Login to Portal without credentials - Anonymous access

All,
We have a requirement to provide anonymous access to all the LDAP users in portal for accessing KM documents.
Can somebody explain me if it is possible to give access to all the users without using credentials in portal ? Thanks!

SAP Note - 837898: How to set up anonymous logon for KM

Similar Messages

Allow Anonymous Access to the Password Reset Portal

How do I go about enabling Anonymous Access to the Password Reset Portal?
The following instructions don't seem accurate anymore. Has this setting changed with Sharepoint Services 3.0 SP2?
When I click on "Settings" in Step 4 the only option displayed is "Permission Levels".
Allow Anonymous Access to the password reset portal
In this procedure you will configure the portal to allow Anonymous Access to users who need to reset their passwords.
To allow anonymous access to the password reset portal
Log on to the password portal (http://<portal hostname/PasswordPortal) as an administrator.
On the top right hand side of the portal homepage click Site Actions, and then click Site Settings.
Under Users and Permissions click Advanced Permissions.
On the Permissions page, click Settings, and then select Anonymous Access.
Under Anonymous users can access, select Entire Web site, and then click OK.

Yes, that was very helpful. Thanks!
Just in case that site dissapears and someone else needs this info, here it is:
If you don’t see the “Anonymous Access” menu option in the “Settings” menu, it might not be turned on in Central Admin/IIS. You can manually navigate to “_layouts/setanon.aspx” if you want, but the options will be grayed out if it hasn’t been enabled in IIS
First get to your portal. Then under “My Links” look for “Central Administration” and select it.
In the Central Administration site select “Application Management” either in the Quick Launch or across the top tabs
Select “Authentication Providers” in the “Application Security” section
Click on the “Default” zone (or whatever zone you want to enable anonymous access for)
Under “Anonymous Access” click the check box to enable it and click “Save”
NOTE: Make sure the “Web Application” in the menu at the top right is your portal/site and not the admin site.
You can confirm that anonymous access is enabled by going back into the IIS console and checking the Directory Security properties.
Now the second part is to enable anonymous access in the site.
Return to your sites home page and navigate to the site settings page. In MOSS, this is under Site Actions – Site Settings – Modify All Site Settings. In WSS it’s under Site Actions – Site Settings.
Under the “Users and Permissions” section click on “Advanced permissions”
On the “Settings” drop down menu (on the toolbar) select “Anonymous Access”
Select the option you want anonymous users to have (full access or documents and lists only)
Now users without logging in will get whatever option you allowed them.
A couple of notes about anonymous access:
You will need to set up the 2nd part for all sites unless you have permission inheritance turned on
You must do both setups to enable anonymous access for users, one in IIS and the other in each site

Using database users to login on portal

Hi.
i'm about to begin to develop a portal. I've just created the database and users.
Can anyone tell me how can i use users that i have created on a database, to login on portal, without having to create them again on portal?
Or can anyone explain me the right way to do it?
Thanks.

Don't do it man! Don't do it!!
Seriously don't create your own tables, portal is tightly integrated with OID, so you HAVE to synchronize with OID,SSO and portal anyway.
http://otn.oracle.com/docs/products/ias/doc_library/90200doc_otn/index.htm
Look here under management/security and read chap 5 of the SSO admin guide. Also the OID developers guide and admin guide and that should get you started or scare you off your present course :)

Is anonymous access support in sharepoint 2013 bi sites to view dashboards reports without login ??

HI
In SharePoint 2013 :
IS Anonymous access supports for BI sites where dashboards are deployed using Performance point services and SQL SERVER ANALYSIS server?
adil

If you're using an Excel Services data connection, Anonymous is not supported:
https://technet.microsoft.com/en-us/library/ff191193.aspx
Trevor Seward
Follow or contact me at...
&nbsp&nbsp
This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

Login to portal from a 3rdParty Web site without logon promt??

