Enable https connection to the portal
Dear all,
i tried to implement an https connection to my portal environment but i received this error:
"IisProxy.dll: 500 Internal Server Error
ProxyWorker(): IOException: SapSSLStart() failed: -30 (SSSLERR_SERVER_CERT_MISMATCH)
at SapConnection.cpp:719".
The connection is not made direct to the portal application enviroment on the port 50001 but through a reverse proxy.
Is there someone that can help to undesrtstand this error message ot could indicate how to find a guide to implement the https?
Regards
First, did you apply note 715303 for IIS 6.0?
Second, docs for IISProxy and J2EE are not the best in the world. I have docs from 6.20 that I still use today. I just scanned them and have them as jpg's in a 6 meg zip file. Go to my business card and e-mail me your e-mail address and I will send the docs.
Similar Messages
-
How can I connect to the portal homepage on a 9i Database
I successfully installed Oracle 9iAS on a MS Windows NT machine
and configured the Portal Server on an Oracle 9i Database on
another machine (Windows 2000).
But when I try to call the portal homepage (portal30.home), I
get the following error: "The preference path does not exist:
Oracle.Portal.Page (WWC-51000)".
I can successfully call the .../admin_/gateway.htm page and
connect over there to the database.
The shared_pool_size parameter is large enough (92274688).
I installed the portal server manually, without the GUI, because
the connection to the database during the installation was only
enabled as SYSDBA or SYSOPER.
How can I also get connected to portal homepage?
Thanks,
Reinaldocan i connect my roku box to the 2nd AE's ethernet port?
Yes
will it make any difference? (as opposed to the roku box, used for netflix, picking up it's signal wirelessly).
Probably not, since the AirPort Express is picking up its signal via wireless.
The same signal just appears at the Ethernet port. If anything, the signal at the Ethernet port will have a bit less bandwidth than the wireless signal since the Express must convert from wireless to Ethernet...and you always lose something in the conversion process.
Normally, you would use the Ethernet port if a device did not have wireless capability. -
Hi ,
I have made a Portal application in the NWDS.I have used JCO to coonect to the CRM system at backend.
The connection is successful but what our requirement is like the JCO connection values like User Id and Password should not be hardcoded in the Portal application.
Is there any way we can achieve it without hardcoding.
Thanks & Regards,
AmarysHi Amarys,
1) Create the Backend System(CRM) in System configuration in Portal and configure Single Sign-On between Portal to Backend(CRM).
2) Create JCo destinations
Meta Data - You need to enter Service User ID/Password
Model Data - Select Login method as Certificate Login
If you configure correctly, you can call Webdynpro applications using SSO through Portal.
Thanks,
Naga -
Integrating Adobe Connect into the portal
Anyone have any luck or experience with integrating Adobe Connect or another web conferencing software into the portal? We are potentially looking at integrating Adobe Connect.
Thanks Ashish. Yes, Connect is Adobe's new name for Breeze. I may give you a call soon because the customer is thinking about integrating to Connect or Windows Live soon, we're just evaluating feasiblity to integrating to each now.
Mike -
Urgent--custom servlet not working with https/gateway of the portal server
We have created the custom servlet to add some more authentication to the login screen. I have explained detaildely below.
We have set if password reset change password screen should come by using identity server.
First screen comes which asks �user id� and �password�.
after this next screen comes with �old password�, �New Password� and �Confirm Password� (as we have forcefully asked user to change password after reset by using identity server ).
On this page we have added two new filed �Date of Birth� and �Date of Joining�.
And we are forcefully transferring request to our Custom Servlet which will validate the �Date of Birth� and �Date of Joining� from the database and submit the same a form as required by Login Servlet to validate the default parameters �old Password�, �New Password� and �Confirm Password� (which is the default validation without adding custom Servlet).
This whole process is working with �http� protocol and giving �unable to connect� host with �https� protocol.
