KM Navigation - user authentification

Similar Messages

• Portal WebService User Authentification error

  Hello all,
  I created a portal webservice similar to the one described in tutorial "Creating a Web Service in Enterprise Portal 6.0".
  When I tried to test it in Enterprise Portal Web Services Checker I got the error below:
  <b>The User Authentification is not correct to access to the Portal Service com.sap.portal.prt.soap.ContentService or the service was not found.</b>
  I already added group Everyone to my service in Portal Permissions and it still does not work.
  I read weblogs below but none helped me:
  1 - Unable to access portal service from web service..........urgent
  2 - IllegalAccessError when calling a WebService
  I checked the proxy settings and it seems to be ok.
  Does anyone have another suggestion?
  Regards,
  Mauricio

  I found the reason.
  I did not check End User checkbox for the Everyone group we inserted into Permissions of the Web Service.
  Regards,
  Mauricio

• SAPUI5 and BPM: User authentification

  Hi there,
  my UI5 application to claim and complete BPM tasks works now.
  The only remaining issue I have is about user authentification.
  To secure my UI5 application, I've modified web.xml and web-j2ee-engine.xml int the following way (according to this blog):
  web.xml
  <security-constraint>
       <web-resource-collection>
            <web-resource-name>ApproveRequest</web-resource-name>
            <url-pattern>/*</url-pattern>
       </web-resource-collection>
       <auth-constraint>
            <role-name>ApprovalWorkflow</role-name>
       </auth-constraint>
  </security-constraint>
  <login-config>
       <auth-method>FORM</auth-method>
       <realm-name>ApprovalWorkflow</realm-name>
  </login-config>
  <security-role>
       <role-name>ApprovalWorkflow</role-name>
  </security-role>
  web-j2ee-engine.xml
  <?xml version="1.0" encoding="UTF-8"?>
  <web-j2ee-engine xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
       xsi:noNamespaceSchemaLocation="web-j2ee-engine.xsd">
       <spec-version>2.4</spec-version>
       <security-role-map>
       <role-name>ApprovalWorkflow</role-name>
       <server-role-name>Administrator</server-role-name>
       </security-role-map>
  </web-j2ee-engine>
  My user is coming from Active Directory and assigned to the UME role "Administrator".
  If I open my UI5 application, the standard SAP login form is displayed.
  But after successful login my application fails when the oData model is created:
  var oDataModel = new sap.ui.model.odata.ODataModel(taskDataSvcURL, true);
  In the debugger I get the following error message (and nothing in NWA logs):
  Uncaught TypeError: Cannot read property 'dataServices' of undefined
  If I'm logged into to some SAP standard application (NWA, Portal) before calling my application, everything's working fine.
  Thanks in advance.
  Best regards,
  Thorsten.

  Hi,
  I solved it myself with the help of our basic admin.
  Go to "NWA->Configuration->Security->Authentification and Single Sign-On".
  Then select "SAP-J2EE-Engine" and click on "Edit".
  Search you SAPUI5 application and set "Used Template" to "Ticket"
  Afterwards it works for me.

• Redirecting back to application after user authentification in UM

  Hi all,
  I have SRM application installed together with UM on the same machine. While I'm trying to run SRM SUS app. on following page:
  http://mysite:56000/srmsus/application/start.do
  Here I put my user credentials and then I'm redirected to UM page at (where UM runs):
  http://mysite:54000/logon/logonServlet?redirectURL=...
  after succesful logon I'm redirecter to SAP J2EE documentation page at:
  http://mysite:54000/index.html
  Does anybody have an idea why I'm not redirected to SRM SUS application? Do I miss some settings?
  BR
  m./

  Hi,
  Where able to solve this problem, if so I would appreciate if could let me know how you solved this.
  thanks,

• User authentification

  I'm developping a web application with Servlet/JSP and Struts. I need to authenticate users. In fact, some users have to be authenticated in order to execute specials actions. So, what is the best way to authenticate users ? ( filters, actionMapping, etc) to avoid repeating java code.
  If someone can give me an example or an URL?
  THANKS

  If you are using tomcat, take a look at: http://jakarta.apache.org/tomcat/tomcat-4.1-doc/realm-howto.html

• User Authentification & Sessions

  Hello all!
  I started programming with sessions a day ago and now want to realize the classic login/logout webapp (if that exists :-)).
  My questions is: when the user has authenticated with his user/pass, I start the session and forward him to a(ny) next page. Now, there, how do I make sure the user is logged in? Do I set an attribute in the session like auth="true"? And trust in this on the next pages? No chance to cheat? My application is not that critiocal, I'm just interested in that. How to encode urls?
  Over all: how do you realize this mechanism? I like concrete code, so if someone has a good (and short and concenrated) example or a link I would be very happy.
  Thanks for your help,
  Henning