Hi Experts,
We have developed a new WD ABAP Application thats available via IVIEW on the portal. Client wants to access this application via a Link in a website. Since he already validates user login to this Website, we need a seamless connection to Portal. Meaning when i click this link on 3rd party site
-NO PORTAL LOGON SCREEN should appear when user navigates to portal.
-i should be able to get the logged in user details. Client is ready to create USERs in Portal that are exactly same as the one existing on his webSite.
-Any password/credential changes in the Users data on this customer website should get updated in Portal.

Hello Eureka,
Why dont you configure NTLM...Kerberos authentication.
Using the above, as the user will login into his/her machine, the same credentials will be automatically passed to portal without any login screen and the portal can be accessed.
We are working on similar scenario as yours.
Warm Regards,
Ritu

Anonymous access to Portal Component over direct URL.

Hi All,
Im having a few Issues with enabling anonymous access to a portal component.
Here is a mock of our portalapp.xml file
<?xml version="1.0" encoding="iso-8859-1"?>
<application>
<application-config>
    <property name="SharingReference" value="usermanagement, knowledgemanagement, landscape, htmlb, exportalJCOclient, exportal"/>
    <property name="startup" value="true"/>
    <property name="releasable" value="true"/>
    <property name="Vendor" value="com.ourdomain"/>
    <property name="SecurityArea" value="OurSecurityArea"/> -->
</application-config>
<components>
    <component name="MyComponent">
      <component-config>
        <property name="ClassName" value="com.ourdomain.MyClass"/>
        <property name="ComponentType" value="servlet"/>
        <property name="SafetyLevel" value="no_safety"/>
      </component-config>
      <component-profile/>
    </component>
</components>
<services/>
</application>
I want to be able to access the servlet over a URL like...
http://host:port/irj/servlet/prt/portal/prtroot/MyApp.MyComponent
I have added the Default User Group Everyone to the no_safety area of our com.ourDomain Security Zone.
However when try to navigate to the URL we are first faced with a SAP Portal login page. on successful login the servlet is then shown.
Note: I was able to get the Same Servlet working within an iView when the iViews Authentification Scheme was set to anonymous...However i am under instruction to get it working without the iView...
As Background, The servlet is to be a sink for accepting data sent via an HTTP Post.
Any help with this or pointers in the right direction would be greatly appreciated.
-Paul

Hi Darrell,
Thankyou for that, yes it has helped....And I can now access the servlet directly without need to login.
I figured that there was something that i was missing.....
-Paul

Instant Portal anonymous access?

I'd like to make Instant Portal our web facing portal but I've been told by a few people at Oracle that you cannot allow anonymous access. I would have to use the full blown Portal, which I'm not opposed to doing, but having said that....is there anyway to port the prebuilt templates in Instant Portal to Portal?

Hello,
Just curious if you ever found out anything about this? I'm also wondering the same thing. I'd like to make the first page available to all viewers I want them to click Log In to see more.
Thanks,
Jessica

Login prompt showing up on mobile devices on publishing anonymous access website

We have a website that is a publishing site using anonymous access. The website works fine except on a mobile device a login prompt pops up. if you press cancel the website works fine. It only happens if you go to the homepage. I
have ensured everything is checked in etc. Is there anyway to find out why this is happening?
Kristin

Hi,
For your issue, try to disable the mobile view:
Go to Site settings => Manage site feature => deactivate "Mobile Browser View"
Here are some similar post, you can use as a reference:
https://social.technet.microsoft.com/Forums/en-US/a25c4eac-5992-40c7-a3c1-3478c886b690/mobile-devices-prompt-for-creditials-while-accessing-publishing-site-with-anonymous-access-enabled?forum=sharepointadminprevious
https://social.technet.microsoft.com/Forums/en-US/84e47f9a-8d4d-4ebc-87d2-aa4eefeb6c2e/mobile-devices-prompt-for-creditials-while-accessing-publishing-site-with-anonymous-access-enabled?forum=sharepointadminprevious
Best Regards,
Lisa Chen
Lisa Chen
TechNet Community Support

Allow anonymous access to Publisher Diagnostics?

