they now lack a showroom. I still recall the Police showing up on one occassion to quiten a 'disruptive' customer; one of many unfortunately.
  My Apple experience got off to a rocky start until I was given a tip about a first rate Apple tech who worked for an electronic goods retail chain. He repaired both problematic Apple computers the first time and they remained problem free. Unfortunately, the tech returned to Maryland the following year I was told.
  *My point is Apple appears to have no oversight function regarding whoever chooses to hang the Apple shingle over their door*. I do appreciate the tip regarding PowerBook Parts. Meanwhile, I'll let my inhouse (family) Dell Tech take a look at it.
  Joe

• Consuming 3rd Party Web Service - Proxy Generation Error

  Hi All,
  I am trying to consume a third party Web Service in SE80 and get the below error while completing the steps to configure proxy class.
  "Exception Occurred in Configuration Handler"
  Uninstantiated object "new child subject" in method
  IF_SRT_WSP_SUBJECT_SERVICE~CREATE_BINDING of class CL_SRT_WSP_SUBJECT_SERVICE
  The same web service when I try to import in Java it is fine. Has anyone encountered this issue?
  Note: I tried both using URL and also saving as local file and its the same error message.
  Thanks,
  Nagarajan.
  The Question is still open.
  Edited by: Nagarajan Kumarappan on Oct 10, 2011 9:40 AM

  The problem we had was with the web service itself. There were in multiple places we had few definitions repeated which caused the issue. Once we removed it we were good. Use altova xml free for 30 days to check your wsdl. It's great tool to identify issues.
  Thanks and good luck !!!

• SGD with Third Party Authentication issue

  Hi
  I am trying to setup SGD with Third Party Authentication and have done all the requisites for this.
  I input the SGD URL and get the Third Party Login page but after I input my credentials, I get redirected to the SGD default login page which should not be the case. I had already set "Tomcat Authentication" as false in server.xml and enabled the Third Party authentication scheme in Array Manger
  What else am I missing ?
  Kindly advise
  SGD ver4.31
  Thanks

  Every now and then I have found the same. One thing that almost always solved the problem was recreating a new trusted user, you can follow the steps from:
  [http://docs.sun.com/source/820-1088/trusted_users.html|http://docs.sun.com/source/820-1088/trusted_users.html]
  Especially the step to test the trusted_user is a very good test to see if the trusted user is ok: http://server/axis/services/rpc/externalauth
  When prompted, log in as the trusted user.
  An other way to test it is via the api-test functionality: http://server/sgd/admin/apitest/
  First setup a session: webtopsession->startSession(0)
  Then authenticate via externalauth->setSessionIdentity
  These steps are the minimal steps to perform 3rdParty Authentication
  (There is also an example jsp for 3rd Party Authentication on the wikis.sun: [http://wikis.sun.com/display/SecureGlobalDesktop/Single+sign-on+(before+4.40)|http://wikis.sun.com/display/SecureGlobalDesktop/Single+sign-on+(before+4.40)] )
  - Remold

• Is message persistance with 3rd party queues implemented?

  Is message persistance with 3rd party queues implemented for 9.0.2 or 9.0.3 prev?
  I am not able to use Oracle JMS and want to try implementing this.
  Documents on how to implement this would be helpful.
  thanks,
  Isaac

  OC4J 9.0.2 is certified with few JMS providers like MQSeries, SonicMQ, SwiftMQ, etc. Please look at the Services Guide that documents how to use 3rd Party JMS providers.
  regards
  Debu