  Here is a servlet I once did.
  import java.io.*;
  import java.util.*;
  import javax.servlet.http.*;
  import javax.servlet.*;
  import java.sql.*;
  import javax.sql.*;
  public class LoginServlet extends HttpServlet {
    public void doPost (
       HttpServletRequest     request,
       HttpServletResponse     response
      ) throws ServletException, IOException
    doGet(request,response);
    public void doGet (
       HttpServletRequest     request,
       HttpServletResponse     response
      ) throws ServletException, IOException
     HttpSession session = request.getSession(true);
     PrintWriter out = response.getWriter();
       try {
            String driverName="sun.jdbc.odbc.JdbcOdbcDriver";
            String dbUrl="jdbc:odbc:login";
            Class.forName(driverName);
            Connection db =DriverManager.getConnection(dbUrl,"","");
            if ((session.getAttribute("user") == null) || (!session.getAttribute("ip").equals(request.getRemoteAddr()))){
                 PreparedStatement pStmt = db.prepareStatement("SELECT * FROM [login] WHERE [account] =? AND password=? AND [activated] = 1 ");
                 pStmt.setString(1, request.getParameter("account"));
                 pStmt.setString(2, request.getParameter("password"));
                 ResultSet rs = pStmt.executeQuery();
                 if(!rs.next()){
                      System.out.println("Account is not valid.");
                      request.setAttribute("msg", "Account is not valid.");
                      RequestDispatcher rd = request.getRequestDispatcher("../login/index.jsp");
                      rd.forward(request, response);
                 else do {
                      int id = rs.getInt(1);
                      String account = rs.getString(2); 
                      session.setAttribute("user", new Integer(id));
                      session.setAttribute("account", account);
                      session.setAttribute("ip", request.getRemoteAddr());
                      System.out.println("User " + session.getAttribute("user") +" has logged on.");
                      request.setAttribute("msg", "User has logged on.");
                      RequestDispatcher rd = request.getRequestDispatcher("../login/index.jsp");
                      rd.forward(request, response);
                 } while(rs.next());
                 rs.close();
            else {
                 System.out.println("User has already logged on.");
                      request.setAttribute("msg", "User has already logged on.");
                      RequestDispatcher rd = request.getRequestDispatcher("../login/index.jsp");
                      rd.forward(request, response);
            db.close();
       catch(Exception exp){
            System.out.println("Exception: "+ exp);
     out.close();
  }On all jsppages then use the following for verification:
  <%
  if ((session.getAttribute("user") == null) || (!session.getAttribute("ip").equals(request.getRemoteAddr()))){
  response.sendRedirect("index.jsp");
  %>Feel free to use.
  Andreas

• User authentification question ?

  hi,
  i am using wsad, i want to protect some ressources, for this i add all
  security tags needed in the web.xml, except the informations about user,
  because it server specific (username, passwod, role), i am using websphere
  contained in the wsad, my question is at which location i have to put this
  information, is it in the server-cfg.xml file ????
  thanks for your help

  In WebSphere App. Server you have three options for storing user information (user name and passwords).
  1. LDAP server (any supported by WAS)
  2. You can use local operating system or domain accounts.
  3. You can implement inteface com.ibm.websphere.security.CustomRegistry
  This interface has ~14-16 methods, like getUsers(), getUser(String), checkUserPassword(String user,String password)... etc
  If you choose 3rd option - you obviously have to write a class with all these methods, and its really limited only to your imagination where you store user info in this case:)
  Oleg.

• ISA570 - User Authentification

  Hi,
  I have a Cisco ISA570 and I try to connect to my Active Directory but when Im on Test and I click on connect say Server Timeout.
  How I can resolve this problem?
  I already read this tutorial :  Configuring the Cisco ISA500 for Active Directory/LDAP and RADIUS Authentication
  Thanks,
  Adrian

  Hi Adrian,
  I  just noticed your post and moved your post from VPN to the  correct area, Small Business Security.  I suggest that you contact the  Small Business Support Center for assistance.  Contact information is  located here:
  https://www.cisco.com/en/US/support/tsd_cisco_small_business_support_center_contacts.html
  Regards,
  Cindy Toy
  Cisco Small Business Community Manager
  for Cisco Small Business Products
  www.cisco.com/go/smallbizsupport
  twitter: CiscoSBsupport

• Why does user authentification fail when opening VPN

  When trying to open VPN on my mini Ipad I get the above message. Can anyone tell me  how to fix this?