Does anyone know of a way to allow access to Publisher Diagnostics without having to enter credentials? Long story short, I'd like to turn off authentication for the publisher diagnostics page of our published content redirector servers. Please let me know if anyone knows how to do that. Thanks.

Yes, that was very helpful. Thanks!
Just in case that site dissapears and someone else needs this info, here it is:
If you don’t see the “Anonymous Access” menu option in the “Settings” menu, it might not be turned on in Central Admin/IIS. You can manually navigate to “_layouts/setanon.aspx” if you want, but the options will be grayed out if it hasn’t been enabled in IIS
First get to your portal. Then under “My Links” look for “Central Administration” and select it.
In the Central Administration site select “Application Management” either in the Quick Launch or across the top tabs
Select “Authentication Providers” in the “Application Security” section
Click on the “Default” zone (or whatever zone you want to enable anonymous access for)
Under “Anonymous Access” click the check box to enable it and click “Save”
NOTE: Make sure the “Web Application” in the menu at the top right is your portal/site and not the admin site.
You can confirm that anonymous access is enabled by going back into the IIS console and checking the Directory Security properties.
Now the second part is to enable anonymous access in the site.
Return to your sites home page and navigate to the site settings page. In MOSS, this is under Site Actions – Site Settings – Modify All Site Settings. In WSS it’s under Site Actions – Site Settings.
Under the “Users and Permissions” section click on “Advanced permissions”
On the “Settings” drop down menu (on the toolbar) select “Anonymous Access”
Select the option you want anonymous users to have (full access or documents and lists only)
Now users without logging in will get whatever option you allowed them.
A couple of notes about anonymous access:
You will need to set up the 2nd part for all sites unless you have permission inheritance turned on
You must do both setups to enable anonymous access for users, one in IIS and the other in each site

Anonymous access with named users

Hi!
I am trying to set up anonymous access with named users on EP6 SP9. I am using Database only as UME Data storage. I have applied the note #728106, since most of the content is html-pages on the KM.
I defined the UME settings ume.login.guest_user.uniqueids=anon01,anon02
ume.login.anonymous_user.mode=1
Restarted the server and attached user account into roles (which contain only anonymous content).
I then accessed the page /irj/portal/anonymous (or the longer version /irj/servlet/prt/portal/prtroot/com.sap.portal.navigation.portallauncher.anonymous) and everything was fine. However I wasn't able to get the portal working with /irj/portal/anonymous?j_user=anon02. I always received Portal runtime error. From the logs I saw that the portal tried to access as user anon01.
When I changed the UME settings into
ume.login.guest_user.uniqueids=anon02,anon01
I was able to get the anon02 user account working, but not /irj/portal/anonymous?j_user=anon01. From the logs I saw that the portal tried to access as user anon02.
Both user account are using the same rule, portal desktop and framework page. I can see the correct (and different) TLN for each user only in the content are I see this error.
Any ideas?
Thanks,
Petri

I need to switch between two named anonymous users.
It works fine using http://<server>:<port>/irj/portal?j_user=<first_Guest_user>&j_password=<pwd_of_first_Guest_user>&login_submit=true
Then to switch to the other user I must do a log-off or close the browser and input the other url http://<server>:<port>/irj/portal?j_user=<second_Guest_user>&j_password=<pwd_of_second_Guest_user>&login_submit=true
I developed a servlet to switch the users using IAuthentication (method forceLogoffUser) and then redirect to the respective url. But when I call forceLogoffUser method I get a login screen and the script stop executing. Passing 'returnURL' parameter did not work.
Parameters:
req - HttpServletRequest
resp - HttpServletResponse
returnURL - url to use to logon again.
Is there a way to switch automaticaly between the two named anonymous users?

