How to Activate Send SAP Logon Ticket in Logon Security...??

Similar Messages

• How to activate "Send mail" from print preview in ME23N

  In ME23N there is a "print preview"-button that shows a preview of the PO. In the preview-windows there is a Text-menu with a "Send mail"-command, but that command is not active. How can I activate this command so that it is possible to send the PO to an email-recepient?
  I have configured the smtp-functionality (SCOT++) and sending PO's as email to suppliers in ME9F works fine by choosing "Send external". But still the Send mail-option is inactive in preview-mode. Any tips?
  Regards,
  Thor-Egil

  please maintain output condition record (MN04) as "external send"
  Also make sure that you have maintained the proper email ID in vendor master

• How to Activate the SAP utilites

  kindly tell me the steps to active the SAP ISU in my IDES.
  thanks & best regards.
  Ishtiaq

  Hello,
  You can activate ISU using T-Code 'SFW5'
  You need to select your node and press Ctrl+F3.
  Hope this helps
  Regards,
  Siva

• SURVEY - How to Activate Send Questionnaire Button To Get Survey Returned

  Hello,
  We  have created surveys/questionnaires within SRM using SURVEY cockpit.  We have success now getting Surveys to go to the email address BUT when we hit the SEND Questionnaire button, nothing happens when trying to reply.
  I have located a few posts on this forum but none of them have been the answer to our problem.
  Is this an ABAP object oriented class - ABAP-OO - that needs to be assigned via UBDS/UBDC?
  If so, we are not sure the technical name for it .  Would CL_MPA_HANDLE_ALERT_REPLY happen to be one that might work?
  Any help would be immensely appreciated and points assigned.
  Thank you very much,
  Lynda

  Thank you so much. That was exactly what we needed.  One further question---->
  If we want to retrieve the survey answers from a URL rather than email, where do we have to address the configuration?  TCODES?
  Also, we want to use the web application library to populate a drop list of vendors.  Is that something you have had experience with?
  If you, could you please help?
  Sincerely,
  Lynda Fuller

• HT5312 how dose i send an email to rest the security question

  i dont remember my security question

  See my User Tip for some help: Some Solutions for Resetting Forgotten Security Questions: Apple Support Communities

• How can I send alert through E-mail and SMS

  Hi All,
  How can I send SAP B1 alert to E-Mail address and SMS.
  I am using 2005A US version
  I did the following settings ...
  Administration  --> System Initialization  --> General Settings --> Services
  I checked the proxy server for Web Connection, I entered the Proxy server IP Address (our company's) and port number 80.
  Even though I am not getting any Email response..
  Help me to solve this...
  Thanks and Regards,
  jayakumar

  Hi,
  Check this: Regarding email & SMS in alert management
  If you want to use DIAPI then check Message Object, too.
  HTH
  Juha

• How to implement SSO to non-SAP systems using SAP logon ticket?

  Hello,
  We would like to implement Single Sign On between our SAP Netweaver system and a Siebel which is a non-SAP system using SAP logon tickets.
  Can anyone please give me some leads on this, in particular:
  1. Is there a JAVA API or an SAP plug-in that can be implemented on the Siebel machine to extract the SAP logon ticket?
  2. As the other machine might seat on a complete different domain, is it possible to implement SAP logon ticket without using cookies (perhaps through the HTTP header?
  3. In case you think using SAP logon tickets is not the best solution here I would be happy to hear any other suggestions you might have.
  Roy