Without custom Servlet process is like this, which is working
Login (usrid, password) � Login (Old Password, New Password, Confirm Password) � Portal home Page
With custom Servlet , Which is not working with �https� Protocol. we are getting the message "Authentication Failed" screen.
Login (usrid, password) --> Login (Old Password, New Password, Confirm Password , Date of Birth, Date of Joinig) --> Custom Servlet validate Date of Birth, Date of Joining --> Login (Old password, new Password, Confirm Password) --> Protal Home Page
This one works with http, whereas this one gives the "Authentication Failed" screen with the https.
Please let me know if anybody have implemented this and help me to resolve the issue.
Best Regards
RamkumarHi,
I am also getting this error message in the sun ONE webserver error log file....
[20/Nov/2004:13:42:39] failure ( 6162): for host 172.16.5.21 trying to GET /amserver/UI/Login, service-j2ee reports:
StandardWrapperValve[LoginServlet]: WEB2792: Servlet.service() for servlet LoginServlet threw exception
com.iplanet.jato.CompleteRequestException
at com.sun.identity.authentication.UI.AuthenticationServletBase.onUncaughtException(AuthenticationServletBase
.java:141)
at com.iplanet.jato.ApplicationServletBase.fireUncaughtException(ApplicationServletBase.java:1023)
at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:469)
at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:324)
at com.iplanet.jato.ApplicationServletBase.doGet(ApplicationServletBase.java:294)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:787)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
at org.apache.catalina.core.StandardWrapperValve.invokeServletService(StandardWrapperValve.java:771)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:322)
at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
at com.iplanet.ias.web.WebContainer.service(WebContainer.java:586)
Regards
Ramkumar R -
Restricting Management to HTTPS Connections on the WRVS4400N
Where in the web management console is the toggle to restrict management sessions to HTTPS on the WRVS4400N?
I have found this option on the WRT54G under Mangement 'Server Access' but I can not locate the setting on the WRVS4400N. I assume it must be present as it seems quite silly to drop that security setting an a more complex device with an IDS etc. built in.HTTPS is enabled in that location and Remote Management is Disabled because I do not want anyone to be able to manage the unit remotely.
I want to forbid ANY management (including local) though HTTP. This is a network security requirement. -
HTTPS connection from portal to external webserver
Hi,
I am looking for a way to open a HTTPS connection from portal server to an external webserver. According to <a href="http://help.sap.com/saphelp_nw04/helpdata/en/e2/71c83edf72e16be10000000a114084/content.htm">SAP</a> the code should look like
KeyStore keystoreCAs = ...
SecureConnectionFactory factory = new SecureConnectionFactory(keystoreCAs, null);
HttpURLConnection con = factory.createURLConnection("https://www.mycompany.com");
Does not look difficult, <b>but how do I create the keystore object</b>? The keystore object should somehow be connected to the portal server's keystore which manages the certificates of trusted Certificate Authorities.
Any ideas?
Regards,
MartinHi,
meanwhile I solved the problem by my own. The solution slightly simplified is given below.
javax.naming.InitialContext ctx = new javax.naming.InitialContext();
java.lang.Object o = ctx.lookup("keystore");
com.sap.engine.services.keystore.interfaces.KeystoreManagerWrapper_Stub manager = (com.sap.engine.services.keystore.interfaces.KeystoreManagerWrapper_Stub) o;
java.security.KeyStore keystoreCAs = manager.getKeystore("TrustedCAs");
com.sap.security.core.server.https.SecureConnectionFactory factory = new SecureConnectionFactory(keystoreCAs, null);
java.net.HttpURLConnection con = factory.createURLConnection("https://www.mycompany.com");
For connecting via a proxy the host name and port number of the proxy have to be set as System properties using "https.proxyHost" and "https.proxyPort".
java.util.Properties systemSettings = System.getProperties();
systemSettings.put("proxySet", "true");
systemSettings.put("https.proxyHost","192.168.0.1") ;
systemSettings.put("https.proxyPort", "80") ;
Additionally you have to make sure that the server's certificate is issued by a trusted Certification Authority (Must have an entry in your Keystore "TrustedCAs"). To verify this use the Visual Administrator and view service "Key Storage".