Full Qualified Domain Name (FQDN) doesn't work when try to login in portal

I Install a NetWeaver 7.0 with BI JAVA
SP15
I try to login in portal with 3 diferent ways:
1) - With IP I can login but I can't see any objects;
2) - With only hostname without domain I can login I see objects, every thing works fine.
3) - With FQDN I can't login. I don't get any error. It refreh again the login page, and ask again the user and pass.
I could always login with only the hostname, but the problem is that all links are generated with FQDN.
This is the error that is in Security.log:
#1.5 #0050568F3C72005B0000026A00000B000004555928D4E3E7#1219741332358#/System/Security/Audit#sap.com/irj#com.sap.security.core.util.SecurityAudit#SAP_BASIS#5575##slmqlsbi1.lm.pt_BIP_3925050#Guest#abd12770734d11dd889a0050568f3c72#SAPEngine_Application_Thread[impl:3]_4##0#0#Info#1#com.sap.security.core.util.SecurityAudit#Plain###SAP_BASIS     | LOGIN.OK     | USER.R3_DATASOURCE.SAP_BASIS     |      | IP Address=[192.168.4.4]#
#1.5 #0050568F3C72005F000014BF00000B000004555928F31063#1219741334343#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#5576##n/a##28fb55a072da11dd9b760050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C720075000005CA00000B00000455592934EDEE#1219741338656#/System/Security/Authentication#sap.com/irj#com.sap.engine.services.security.authentication.logincontext#SAP_BASIS#5577##slmqlsbi1.lm.pt_BIP_3925050#Guest#af8afb20734d11ddc4230050568f3c72#SAPEngine_Application_Thread[impl:3]_33##0#0#Info#1#com.sap.engine.services.security.authentication.logincontext#Plain###LOGIN.OK
User: SAP_BASIS
Authentication Stack: ticket
Login Module                                                               Flag        Initialize Login      Commit     Abort      Details
1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule             SUFFICIENT ok          false      false
2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   REQUISITE   ok          true       true
3. com.sap.security.core.server.jaas.CreateTicketLoginModule               OPTIONAL    ok          true       true
Central Checks                                                                                true                  #
#1.5 #0050568F3C720075000005CB00000B00000455592934F1FE#1219741338656#/System/Security/Audit#sap.com/irj#com.sap.security.core.util.SecurityAudit#SAP_BASIS#5577##slmqlsbi1.lm.pt_BIP_3925050#Guest#af8afb20734d11ddc4230050568f3c72#SAPEngine_Application_Thread[impl:3]_33##0#0#Info#1#com.sap.security.core.util.SecurityAudit#Plain###SAP_BASIS     | LOGIN.OK     | USER.R3_DATASOURCE.SAP_BASIS     |      | IP Address=[192.168.4.4]#
#1.5 #0050568F3C72005F000014C000000B0000045559298BC213#1219741344346#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#5578##n/a##28fb55a072da11dd9b760050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C72005F000014C100000B00000455592A2466F9#1219741354348#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#5579##n/a##28fb55a072da11dd9b760050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
Can you tell me why I can't login in portal with FQDN?
Best regards,
Filipe Sacadura Botte
Edited by: Filipe Sacadura Botte on Aug 26, 2008 11:03 AM