  Hi,
  I'm currently using SAML as well. Unfortunately the SAP J2EE cannot work as authority (identity provider) but what you can do is using an open implementation of SAML such as opensso which is an open version of SUNs Java System access manager.
  There are a couple of other projects such as opensaml, apache's wss4j or shibboleth that might be interesting in this context.
  I just installed opensso and got it working with SAP J2EE 7.0 using SAPs JAAS SAMLLoginModule to authenticate users within SAP J2EE.
  In this scenario opensso serves as identity provider just as you need! There are a couple of Policy agents available on SUNs Download site you can use with Apache, Tomcat, JBOSS, WebSphere, Bea Web Logic etc. in order to authenticate! Otherwise you just directly authenticate against opensso. When installing opensso you can configure the type of user store you want  to use! By default it uses LDAP but you can also use different types of user store using JDBC or other mechanisms. Since you have a Directory Service you could easily connect it to your existing directory.
  There is also a way to map user ids directly in opensso by adding a uid mapping class. I created some documentation with lots of screenshots about using opensso with SAP J2EE. You can easily use opensso with any other system that supports SAML. In the case of SAP the usage is currently limited to SAML versions 1.0 and 1.1. Version 2.0 is not yet supported but should be in one of the following versions.
  Here are some links you might want to check:
  OpenSAML: https://spaces.internet2.edu/display/OpenSAML/Home
  wss4j: http://ws.apache.org/wss4j/
  shibboleth: http://shibboleth.internet2.edu/
  opensso: https://opensso.dev.java.net/
  On SDN you will find a documentation on how to connect SUN Java System Access Manager to SAP J2EE (see https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/906d9fc6-31b9-2910-1385-90edad7d7570). As I said opensso is based on the SUN Access Manager code and looks quite the same. So you can adapt this documentation in order to configure opensso or you can just ask me for the documentation.
  Hope this is helpful...
  Let me know if you need further assistance on this topic
  Cheers

• How to change the existing sap logon ticket

  HI
  I did the System copy from my production server to Quality server.
  Now everthing is working except Single Sign On.  This is due to SAPlogon ticket.
  the SAPlogon ticket show the PRD sid. I am not able to change the existing sid in ticket.
  Tell me how to chage the old saplogon ticket with new one.
  Workaround i did in my server.
  generated the new certificate for Quality server  and try to import in R/3 000 client.  but not successful.

  Hello Lee,
  You dont have to import the certificate from R/3 into portal
  we have to generate the certificate in portal and then import in R/3
  To generate the portal certificate in quality Portal system and uploading in R/3,please find the method:
  Log on to the Visual Admin of Portal with administrator id and password. Go to the following node: Server 0 1_34158->services and then Key Storage
  In Key Storage, go to TicketKeyStorage
  Under Entry, choose Create.
  The Key and Certificate Generation dialog appears
  Enter the Subject Properties in the corresponding fields
  CN=<Common Name>, OU=<Organization Unit Name>, O=<Organization Name>, L=< Locality Name >, ST=<State/Province>, C=DE. give SID of portal in CN
  Give the Entry name as SAPLogonTicketKeypair.
  Select Algorithm as DSA,also click on store certificate and then generate
  You will see along with SAPLogonTicketKeypair, SAPLogonTicketKeypair-cert will also get generated.
  Now we will have to import this SAPLogonTicketKeypair-cert in the ABAP systems
  First we will have to download the certificate from the portal.
  Now logon to the SAP Netweaver Portal with user administrator
  Go to System Administration->System Configuration and then Keystore Administration.
  In the Content tab you will find the list of certificates
  We have to download SAPLogonTicketKeypair-cert .Click on Download verify.der file
  To your desktop
  Now we have to import the certificate in ABAP system.
  Log on to the ABAP system 000 client and use T-Code STRUSTSSO2
  Under Certificate, click on Import certificate
  Give the path of verify.der file. The file format should be Binary
  And upload it.
  Now you can see the certificate has been uploaded. Check for the validity
  Now click on Add to certificate to add this.
  Now click on Add to ACL.
  Enter System ID as the portal SID(i.e is SPQ) and client as 000 and click on Ok
  Then save your entries
  Hope this makes it clear
  Rohit

• How to use logon ticket in case of different user id with SAP R3

  Hi.
  I try to login from EP to SAP R/3 using Logon Ticket but
  My problem is that EP, R/3 user id is different.
  Is there any method to login SAP R/3 using Logon
  Ticket in case of different user ID ?
  Regards, Arnold.