Regards,
Martin -
Why can I not connect to the Enterprise Portal?
I downloaded & installed the free trial version of the Web AS 6.40 on my laptop. I developed some test portal application and want to deploy this on the WEB AS server. The message I get is each time :
Unable to connect to the Portal. Operation failed. Connection refused:connect. Please make sure the server localhost:8080 is running.
Settings J2EE Engine
"SAP J2EE Engine is installed on local host" checked
system:J2E
J2EE instance:0
SCS instance: 1
Settings Portal server:
alias: leen
host: localhost
Port: 8080
Login: administrator
Description: test
I started the SAP system with Start->Programs->SAP Management Console, right clicking the system node J2E and selecting start. Does this start also the EP??
What do I wrong?Leendert,
have you manually switched the port to 8080? By default, the j2ee engine's web server listens on port 50000 (or 50000+ system no*100 if system no != 00). The error "connection refused: connect" tells me, that there is currently no service listening on port 8080.
On windows you can check the currently listening ports by entering netstat -a on the command line. Does 8080 show up there after having started the J2ee engine?
Regards,
Dominik -
What are the required settings to enable HTTP Compression?
I am running into download speed issues with some of my clients. I am looking for ways to improve download response without having to rewrite my system(s).
On the server side, I am using CF 8.01 on a W2003 system. I have enable HTTP Compression for the web site in IIS 6.0 for both static and dynamic files.
On the client side where I am doing my testing, I am using IE 8.0 on a W7 professional system. In I.E., I have enabled HTTP 1.1 under advanced options and am using Automatic mode as the download methodology for Temporary Files.
It is my understanding that there is nothing that I have to do to CF to enable HTTP Compression.
It does not appear to work because the downloaded cfm files (5717 and 694389) are the same size regardless of these setting. In addition, I am using HttpWatch to determine all of the time and size parameters for each request. HttpWatch tells me in the summary that there are no HTTP Compression savings; i.e., HTTP Compression saving: 0 bytes. Based upon some of the info I've read on the web, I would have expected 50% to 75% savings since the two files being downloaded are both dynamic text files. All of the graphics, javascript, css files are cached so they do not figure into the equation.
Is there something else beyond the IIS and IE settings that needs to be done to implement HTTP Compresssion???
Thanks in advance for your suggestions/help.
LenAdam,
I have read the references and may now be confused, but it seems to me that just doing the standard IIS Manager setup, which is what I've done, will not compress CFM files since the only things that are compressed under dynamic files are exe, dll and asp.
One would think that CF should have added CFM to the list of compressed dynamic files when it was installed as it does with default.cfm, but maybe I'm expecting too much.
If I am correct about this, then it would seem that I'm going to have to customize the compression setup as described in this quote from the reference,
"Specify additional file types to compress. Edit the ... HcScriptFileExtensions metabase property (for dynamic files) to apply compression to additional file types."
Am I misunderstanding this document???
Len -
Help! with creating a J2ME program using the http connectivity interface
So this is what I have to do using the http connectivity interface:
1.Creating two threads – one for communication (receiving and sending) and the other (main) thread will be for interaction with the user.
2.The main thread will make use of three midlet forms. The first form will ask for web page address (URL) and separately for a delimiter which will separate the words in the URL document, the third form will display the ratio of all symbols on the page and the number of occurrences of the delimiter specified
3.The second thread should perform http connectivity to the WWW, utilise the web page address supplied and connect to the appropriate web page and read its content, count all symbols on the chosen page, count the number of occurrences of the delimiter given as user input on the same form as the web page address, calculate the ratio between the two and pass this information to the first thread to display.