I have all that configured:
File host:
IP host FQDN
File Security.log
#1.5 #0050568F3C72006D000002C700000E580004556D63F80A15#1219828223462#/System/Security/Audit#sap.com/irj#com.sap.security.core.util.SecurityAudit#J2EE_ADMIN#7764##slmqlsbi1_BIP_3925050#Guest#fae2cba0741711dd91c40050568f3c72#SAPEngine_Application_Thread[impl:3]_1##0#0#Info#1#com.sap.security.core.util.SecurityAudit#Plain###J2EE_ADMIN     | LOGIN.OK     | USER.R3_DATASOURCE.J2EE_ADMIN     |      | IP Address=[10.131.224.205]#
#1.5 #0050568F3C72006300001DB400000E580004556D64287F5C#1219828226635#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7765##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C72006300001DB500000E580004556D64C1226C#1219828236635#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7766##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C720076000000E400000E580004556D64CDE4A3#1219828237479#/System/Security/Authentication#sap.com/irj#com.sap.engine.services.security.authentication.logincontext#J2EE_ADMIN#7767##slmqlsbi1_BIP_3925050#Guest#034bcf80741811dd8c500050568f3c72#SAPEngine_Application_Thread[impl:3]_36##0#0#Info#1#com.sap.engine.services.security.authentication.logincontext#Plain###LOGIN.OK
User: J2EE_ADMIN
Authentication Stack: ticket
Login Module                                                               Flag        Initialize Login      Commit     Abort      Details
1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule             SUFFICIENT ok          false      false
2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   REQUISITE   ok          true       true
3. com.sap.security.core.server.jaas.CreateTicketLoginModule               OPTIONAL    ok          true       true
Central Checks                                                                                true                  #
#1.5 #0050568F3C720076000000E500000E580004556D64CDE766#1219828237479#/System/Security/Audit#sap.com/irj#com.sap.security.core.util.SecurityAudit#J2EE_ADMIN#7767##slmqlsbi1_BIP_3925050#Guest#034bcf80741811dd8c500050568f3c72#SAPEngine_Application_Thread[impl:3]_36##0#0#Info#1#com.sap.security.core.util.SecurityAudit#Plain###J2EE_ADMIN     | LOGIN.OK     | USER.R3_DATASOURCE.J2EE_ADMIN     |      | IP Address=[10.131.227.30]#
#1.5 #0050568F3C720078000000D100000E580004556D653EF26F#1219828244886#/System/Security/Authentication#sap.com/irj#com.sap.engine.services.security.authentication.logincontext#J2EE_ADMIN#7768##slmqlsbi1_BIP_3925050#Guest#07b14c80741811dd94540050568f3c72#SAPEngine_Application_Thread[impl:3]_18##0#0#Info#1#com.sap.engine.services.security.authentication.logincontext#Plain###LOGIN.OK
User: J2EE_ADMIN
Authentication Stack: ticket
Login Module                                                               Flag        Initialize Login      Commit     Abort      Details
1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule             SUFFICIENT ok          false      false
2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   REQUISITE   ok          true       true
3. com.sap.security.core.server.jaas.CreateTicketLoginModule               OPTIONAL    ok          true       true
Central Checks                                                                                true                  #
#1.5 #0050568F3C720078000000D200000E580004556D653EF5CD#1219828244886#/System/Security/Audit#sap.com/irj#com.sap.security.core.util.SecurityAudit#J2EE_ADMIN#7768##slmqlsbi1_BIP_3925050#Guest#07b14c80741811dd94540050568f3c72#SAPEngine_Application_Thread[impl:3]_18##0#0#Info#1#com.sap.security.core.util.SecurityAudit#Plain###J2EE_ADMIN     | LOGIN.OK     | USER.R3_DATASOURCE.J2EE_ADMIN     |      | IP Address=[10.131.227.30]#
#1.5 #0050568F3C72006300001DB600000E580004556D6559DF5B#1219828246652#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7769##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C72007A0000016C00000E580004556D659A15BF#1219828250856#/System/Security/Authentication#sap.com/irj#com.sap.engine.services.security.authentication.logincontext#J2EE_ADMIN#7770##slmqlsbi1_BIP_3925050#Guest#0b36a2b0741811dd8eeb0050568f3c72#SAPEngine_Application_Thread[impl:3]_22##0#0#Info#1#com.sap.engine.services.security.authentication.logincontext#Plain###LOGIN.OK
User: J2EE_ADMIN
Authentication Stack: ticket
Login Module                                                               Flag        Initialize Login      Commit     Abort      Details
1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule             SUFFICIENT ok          false      false
2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule   REQUISITE   ok          true       true
3. com.sap.security.core.server.jaas.CreateTicketLoginModule               OPTIONAL    ok          true       true
Central Checks                                                                                true                  #
#1.5 #0050568F3C72007A0000016D00000E580004556D659A18AF#1219828250856#/System/Security/Audit#sap.com/irj#com.sap.security.core.util.SecurityAudit#J2EE_ADMIN#7770##slmqlsbi1_BIP_3925050#Guest#0b36a2b0741811dd8eeb0050568f3c72#SAPEngine_Application_Thread[impl:3]_22##0#0#Info#1#com.sap.security.core.util.SecurityAudit#Plain###J2EE_ADMIN     | LOGIN.OK     | USER.R3_DATASOURCE.J2EE_ADMIN     |      | IP Address=[10.131.227.30]#
#1.5 #0050568F3C72006300001DB700000E580004556D65F28856#1219828256653#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7771##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C72006300001DB800000E580004556D668B39B0#1219828266654#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7772##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C72006300001DB900000E580004556D6723CECE#1219828276655#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7773##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C72006300001DBA00000E580004556D67BC791B#1219828286656#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7774##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C72006300001DBB00000E580004556D685513CD#1219828296657#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7775##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C72006300001DBC00000E580004556D68EDBF58#1219828306673#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7776##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
#1.5 #0050568F3C72006300001DBD00000E580004556D69865801#1219828316674#/System/Security/Audit/J2EE#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#J2EE_GUEST#7777##n/a##e398c660736e11dda4c50050568f3c72#Thread[Thread-50,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Info#1#com.sap.engine.services.security.roles.SecurityRoleImpl#Java###: Authorization check for caller assignment to J2EE security role [ : ].#3#ACCESS.OK#SAP-J2EE-Engine#guests#
files std_server0.out and defaultTrace don't have any error.