  Hi Arnold,
  SAP Logon Tickets issued by the Portal contain two user ids, basically one for Java Systems and one for ABAP systems. See also note 843061 for details.
  You do not need passwords for the reference system, if the user mapping is maintained by the user administrator, and the UM property ume.usermapping
  .admin.pwdprotection is set to false, see http://help.sap.com/saphelp_nw04/helpdata/en/fe/d22a41b108f523e10000000a155106/frameset.htm. If you set the mapped user id programmatically, or if you retrieve it from an LDAP server, you also do not need to verify the ABAP password of the user (see https://media.sdn.sap.com/javadocs/NW04/SP12/ume/index.html and http://help.sap.com/saphelp_nw04/helpdata/en/0b/d82c4142aef623e10000000a155106/frameset.htm).
  Best regards,
  Joerg

• SSO with SAP logon tickets to non-SAP web app

  I am trying to implement SSO to an oracle portal based web application using SAP logon tickets, but can't seem to find a way for it to work.  I thought maybe it would be a web server filter, but am unsure if this would work for oracle portal.  Anyone tried similar?
  Cindy

  Hi Cindy,
  If it is EP6 SP2 probably you can checkout the following document.
  http://service.sap.com/ep60
  Go to Documentation Help>How-To-Guides>Current How To Guides section.
  checkout the following how to guide.
  Perform Cross Domain SSO with SAP Logon tickets zip file.
  If you want the zip file please send an e-mail to
  [email protected]
  Regards
  -Venkat Malempati

• Problems with SAP Logon ticket

  Hi.
  I am trying to send SAP Logon ticket from ECC 6.0  to the backend legacy using Soap adapter in receiver side. I get the following error in SXMB_MONI, so it looks like AF is not accepting the ticket. Can anybody tell me please, how I can identify that the ticket has been received in PI's side?
  <Trace level="1" type="T">Principal Propagation connection attributes</Trace>
    <Trace level="1" type="T">Host = hostname</Trace>
    <Trace level="1" type="T">Port = 12345</Trace>
    <Trace level="1" type="T">Transport protocol = HTTP</Trace>
    <Trace level="1" type="T">Transport protocol vers = 1.0</Trace>
    <Trace level="1" type="T">Message protocol = 003000</Trace>
    <Trace level="1" type="T">Path = /MessagingSystem/receive/AFW/XI</Trace>
    <Trace level="1" type="T">Security: Logon Ticket</Trace>
    <Trace level="1" type="System_Error">Error while sending by HTTP (error code: 403, error text: Forbidden)</Trace>
    </Trace>
  Thanks, Jukka

  Hi.
  I have had some progress. Actually Principal Propagation works well now, thanks to instructions in http://help.sap.com/saphelp_nwpi711/helpdata/en/48/a9bbb97e28674be10000000a421937/frameset.htm
  But I think I have now found out that the principal progation might not be a direct answer to my problem. In the end of the day I should be able to deliver UsernameToken in my soap message header. Something like this:
  <wsse:Security soapenv:mustUnderstand="1" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
    |          <wsu:Timestamp wsu:Id="Timestamp-12134742" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
    |             <wsu:Created>2007-10-14T12:45:34.656Z</wsu:Created>
    |             <wsu:Expires>2007-10-14T12:46:34.656Z</wsu:Expires>
    |          </wsu:Timestamp>
    |          <wsse:UsernameToken wsu:Id="UsernameToken-33259721" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
    |             <wsse:Username>test</wsse:Username>
    |             <wsse:Password Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordText">test</wsse:Password>
    |          </wsse:UsernameToken>
    |       </wsse:Security>
  I just have not found any documentation which I could utilize in Abap Proxy - PI 7.1 - Soap Receiver scenario. Just wondering should I create my own customized soap envelope and disable the Pi envelope in SOAP communication channel...
  Do you know if there's any "standard way" to configure this kind of configuration?
  Br. Jukka