I have many questions but my main concerns are:
*1. How to communicate using HTTP interface within a thread*
*2. What is a delimiter in the context above and how should it be implemented*
I've been thrown in at the deep end with little programming experience with this assignment. If anyone can share a similar example or answer my concerns I'd be more than happy.
Thanks in advance.thelane wrote:
hi thanks for the response.
As I said I have coded in other languages before, but this is a new for me in java. I needed to get it working quickley. Now I can clean up.
I will have a look at method and see how I get on.
ANy similiar examples would be great.
Thanks.I can certainly give you a similar example.
Say you have code such as this:
int a = 10, b = 11;
int temp = 1;
for(int i = 2; i < a; ++i) {
temp *= i;
System.out.println(a + " factorial is " + temp);
temp = 1;
for(int i = 2; i < b; ++i) {
temp *= i;
System.out.println(b + " factorial is " + temp);Each section of code takes the factorial of the current variable an outputs it. The factorial code can be placed within a method to be called more easily, as such:
public void factorial(int num) {
int temp = 1;
for(int i = 2; i < num; ++i) {
temp *= i
System.out.println(num + " factorial is " + temp);
}Then, whenever you need to call it, you can just do so:
int a=10,b=11,c=12;
factorial(a);
factorial(b);
factorial(c); -
Connecting to the Third Party Applicatin through Portal
Hi,
Does anyone know how do we connect to the Third Party Application through Portal? WHat technology EP uses to connect to the third party application and retrieve data from the system to display?
ALso if i have 2 application connected to the portal and if I retrieve one record from one application, then i want Portal to bring information related to that record from another application. In that case, do we have to maintain referential information about the records in both the applications, so that Portal will know which record id to pull from another application? How does it work?
Thank you very much in advance.
ShakilHi ,
Have a searched sdn before posting this? have a look and post your message if your requirement dont match with below solution.
Want to access non SAP system from EP
Regards,
Koti Reddy -
Issue: Lync 2013 users with remote call control enabled cannot connect to the phone system. When the user logs into Lync, they see an exclamation in the bottom right corner
with this error.
Error: Cannot connect to the phone system. An unidentified error has occurred, Please try again. If the problem continues, please contact your support team.
Environment:
1 site: Site1
2 Pools:
1. Lync 2010
Trusted application is added here for the site.
2. Lync 2013
Avaya phone system: AES r6-1-2-32-0
I have not moved the trusted application to the Lync 2013 pool yet, but my understanding is that it should still work since it’s in the site. Is my understanding on this correct? (All of my other trusted applications do work for Lync 2013
users & none of them have been moved yet. Remote Call Control is the only one that does not work.)
This is from the uccapi log. This is just from the user logging in, not actually making a call. Below are the items that I think are important, however, I don’t know how to interpret it to determine if the problem is on the Lync side or
the Avaya side. Here’s a summary:
SIP/2.0 100 Trying
Authentication-Info: TLS-DSK qop="auth", opaque="5FD217E1", srand="E05700E2", snum="9", rspauth="f308eae87c0bbe64a1ab213574776cbdf9823ab6", targetname="lync03.domain.com",