  Hello,
  it could be that you have license to have only one remote panel at once.. and perhaps that first connection does not get destroyed properly before opening a new browser window.. Though that should not cause the crash you described. Which version of the LabVIEW Dev suite to you have? See the link below:
  http://digital.ni.com/public.nsf/allkb/C23829DB3D00486A86256D5E00707FB2?OpenDocument
  Also, is the VI for that front panel reentrant?
  see here for possible hints: http://zone.ni.com/reference/en-XX/help/371361B-01/lvconcepts/viewing_fp_remote/
  National Instruments

• Windows authentification while consuming web service from ABAP

  Hi All,
  We are consuming web service from ABAP, we have created client proxy in SE80 and configured logical port in LPCONFIG.
  This one was working fine. Now we have added  windows user authentification to access this service.
  Now when I'm trying to regenerate this proxy in R/3 it is asking for user and password. When I enter these details this one is not working.
  If I access this service direcly from internet explorer and I enter same user and password then I would able to access this service.
  Could you please let me know how to handle this.
  Regards
  Vikram

  The dialog that is produced by HTTP Destination object of the logical port is designed only for use within Classic Dynpro applications.  There is no prompt produced when running in Web Dynpro.  If possible assign a generic user within the logical port definition and this will be used automatically by all users.

• Get the groups name of a user in openldap authenticator

  Hi,
  I am using an openldap for user authentification. How can i retreive the groups name of a user ? I read that i must use the GroupManagerControl class.
  What is the way to specify the openldap authenticator using the above class ?
  Thanks for help.

  If you are referring to a user's group membership in the Active Directory, then indeed JNDI & LDAP can be used to retrieve these values.
  If you are referring to a user's local groups on their own workstation, then you may want to investigate either the JNDI NTLM provider or perhaps the Samba JCIFS stuff.

• How to get the group name of a user

  Hi,
  I am using an openldap for user authentification. How can i retreive the groups name of a user ? I read that i must use the GroupManagerControl class.
  What is the way to specify the openldap authenticator using the above class ?
  Thanks for help.

  Re,
  Here is a screenshot of this functions...
  If you really own LV DSC 8.2 the best thing to do is to reinstall it.
  Regards, 
  Message Edité par Richard K. le 04-02-2007 04:00 AM
  Richard Keromen
  National Instruments France
  #adMrkt{text-align: center;font-size:11px; font-weight: bold;} #adMrkt a {text-decoration: none;} #adMrkt a:hover{font-size: 9px;} #adMrkt a span{display: none;} #adMrkt a:hover span{display: block;}
  >> Découvrez, en vidéo, les innovations technologiques réalisées en éco-conception
  Attachments:
  security.jpg ‏3841 KB

• Howto use two Authentification Schemes at once?

  I'm still new to certain Apex aspects. At the moment I'm struggeling with the implementation of different Authentification algorithms.
  I currently have a small APEX application that does the user authentification by LDAP (AD). However I want to add a few special users (GUEST, ADMIN, etc.) that are not in the active directory/LDAP but that exists as "normal" APEX user.
  Question is: How can I use two different Authentification schemas for one application at the same time?
  So that a user with a valid windows login is authenficated by its windows username/pwd
  and a guest user who is not in the LDAP but is configured as APEX user will be authorized too.
  The order of the different authorization schemas might also play a certain role here.
  Any hints/links how to achieve this are very welcome.
  Edited by: Sven W. on Nov 6, 2009 12:49 PM: Changed Autorization to Authentification