• SSO using Kerberos with SAP Logon Tickets

  Hi,
  I am creating a Repository Manager for the Portal Knowledge Management System and I want to use SSO to a backend IIS application and I have a few questions here. 
  I have a three tiered architecture. 
  A.  The presentation tier (SAP Portal which has my Repository Manager implementation)
  B.  ASP.NET web service data layer.
  C.  Backend document management system which runs on IIS. 
  I have installed the ISAPI filter on my ASP.NET application server and have enabled this HOST account for delegation in MSAD 2003.   Server B will use Kerberos constrained delegation to access Server C, which is an IIS backend server. 
  My question is how do I pass an SAP Logon Ticket to an ASP.NET web service request from my Repository Manager implementation?  Basically how do I just make an HTTP request to an ASP.NET application from some portal iView or WebDynPro code and pass along the SAP Logon Ticket in the request so it can be interpreted by the ISAPI filter on the IIS server.  Does anyone have any sample code or an application here that does this?
  Thanks,
  Scott

  Hi Scott
  Did you managed to find out anything regarding how to pass SAP Logon ticket to ASP.NET Webservice. Can you share it with me?
  regards
  ram

• SSO to Web Service using SAP Logon Ticket

  Hi,
  I have to do SSO using SAP Logon Ticket between my portal and a Java Web Service that is accessible over internet. I do have the WSDL file of this Web Service.
  I want to know:
  1. What changes are required in Web Service to configure it to read and accept Logon Ticket?
  2. What am I supposed to do at portal end to enable this process?
  Thanks,
  Vivek

  Hi Vivek & Raja,
  > is it that if the WS is a third party WS and running on a Non-SAP J2EE Server,
  > we can't implement SSO from Portal to it using SAP Logon Ticket?
  Right, if you cannot extend it's functionality, how should it do the ticket verification...
  @Raja:
  > SAP Logon Ticket is for authenticating to a SAP system, since yours in a
  > thirdparty ws, there is not need of SAP logonticket.
  On the other hand, that's not true. It is possible as well as often done to verify the SSO ticket on some third party system. This is also supported, for Java as well as for other systems, different articles about such scenarios have been published, also here on SDN.
  Hope it helps
  Detlev
  PS: Vivek, please consider rewarding points for helpful answers on SDN. Thanks in advance!

• Java client application + SAP Logon Tickets (SSO)

  Java client application + SAP Logon Tickets (SSO)
  Hello
  I have the following question, it is about connection between SAP Enterprise Portal and Java Application.
  After registration in Enterprise Portal (with Internet Explorer Browser) request is passed on to SAP backend system - cFolders (SSO methode)
  With internet browser functioned everything.
  How can one get, however, this Logon tickets with Java application and then be of use later for SOAP connection
  (everything with client java application)
  Thanks for quick help
  Edo

  Hi Edo,
  look at this https://media.sdn.sap.com/javadocs/NW04/SPS15/um/com/sap/security/api/ticket/TicketVerifier.html
  Best Regards
  Oliver

• How can I process an SSO Logon Ticket in ColdFusion 9?