realm="SIP Communications Service", version=4
From: <sip:[email protected]>;tag=bbb282ebbd;epid=a86d5b0a29
To: <sip:[email protected]>
Call-ID: 9eb0d23a3b8f4e0eafc6c6da622fbecf
CSeq: 1 INVITE
Via: SIP/2.0/TLS 10.155.48.96:61472;ms-received-port=61472;ms-received-cid=1FA400
Server: http%3A%2F%2Fwww.microsoft.com%2FLCS%2FUdcAgent
Content-Length: 0
SIP/2.0 200 OK
Authentication-Info: TLS-DSK qop="auth", opaque="5FD217E1", srand="15C0F9A2", snum="13", rspauth="4fd891e39a33e902fb1cec5d980e5bf0ccb172a0", targetname="lync03.domain.com",
realm="SIP Communications Service", version=4
From: <sip:[email protected]
>;tag=bbb282ebbd;epid=a86d5b0a29
To: <sip:[email protected]
>;tag=A7A45C856ECD79121A1827265ABBD7F6
Call-ID: 9eb0d23a3b8f4e0eafc6c6da622fbecf
CSeq: 1 CANCEL
Via: SIP/2.0/TLS 10.155.48.96:61472;ms-received-port=61472;ms-received-cid=1FA400
Server: http%3A%2F%2Fwww.microsoft.com%2FLCS%2FUdcAgent
Content-Length: 0
SIP/2.0 487 Request terminated
Authentication-Info: TLS-DSK qop="auth", opaque="5FD217E1", srand="F46EC133", snum="14", rspauth="1d92718caa4f61d967faa46a5c256aafa8b4e740", targetname="lync03.domain.com",
realm="SIP Communications Service", version=4
From: <sip:[email protected]
>;tag=bbb282ebbd;epid=a86d5b0a29
To: <sip:[email protected]
>;tag=A7A45C856ECD79121A1827265ABBD7F6
Call-ID: 9eb0d23a3b8f4e0eafc6c6da622fbecf
CSeq: 1 INVITE
Via: SIP/2.0/TLS 10.155.48.96:61472;ms-received-port=61472;ms-received-cid=1FA400
ms-diagnostics: 5002;reason="Request was cancelled";AppUri="http%3A%2F%2Fwww.microsoft.com%2FLCS%2FUdcAgent";source="lync03.
domain.com"
Server: http%3A%2F%2Fwww.microsoft.com%2FLCS%2FUdcAgent
Content-Length: 0Hi Suelizy,
To better understand the issue, I would like to collect the following information for troubleshooting:
1. Do you mean the Lync 2010 user can connect to the Phone System?
2. What’s next hop pool of the application?
In a mixed environment, you must set the next hop pool to be the Lync Server 2013 pool.
Best regards,
Eric -
Working with documents via BEx Analyzer not using the portal
Hello,
i read that we are able to create (work) with documents (comments) via
BEx Analyzer. When i want to add a comment how it is described in the
help we get connected to the portal. We dont want to use the portal for
that. Therefore we searched a way to skip the portal. We read that in
BW Versions before 7.0 the portal was not connected but since 7.0 we
have the portal connectivity, but it should also possible to not use
the portal and to access directly the BI Server. I searched for the
Customizing to do so but i could not find it where to switch to the old
logic.
And another question is when we use the Portal with the knowledge base . The documents are stored in the document framework (SKWF). Is it the same as the Datawarehousing Workbench --> documents. This storage we want to use.
Can anyone give me a hint?
Kind regards,
MuratHi Murat,
We are also facing the same issue of when trying to create/access the documents from BEx analyzer it is connecting portal , we need to bypass portal and directly access the document browser in BW server.
In your thread you mentioned it is done. So can you please let me know how did you enable the old configuration?. It will be very much helpful to us.
Awaiting for your reply.
Thanks,
V.Senthilkumar -
Cannot connect to new portal installation. PLEASE HELP!!!
EP6 on MS SQL with J2EE 6.2
When I connect with my browser to http://<fqn>:50000/irj, I receive the following:
Service Unavailable 503!