Anonymous Access Sharepoint Foundation 2013

Is it possible to allow anonymous access in Sharepoint Foundation 2013? I've enabled anonymous access at the site level as well as via central administration but users are still prompted for login when browsing to the site anonymously. I'm
more curious if this is an issue with the Foundation version specifically at this point. Thanks.

Hi mtrosper,
Please disable anonymous access via the UI, then enable it using PowerShell, compare the result.
You can use the following PowerShell command to enable it:
$webApp = Get-SPWebApplication 'http://someurl:9999'
$webApp.IisSettings['Default'].AllowAnonymous=$false
$webApp.update()
More information, you can refer to the link:
http://sharepoint.stackexchange.com/questions/74487/how-to-disable-anonymous-access-for-sharepoint-webapplication-with-powershell
Best Regards,
Wendy
Forum Support
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
[email protected]
Wendy Li
TechNet Community Support

Anonymous access to list on public site (Sharepoint Online)

Hi,
I have created a Contact Us custom list for our public web site and could assign "Add items" and "View items" permissions for the Anonymous user (by using the 3rd party WSP365
Anonymous 2013 sandbox solution). This is clearly shown in the Permissions of this list.
Now I'm trying to access this list through the REST API and the $.ajax function (jQuery). Assuming the list is called "ContactUs", I should be able to read and write to this list through
http://contoso-public.sharepoint.com/_api/web/lists/GetByTitle('ContactUs')/items
1st problem: When I try to access this list, I get a login popup asking me to log into prodnet47-48ipv4a.sharepointonline.com.akadns.net (same on IE11 and Chrome)
Accessing directly the link above returns the following error (although I'm not sure it is meant to be accessed like that):
<m:error xmlns:m="http://schemas.microsoft.com/ado/2007/08/dataservices/metadata"><m:code>-2147024891,
System.UnauthorizedAccessException</m:code><m:message xml:lang="en-US">Access
denied. You do not have permission to perform this action or access this resource.</m:message></m:error>
2nd problem: When I use _spPageContextInfo.webAbsoluteUrl +"/_api/web/lists/GetByTitle('ContactUs')/items to programatically get the base domain, the url returned is
http://contoso-public.sharepoint.com/undefined/_api/web/lists/GetByTitle('ContactUs')/items
Any help welcome.
Thanks in advance

I read that anonymous access is unsupported in 2010 and didn't find improvements in 2013. Alternative route is to create service account with minimal read permission and use this account to communicate with REST.
http://allthatjs.com/2012/07/20/limitations-of-sharepoint-listdata-svc/
Bala