  Hi,
  We want to integrate some CouldFusion templates on the SAP portal and I try to process the SSO Logon Ticket using the following code:
  <cfif IsDefined("Cookie.MYSAPSSO2") AND Cookie.MYSAPSSO2 neq "">
  <cfscript>
      ticket = Cookie.MYSAPSSO2;
      sso = createObject("java", "SSO2Ticket");
      version = sso.getVersion();
      Application.CertPath = "/opt/coldfusion9/lib/verify.pse";
  </cfscript>
  <h2>Ticket cookie:</h2>
  <cfdump var="#ticket#">
  <h2>Version:</h2>
  <cfdump var="#version#">
  <h2>Certification path:</h2>
  <cfdump var="#Application.CertPath#">
  <cfscript>
      result = sso.evalLogonTicket (ticket, Application.CertPath,"");
      sapUser   = result[1]; //First element is the SAP system user
      sysID  = result[2]; //Second element is the id of the issuing system
      client = result[3]; //Third element is the client of the issuing system
      portalUser = result[5]; //Portal user
      validityInSeconds = result[7]; //Validity in seconds
  </cfscript>
  <h2>Ticket content:</h2>
  <cfdump var="#result#">
  <cfelse>
      SAP Logon Ticket not found - Extranet content can only be accessed through SAP Portal.   
  </cfif>
  The certificate verify.pse and the current version of the libraries libsapcrypto.so, libsapssoext.so and libslcryptokernel.so are stored at the same location.
  After logging in into a SAP portal I get following error when executing the script:
  Ticket cookie:
    AjExMDAgAAxwb3J0YWw6VG90aEyIABNiYXNpY2F1dGhlbnRpY2F0aW9uAQAFVE9USEwCAAMwMDADAANEUDIEAAwyMDE0MDYyNTEzNTMFAAQAAAAICgAFVE9USEz/AQUwggEBBgkqhkiG9w0BBwKggfMwgfACAQExCzAJBgUrDgMCGgUAMAsGCSqGSIb3DQEHATGB0DCBzQIBATAiMB0xDDAKBgNVBAMTA0RQMjENMAsGA1UECxMESjJFRQIBADAJBgUrDgMCGgUAoF0wGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0BCQUxDxcNMTQwNjI1MTM1MzQ3WjAjBgkqhkiG9w0BCQQxFgQU2lImEL6oxLc/4ZdXYTDJudUNhOIwCQYHKoZIzjgEAwQvMC0CFQC4ftTFs8COV0ThRZH5lJxY9ITqfQIUMSugOMEkhmQHqBZD!ZHQ1Tb9e90= 
  Version:
  SAPSSOEXT 4 
  Certification path:
  /opt/coldfusion9/lib/verify.pse 
  The web site you are accessing has experienced an unexpected error.
  Please contact the website administrator. 
  The following information is meant for the website developer for debugging purposes.
  Error Occurred While Processing Request
  MySapEvalLogonTicketEx failed: standard error= 9, ssf error= 0
    The error occurred in /opt/coldfusion9/wwwroot/ExtranetMod/authTest.cfm: line 20
  18 : 19 : <cfscript> 20 : result = sso.evalLogonTicket (ticket, Application.CertPath,""); 21 :     sapUser   = result[1]; //First element is the SAP system user 22 :     sysID  = result[2]; //Second element is the id of the issuing system
  Resources:
  Check the ColdFusion documentation to verify that you are using the correct syntax.
  Search the Knowledge Base to find a solution to your problem.
  Browser 
  Mozilla/5.0 (Windows NT 5.1; rv:30.0) Gecko/20100101 Firefox/30.0
  Remote Address 
  172.20.231.111
  Referrer 
  Date/Time 
  25-Jun-14 04:23 PM
  Stack Trace
  at cfauthTest2ecfm1658987646.runPage(/opt/coldfusion9/wwwroot/ExtranetMod/authTest.cfm:20)