javax.servlet.UnavailableException: Initialization of Dispatcher failed
at com.sapportals.portal.prt.dispatcher.Dispatcher.initDispatcher(Dispatcher.java:370)
at com.sapportals.portal.prt.dispatcher.Dispatcher.initDispatcher(Dispatcher.java:212)
at com.sapportals.portal.prt.dispatcher.Dispatcher.access$400(Dispatcher.java:40)
at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:447)
at java.security.AccessController.doPrivileged(Native Method)
at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:415)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.inqmy.services.servlets_jsp.server.InvokerServlet.service(InvokerServlet.java:126)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.inqmy.services.servlets_jsp.server.RunServlet.runSerlvet(RunServlet.java:149)
at com.inqmy.services.servlets_jsp.server.ServletsAndJspImpl.startServlet(ServletsAndJspImpl.java:833)
at com.inqmy.services.httpserver.server.RequestAnalizer.checkFilename(RequestAnalizer.java:672)
at com.inqmy.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:314)
at com.inqmy.services.httpserver.server.Response.handle(Response.java:173)
at com.inqmy.services.httpserver.server.HttpServerFrame.request(HttpServerFrame.java:1288)
at com.inqmy.core.service.context.container.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:36)
at com.inqmy.core.cluster.impl5.ParserRunner.run(ParserRunner.java:55)
at com.inqmy.core.thread.impl0.ActionObject.run(ActionObject.java:46)
at java.security.AccessController.doPrivileged(Native Method)
at com.inqmy.core.thread.impl0.SingleThread.run(SingleThread.java:148)
J2EE has been patched up to 4/11/05. It is the cluster installation, but installed on a single Win2003 server only, which also hosts SQL Server. SAP Support has verified the portal installation, but has yet to find the problem.
http://<fqn>:50000 displays the J2EE documentation and all the example apps work. I can telnet to <fqn> 50008 successfully. I can open the J2EE Administrator at 50004 with Administrator user blank password.
Not sure where to go from here. Any and all help is greatly appreciated.MS Windows Server 2003, Version 5.2, Build 3790
MS SQL Server, Version 8.00.760
Java version 1.3.1_12
SAP J2EE Engine 6.2, PL 31
SAP EP 6.0, SP 1, Patch 2
This is a new installion. We have yet to connect to the portal. The
error is encountered when trying to do so at the address
http://<FQN>:50000/irj.
Here is the latest console log 2005_4_13_at_16_54_55_output.log
[OS: Windows XP] [VM vendor: Sun Microsystems Inc.] [VM version:
1.3.1_12-b03] [VM type:Java HotSpot(TM) Client VM]
SAP J2EE Engine Version 6.20 PatchLevel 92173.20 is starting...
Loading: LogManager ...
Loading: R3StartupManager ...
Loading: ThreadManager ...
Loading: TimeoutManager ...
Loading: MemoryManager ...
Loading: PoolManager ...
Loading: PolicyManager ...
Loading: ConnectionsManipulator ...
Loading: IpVerificationManager ...
Loading: ClusterManager ...
Loading: ClassLoaderManager ...
Loading: PortsManager ...
Loading: LockManager ...
Loading: ServiceManager ...
Loading core services:
Starting core service security ... done. (62 ms)
Starting core service p4 ... done. (
218 ms)
Starting core service monitor ... done. (188 ms)
Starting core service admin ... done. (250 ms)
Starting core service log ... done. (406 ms)
Core services loaded successfully.
Loading additionalservices:
Starting service httptunneling ... done. (31 ms)
Starting service jms ... done. (15 ms)
Starting service telnet ... done. (16 ms)
Starting service shell ... done. (78 ms)
Starting service http ... done.
(63 ms)
Additional services loaded successfully.
SAP J2EE Engine Version 6.20 PatchLevel 92173.20 is running!
PatchLevel 92173.20 April 11, 2005 14:43 GMT
Login :Element 1459975381 joined. Wed Apr 13 16:55:33 PDT 2005 -
BI & Portal integration. Import BW certificate to the Portal -
Hi
We are in the process of integrating our newly upgraded BI 7.01 system with EP 7.01.
We are trying to integrate BI system with our central portal, which has BI components installed. Also, this portal has been configured with SPNEGO for windows integrated authentication and we use Microsoft LDAP as our UME.