Anonymous access to KM in 2004s SPS07

Hi experts,
I have setup an External Facing Portal on 2004s SPS07, but the anonymous user needs to be authenticated when accessing XML forms documents. The XML forms documents are indeed shown through KM navigation iViews. Images from KM are also not shown; HTML documents in KM however are.
I think something has changed in 2004s, because according to note 837898, the only thing that needs to be changed is setting the AuthScheme property for the iViews in Standard Portal Role to Anonymous. I have done this step, but it won't get through. I get several error messages in the default.trc which say:
Regarding Anonymous access to Standard Portal Role:
com.sapportals.portal.prt.runtime.PortalRuntimeException: Access is denied:
pcd:portal_content/every_user/general/eu_role/com.sap.km.home_ws/com.sap.km.hidden/com.sap.km.urlaccess/com.sap.km.docs - user: visitor
Regarding editing the Standard Portal Role:
[com.sapportals.portal.pcd.admintools.roleeditor.RoleEditorCompContextHandler] Ex.msg:null [EXCEPTION] #1#java.lang.NullPointerException
com.sap.security.api.NoSuchRoleException: Principal set ROLE.PCD_ROLE_PERSISTENCE.aLs3DpIRt8wxUeWRnJ+poSMWUUE= doesn't exist!
Regarding XML forms:
Exception getting currently running XMLForm Module version.
java.lang.IllegalStateException: No transaction at com.adobe.service.J2EEConnectionFactoryManagerPeerImpl.getConnection(J2EEConnectionFactoryManagerPeerImpl.java:70)
When looking in the com.sap.km.cm.par file AuthScheme property for components docs, navigation, xmlformspreview, et cetera, is still set to basic authentication.
Does anybody know what goes wrong and how to solve this? Thanks a lot in advance!
Kind regards,
Hilco Broens

Hi Stefan,
In this version (2004s SPS07) I don't need to change the settings in the URL generator service, since they all point to irj/go/km/docs.
Accessing documents (HTML, XML) directly through a KM doc iView is succesfull, however when opened from a link within a KM nav iView or KM search iView it won't work:
- opening a link like irj/go/km/docs/.../doc.ext results in an access denied error:
Access denied (Object: portal_content/every_user/general/eu_role/com.sap.km.home_ws/com.sap.km.hidden/com.sap.km.urlaccess/com.sap.km.docs).
- opening a link like /irj/servlet/prt/portal/prtroot/com.sap.km.cm.xmlformpreview?XMLFormID=id&show=/repository/.../id.xml results in the authentication form.
Note: images in this repository are never shown!
Concerning your second idea, in com.sap.km.cm in application-config there is a property:
<property name="SecurityArea" value="NetWeaver.KMC" />
In component-config for all related components:
<property name="SafetyLevel" value="low_safety" />
The problem still remains in the fact that I cannot change the AuthScheme property to Anonymous for Standard Portal Role iViews properly. I figure this will change the <property name="AuthScheme" value="basicauthentication" /> in com.sap.km.cm to Anonymous.
Any other ideas?
Kind regards,
Hilco

Anonymous access to KM Navigation Iview

In order to obtain an anonymous access to a KM folder, I followed the instructions in the guide How to configure an anonymous access to KM.
Unfortunately I still have 2 problems:
1) connecting to the portal by http://<server name etc.>/anonymous I can see the folder and the documents list, but if I try to open a document clicking on it I get a page with the message 401 Unauthorized by the J2EE Engine
2) in the KM Navigation Iview I cannot see the icons (those of the documents type, that one of the folder and so on), and when opening the iview I have a logon request for every icon
Someone can help me?

Hi Giuseppe,
if you implement everything according to SAP Note 837898 (especially the URL Generator Service entries and the Authentication Schema of the "hidden" iviews) you should get rid of this problems.
Hope this helps,
Robert

Login to Portal without credentials - Anonymous access

Similar Messages

Maybe you are looking for