  java.lang.Exception: MySapEvalLogonTicketEx failed: standard error= 9, ssf error= 0 at SSO2Ticket.evalLogonTicket(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at coldfusion.runtime.java.JavaProxy.invoke(JavaProxy.java:97) at coldfusion.runtime.CfJspPage._invoke(CfJspPage.java:2360) at cfauthTest2ecfm1658987646.runPage(/opt/coldfusion9/wwwroot/ExtranetMod/authTest.cfm:20) at coldfusion.runtime.CfJspPage.invoke(CfJspPage.java:231) at coldfusion.tagext.lang.IncludeTag.doStartTag(IncludeTag.java:416) at coldfusion.filter.CfincludeFilter.invoke(CfincludeFilter.java:65) at coldfusion.filter.ApplicationFilter.invoke(ApplicationFilter.java:360) at coldfusion.filter.RequestMonitorFilter.invoke(RequestMonitorFilter.java:48) at coldfusion.filter.MonitoringFilter.invoke(MonitoringFilter.java:40) at coldfusion.filter.PathFilter.invoke(PathFilter.java:94) at coldfusion.filter.ExceptionFilter.invoke(ExceptionFilter.java:70) at coldfusion.filter.ClientScopePersistenceFilter.invoke(ClientScopePersistenceFilter.java:28) at coldfusion.filter.BrowserFilter.invoke(BrowserFilter.java:38) at coldfusion.filter.NoCacheFilter.invoke(NoCacheFilter.java:46) at coldfusion.filter.GlobalsFilter.invoke(GlobalsFilter.java:38) at coldfusion.filter.DatasourceFilter.invoke(DatasourceFilter.java:22) at coldfusion.filter.CachingFilter.invoke(CachingFilter.java:62) at coldfusion.CfmServlet.service(CfmServlet.java:200) at coldfusion.bootstrap.BootstrapServlet.service(BootstrapServlet.java:89) at jrun.servlet.FilterChain.doFilter(FilterChain.java:86) at coldfusion.monitor.event.MonitoringServletFilter.doFilter(MonitoringServletFilter.java:42) at coldfusion.bootstrap.BootstrapFilter.doFilter(BootstrapFilter.java:46) at jrun.servlet.FilterChain.doFilter(FilterChain.java:94) at jrun.servlet.FilterChain.service(FilterChain.java:101) at jrun.servlet.ServletInvoker.invoke(ServletInvoker.java:106) at jrun.servlet.JRunInvokerChain.invokeNext(JRunInvokerChain.java:42) at jrun.servlet.JRunRequestDispatcher.invoke(JRunRequestDispatcher.java:286) at jrun.servlet.ServletEngineService.dispatch(ServletEngineService.java:543) at jrun.servlet.http.WebService.invokeRunnable(WebService.java:172) at jrunx.scheduler.ThreadPool$DownstreamMetrics.invokeRunnable(ThreadPool.java:320) at jrunx.scheduler.ThreadPool$ThreadThrottle.invokeRunnable(ThreadPool.java:428) at jrunx.scheduler.ThreadPool$UpstreamMetrics.invokeRunnable(ThreadPool.java:266) at jrunx.scheduler.WorkerThread.run(WorkerThread.java:66)
  I would be most thankful for any hints that could bring me further...
  Many thanks
  Lajos

  Thank you for your assistance in this matter.
  This has been frustrating the crap out of me for the last week (not that the photo is important, it is just that I like to conquer and solve this types of issues)
  I was shooting with an aperture of 7.1. 
  I changed the exposure on the photos as you had done previously but this only blew out the watch and I couldn't recover it afterwards and the alignment was no better any way.  So then I started experimenting as you suggested, and I don't know if what I am about to write is acceptable in an Adobe forum, but here goes.
  I tried Helicon Focus and it was terrible, but I must admit I didn't know how to really use it, it doesn't seem to have any alignment function and is very difficult to try to use and understand.
  then I tried Hugin and I am not even sure if this is image stacking software or just an alignment software, anyway that didn't work either and kept saying the output was a very bad match.
  THEN I downloaded and tried zerestacker (free 30 day trial)  (after reading about it in a google search) and WOW, it worked amazing, see below photo, it was so easy to use and the interface is easy as well and it does the alignment and stacking in the same process and you can see the image output show up on the left of the screen.  Sorry PS but I will be using ZS for photostacking from now on. Adobe need to buy this company and incorporate it in to PS CC6.
  This is just so much better than anything I got out of PS, there is no ghosting or blurring and the alignment is perfect and it is so simple to use.