As per documentation, I could not find option for com.sap.security.core.server.jaas.evaluateticketloginmodule, as I can only see SPNEGO template, since we configured SPNEGO for windows integrated authentication. Can I skip this step? If so, what are the implications. I see that this step (see below) is required for accepting SAP logon tickets from the BI system as an external system.
In the Service Security Provider under Ticket, perform the following steps to ensure that the SAP J2EE Engine accepts the SAP Logon Tickets from the BI system as an external system.
7. Start the Visual Administrator with %INSTALLATION_ROOT%\admin\go.
8. Connect to the portal server.
9. In the tree, choose <SID>/Server<#>/Services/Security Provider.
10. Under Component, choose Ticket.
11. Choose the Authentication tab page.
12. Change the options for com.sap.security.core.server.jaas.EvaluateTicketLoginModule and enter the following values:
trustedsys<Number>=<BW_SID>, <BW_CLIENT> (for example, BWP, 000)
trustediss<Number>=<ISSUER_DISTINGUISHED_NAME> (z. B. CN= BWP, OU=SAP Web AS, O=SAP Trust Community, C=DE)
trusteddn<Number>=<SUBJECT_DISTINGUISHED_NAME> (z. B. CN= BWP, OU=SAP Web AS, O=SAP Trust Community, C=DE)
I also noticed that this steps is introduced from BI 7.0, as previously this step did not exist for BW 3.5 and EP 6.0.
Thanks in advance,
Regards
ChanduIf a user is to access an application deployed on the java server via SSO, using the SAP logon ticket for authentication, the login module stack that the application uses must include the EvaluateTicketLoginModule and this EvaluateTicketLoginModule must contain these ACL entries (trusteddn, trustediss etc) if the logon ticket was issued by a different system. What this means is that trusteddn, trusediss, trustedsys are required in EvaluateTicketLoginModule in order for SSO to work. You cannot skip
them.
If you have configured SPNego authentication, the EvaluateTicketLoginModue will still be required. So if you have a policy configuration called SPNego, and the 'ticket' logn module stack is using the SPNego configuration as a template, you simply have to configure the EvaluateTicketLoginModule in the 'SPNego' template and the 'ticket' login module stack will be updated accordingly
If the 'SPNego' policy configuration/template does not already at least include EvaluateTicketLoginModue I would be very surprised, it is required for all ticket evaluation, even tickets issued by the same server and should exist in the template that the 'ticket' authentication stack points to. See here for an two example LM stacks for SPNego
http://help.sap.com/saphelp_nw04/helpdata/EN/43/4bf48061215f6be10000000a1553f6/content.htm
Maybe you are looking for
-
ITunes deletes Library File on startup (Sony VAIO, Windows 7)
Help needed. My mother has a 1 yr VAIO with Windows 7 and has a consistent problem with iTunes in that the Library file keeps disappearing and hence iTunes shows no music / TV files available to play. Scenario is: Latest iTunes version installed. Mus
-
Trouble connecting to remote oracle database
Hi, i'm having trouble connecting to an oracle database (Release 9.2.0.6.0) using the ojdbc14.jar from the oracle website. Can anybody spot the problems that i need to sort out to get it working? Code and error stack below. Thanks, Pat Code: import j
-
Hello to all and thanks in advance for any help or thoughts anyone has on this subject. I am a new web designer with 3 sites under my belt. I am working on 3 more at the same time. My newest client is a restaurant/dinner theater with a menu and sched
-
IPhoto upgrade no calendar layouts transferred
I created several calendars in iPhoto 06 and since I've upgraded to iPhoto 08 the calendars are changed to books. Is there a way to get the calendars back? Where are my calendars? I can't open iPhoto 06 - it's gone so I have no way to access these ca
-
Firefox hangings and stop running after a new upgrade
I really dunno what is going wrong wt my firefox it was working fine before the new upgrade. What happen is despite uninstalling and reinstalling it, firefox browser still hangs while it loads , i simply couldn't do anything at all here. == This happ