  Together with a fellow collegue we created a database function that checks for the application, fetches the current authentication schema and uses the LDAP information from there. It is not perfect, but serves our purpose well. Feel free to reuse or comment on it.
  create or replace package body SYN_UTIL
  as
      FUNCTION apex_ldap_authenticate (
        p_username in varchar2,
        p_password in varchar2
      ) return boolean as
        v_login_result  boolean := false;
        v_ldap          raw(32);
        v_ldapres       binary_integer;
        v_un            varchar2(100);
        v_ldap_port     varchar2(100);
        v_ldap_host     varchar2(100);
        v_app_id        integer;
      BEGIN
         -- test for empty variables
           if p_username is null then
                 raise_application_error(-20001, 'Please insert Username and Password!');
           end if;
           if p_password is null then
                 raise_application_error(-20001, 'Please insert Username and Password!');
           end if;
           -- check for APEX-workspace-users
          if  not v_login_result then
            if APEX_UTIL.IS_LOGIN_PASSWORD_VALID(
              P_USERNAME => p_username,
              P_PASSWORD => p_password
            ) then v_login_result := true;
            end if;
          end if;
          if not v_login_result then
            -- LDAP-Login
            dbms_ldap.use_exception :=true;
            -- get application-id    
            v_app_id := NV('APP_ID');
            -- get LDAP information from views     
            select auth.ldap_host, auth.ldap_port, auth.ldap_dn_string
            into v_ldap_host,v_ldap_port,v_un
            from APEX_APPLICATIONS ap
            join apex_application_auth auth on ap.application_id = auth.application_id
                and ap.AUTHENTICATION_SCHEME = auth.AUTHENTICATION_SCHEME_NAME -- current authentication
            where ap.application_id =  v_app_id;
            -- LDAP init
            v_ldap := DBMS_LDAP.INIT(
              HOSTNAME => v_ldap_host
             ,PORTNUM  => v_ldap_port
            -- extract domain from v_un and add p_username
            v_un := replace(v_un,'%LDAP_USER%',p_username);
            -- connect to LDAP-server
             begin   
              v_ldapres := DBMS_LDAP.SIMPLE_BIND_S(
                  LD     => v_ldap,
                  DN     => v_un,
                  PASSWD => p_password
             exception
              -- only handle defined exceptions
              when others then
                   v_login_result := false;
             end;
             -- disconnect from LDAP
             v_ldapres := DBMS_LDAP.UNBIND_S(LD => v_ldap);
             v_login_result := true;
          end if;  -- not v_login_result
        return v_login_result;
      END;
  end SYN_UTIL;THis function is put where usually the default LDAP logic is used.
  In the field Authentication Function instead of -LDAP- this function is called.
  return syn_util.apex_ldap_authenticate; A minor point still is that any entry in "LDAP Username Edit Function" is not considered.
  But since we don't use that currenty we didn't made the effort to integrate it.
  Edited by: Sven W. on Nov 10, 2009 3:20 PM

• User to add favorites in Portal.

  Hi all,
  We have EP7.0 at our place.
  We have integrated SRM in ENETERRPISE PORTAL and users see all different menu in Portal as pe rthe roles assigned.
  Now for one of the roles,under "DETAILED NAVIGATION",users are able to see all transactions which are included for the corresponding role in SRM backend system.
  However the requirement now is to allow users to add transactions themselves under the link DETAILED NAVIGATION.
  How can this be achiveed??

  Hi Hema,
  Try this.
  Change the iView properties, these forces all BI reports to fire in EN,
  The setting in the iView of Application Parameters and set this to u201CLanguage=ENu201D.Then this Overrides the local setting of the Portal and forces a BW report to fire in EN.
  try this link :- Query in Portal User-Language-Independent
  Regards ,
  Sapbi3012.
  Edited by: Sapbi3012 on Jul 21, 2011 3:31 PM

• Configure User Authentication in Web Service

  Hi,
  I have a receiver soap channel that consume a web service with user authentication. I am setting the user/password in Connection Parameters section, but I'm getting the error from the web service:
  Incoming message does not contain required Security header
  Any ideas about what's wrong in my channel?
  Regards,
  Ismael

  Hi,
  It doesn't work in my case (It's said in the first post).
  I have tested it using PI 7.1 using:
  - "Message Protocol=SOAP 1.1." and filling user/password in "Configure User Authentification" and I get the error:
  soap fault: WSDoAllReceiver: Incoming message does not contain required Security header
  - "Message Protocol=Axis ." I get the error:
  com.sap.engine.interfaces.messaging.api.exception.MessagingException:
  javax.ejb.EJBException: Exception in getMethodReady() for stateless bean sap.com/com.sap.aii.axis.app*xml|com.sap.aii.adapter.axis.ejb.jar*xml|AFAdapterBean;
  nested exception is: com.sap.engine.services.ejb3.util.pool.PoolException: javax.ejb.EJBException:
  Exception raised from invocation of public void com.sap.aii.adapter.axis.modules.AFAdapterBean.ejbCreate() throws javax.ejb.CreateException method on bean instance com.sap.aii.adapter.axis.modules.AFAdapterBean@5902bd4b for bean sap.com/com.sap.aii.axis.app*xml|com.sap.aii.adapter.axis.ejb.jar*xml|AFAdapterBean; nested exception is: javax.ejb.CreateException: java.lang.NoClassDefFoundError: org/apache/axis/AxisFault
  Regards,