• SAP to consume third party webservice that requires saml authentication

  Hi All,
  I am able to invoke our thirdparty webservice from soapUI, but it is a two step procedure, This is how it works in SoapUI:
  step 1) first send below predefined message, embeded with username and pwd in the header:
  <SOAP:Envelope xmlns:SOAP="http://schemas.xmlsoap.org/soap/envelope/">
       <SOAP:Header>
            <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
                 <wsse:UsernameToken>
                      <wsse:Username>myusername</wsse:Username>
                      <wsse:Password>mypwd</wsse:Password>
                 </wsse:UsernameToken>
            </wsse:Security>
       </SOAP:Header>
       <SOAP:Body>
            <samlp:Request xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol">
                 <samlp:AuthenticationQuery>
                      <saml:Subject xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion">
                           <saml:NameIdentifier Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">myusername</saml:NameIdentifier>
                      </saml:Subject>
                 </samlp:AuthenticationQuery>
            </samlp:Request>
       </SOAP:Body>
  </SOAP:Envelope>
  after this, we are got the response as:
  <SOAP:Envelope xmlns:SOAP="http://schemas.xmlsoap.org/soap/envelope/">
       <SOAP:Header>
            <header xmlns="http://schemas.thirdparty.com/General/1.0/">
            </header>
       </SOAP:Header>
       <SOAP:Body>
            <samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol">
                 <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
                      <SignedInfo>
                           <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                           <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
                           <Reference URI="#A18A90576-64FD-71E0-A9BC-286444658733">
                                <Transforms>
                                     <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                                </Transforms>
                                <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                                <DigestValue>LzlvRhszr3qlOTG7AZX8i+yKvRI=</DigestValue>
                           </Reference>
                      </SignedInfo>
                      <SignatureValue>qc1x+84wkkPrf76dHW2HJ...</SignatureValue>
                      <KeyInfo>
                           <X509Data>
                                <X509Certificate>MIIB3I.....NBgkqhk</X509Certificate>
                           </X509Data>
                      </KeyInfo>
                 </Signature>
                 <samlp:Status>
                      <samlp:StatusCode Value="samlp:Success"/>
                 </samlp:Status>
                 <saml:Assertion AssertionID="A18A90576.." xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion">
                      <saml:Conditions NotBefore="2011-01-25T09:14:54.045Z" NotOnOrAfter="2011-01-25T17:19:54.045Z"/>
                      <saml:AuthenticationStatement AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password">
                           <saml:Subject>
                                <saml:NameIdentifier Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">myusername</saml:NameIdentifier>
                           </saml:Subject>
                      </saml:AuthenticationStatement>
                 </saml:Assertion>
                 <samlp:AssertionArtifact>MDGH....RbY6qHUFcO</samlp:AssertionArtifact>
            </samlp:Response>
       </SOAP:Body>
  </SOAP:Envelope>
  step 2) from the above response body, use the Signature elemenent, and saml:Assertion element as part of header of the original request, so the actual request in soapUI has become:
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:product="http://mytp/myfunctionality">
       <soapenv:Header>
            <wsse:Security xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
                 <Signature> ...</Signature>
                 <saml:Assertion>..</saml:Assertion>
            </wsse:Security>
       </soapenv:Header>
       <soapenv:Body>
            <product:isProductAvailable>
                 <product:ProductNAME>myproduct</product:ProductNAME>
                 <product:ProductYEAR>2010</product:ProductYEAR>
            </product:isProductAvailable>
       </soapenv:Body>
  </soapenv:Envelope>
  after sending this above request, we are getting the desired response:
  <soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:product="http://mytp/myfunctionality">
       <soapenv:Header>
       </soapenv:Header>
       <soapenv:Body>
            <isProductAvailableResponse xmlns="http://mytp/myfunctionality">
                 <isProductAvailable>true</isProductAvailable>
            </isProductAvailableResponse>
       </soapenv:Body>
  </soapenv:Envelope>
  If we want to implement the same functionality using abap consumer proxy, do we need to invoke with two different requests,
  is there any efficient way, where we can specify the values of <wsse:Username> and <wsse:Password>, and invoke with original payload.
  is there any config in SOAMANAGER, to specify the saml releated settings, for the consumer proxy.
  what could be the simplest way to consume this webservice in sap.
  thanks in advance, BJagdishwar.

  Hi,
  Please create logical port using wsdl directly it will apply required settings in LP. You can also ask for client certificate which you can apply while calling 3rd party services. To me this seems X509 client certificate authentication.
  You can also create LP manually by giving SAP SAML authentication and save. Next time when you edit LP you will be able to see plenty of option to configure required settings.
  Please note that not all security methods are supported by SAP.
  Regards,
  Gourav

• Authentication on PocketPC through 3rd Party SSO client

  Dear community,
  I am currently investigating into the possibility of authenticating a user on a PocketPC device through a 3rd party SSO client.
  Does anyone have any experience in this ? What is the configuration effort is and what product was used ?
  Thank you very much, best regards
  Jochen

  as an addendum to my post, I've seen that this can be done.
  http://www.hardcopy.de/hardcopy/english/bsp_sap_neu_kz.php3

• Consuming CRM Web Services via 3rd Party system

  Hi Gurus
  I've created an RFC Function Module which I converted to a Web Service
  I've used soapUI to test the Web Service and it's working perfectly.
  The 3rd Party wanting to use the Web Service is new to this technology and I'm not much better from a consuming point of view.
  What URL does the 3rd party need to call:
  WSD
  WDSL
  The Endpoint
  Or am I completely off.
  Many Thanks in advance
  Panduranga

  Hi,
  Your question does not make sense.
  If you have tested your web service successfully with SOAPUI, you do know the answer.
  The 3rd party needs to use the URL that you used for your SOAPUI test.
  Regards,
  Olivier