Portal ultrasearch login

Similar Messages

• Portal Certificate Login / Basic Authentication

  Hi .
  We've setup our Portal to login by either client certs of basic authentication. The client cert is stored on a smart card device. On each access to the smartcard a user dialog prompts the user to enter the password of the smartcard.
  Some users have several user IDs. Client certificate can IMHO only mapped to one user ID. First question: Is it possible to map a client cert to more than one user ID in UME?
  2)
  If the smartcard is in cardreader and the user opens the portal login page, portal always requests the client certificate (since it is present). If the user clicks cancel, then an error page is shown. The user should have the ability to login using basic authentication user/password, even the certificate is present. At the moment we need to advice the users to remove the smartcard before trying to login. What I am looking for is something like
  https://portal.com/irj/login&j_authscheme=basicauthentication <- do not request client cert, prompt for userid password
  https://portal.com/ijr/login/certlogonportlet <- requests client cert
  Thanks for your help
  Philipp

  For the ABAP stack you can force the logon screen.
  For Java stacks you would need to make it application specific.
  I agree with Olivier  - the use case for 1) is suspect.
  If your problem is tht system admins are also ESS endusers (for example) then you can give them a different network zone to work from as admin with a different SSO ID. From a risk perspective it is the same... you should only give admin access to people whom you trust and accept being monitored.
  Cheers,
  Julius

• Problem in Portal Anonymous Login..Please guide

  Hello All,
  Am trying Portal Anonymous Login using EP7 SP9 Sneak Preview.
  Using link for this - http://help.sap.com/saphelp_nw2004s/helpdata/en/1e/e19f58136e654d9709befa464314f2/frameset.htm
  1. Have added 2 users in the UME Property using configtool - anon1,anon2
  2. Created a simple PCD Role and assigned a URL iView to it. Changed it authenticationscheme property to Anonymous.
  3. Assigned this role to Anonymous Users Group.
  Problem:
  1. When I access URL http://rp1677:50100/irj/portal/anonymous, am asked for authentication? Why?
  2. The anonymous user group contains user Guest. When am trying to add users- anon1 & anon2 into this group, I get an error saying - <i>You are not authorized to assign one or more entities. Perform a new assigned entities search to see the correct status</i>
  Am doing this entite process using the administrator login.
  Please guide.
  Awaiting Reply.
  Thanks and Warm Regards,
  Ritu

  Hi,
  There is a step by step guide to implement external facing portal in
  <a href="https://www.sdn.sap.com/irj/sdn/weblogs?blog=/pub/wlg/5894">blog</a>
  Follow all above steps and if you still get error write here again.
  Regards
  Abdul.

• Com.sap.portal.runtime.login.par.bak

  Hi everyone,
  I've been reading blogs and forum posting regarding how to change the logon page.  In all sources that I read, they all refer that the location of 'com.sap.portal.runtime.login.par.bak' is in '<drive>:\usr\ap\W01\JC00\j2ee\cluster\server0\apps\sap.com\irj\servlet_jsp\irj\root\WEB-INF\deployment\pcd'
  directory...
  However, I found mine in '<drive>:\usr\ap\W01\JC00\j2ee\cluster\server0\apps\sap.com\irj\servlet_jsp\irj\root\WEB-INF\deployment\temp'
  directory...
  Is is fine just to use the one in 'temp' directory?  Furthermore, after I do the changes, should I copy the par file to both temp and pcd directory?
  Thanks
  Johannes

  Hello,
  You will have to remove the .bak extension and put the file in PCD directory before you restart for the chnages to take effect.
  Also please do not name the par file same as com.sap.portal.runtime.login.par give it any other name like mylogon.par edit the par file using NWDS, and put it in PCD. Restart the engine the new par file will be used.
  Check the following link:
  http://help.sap.com/saphelp_nw04s/helpdata/en/23/c0e240beb0702ae10000000a155106/frameset.htm
  Regards,
  Vijith

• Same portal user logins when open in new tab/window

  hi all,
  i've any issue, how can i use the portal with different logins (ie) in different tabs or windows. currently i've to logoff everytime to login as a new user, is something to do with ie settings?
  tnx,
  JB

  Hi,
  Yes you cannot login into the portal with two different users in the same browser if you want to use another user you have to use another browser for example:say user1 has logged into the portal using IE in which you cannot login into the portal with another user say user2.
  Hope it helps.......
  Thanks,
  Rahul.

• Terminate Portal User Login with JSessionID or MYSAPSSO2 Cookie

  Dear All,
  I know using Visual Administrator , we can terminate the session.
  Is it possible for the administrator to terminate a logged in portal user with his/her  JsessionID or MYSAPSSO2 cookie value or User Id programmatically.?
  Is it possible for portal admin to forcibly exit (logoutl) an active user login  without logging onto visual administrator?
  Regards,
  Eben Joyson

  The only complete mitigation for session hijacking is to run the entire site as SSL. This is Oracle's recommendation if you need a complete mitigation solution. And example of an ATG site running in full SSL is Dennis Kirk (denniskirk.com).
  The problem with doing so is that SSL (a) takes more processing power in the system running the client's browser and (2) incurs latency that degrades the perceived page performance. This is particularly true for consumers running Internet Explorer, where speed-up measures like SPDY are either incomplete or don't work. And for a hard core eComemrce site, slower page performance means that you make less money.
  Most sites, including those that you mention, use a mixture of SSL and non-SSL pages to overcome this. They use non-SSL for those areas of the site where penetration does not have a material negative impact. Browsing catalog pages as an anonymous user, for example. If someone hijacks my session and I'm browsing the catalog anonymously, they're welcome to it. There's nothing private in my session. Even robots can access that content.
  Once I login or go to pages where private information is being exchanged, then you have to secure the session. That's where the protocol switcher servlet comes in. As you authenticate, you switch the user to SSL.
  I've tried a number of additional mitigation steps. Unfortunately I can't discuss them here at this time.
  And none of the servlets that you mention have any benefit with mitigating session hijacking.

• Portal Users Login Time during a particular interval

  Hello,
  I have gone through many forums and blogs but didn't find any helpful comments on how do I get the list of users and their respective login times during a particular time interval. All my users are stored inside the portal only, I am not using a dual stack system. Please tell me if there is some way to find out the solution to this problem.
  Thanks  & Regards
  Ashish Patel

  Dear Ashish
  Have you checked the Portal DB Tables ?
  For example this table WCR_USERSTAT  might be of use to you (but there are others).
  But you might not find the information for "a particular interval". I believe you will have to do some development for that.
  Kind Regards
  /Ricardo Quintas

• Auto refresh Portal after Login

  Hi All,
  I need to refresh the Portal page immediately after login to load some content.
  How to add page refresh code and where to add?
  Probably that will happen in the masthead file but exactly what javascript i need to add.
  Thanks ,
  Amarys.

  Hi Amarys,
  java script part is pretty simple.
  Referesh()
  window.top.location.href="/irj/portal";
  The second part about where to place this will be tricky, as you may end up in infinite loop of Refresh.
  One possible solution is to write your logon module and set a flag when the login is successful. Read this flag in one of the Portal component (Say Masthead), Refresh the Portal and clear the flag.
  By the way why do you need this. If you can elaborate on what exactly you want to achieve, may be someone can suggest a better approach.
  Thanks
  Prashant

• Portal User Login History

  I am looking for a way to create a procedure or use an api in order to return the last time a portal user logged in to their account. Any suggestions?
  null

  I cannot think of any APIs in the PDK that will do this, but it is very simple to do via custom coding etc.
  Create a table with a minimum of these base columns:
  PORTAL_USERNAME
  LAST_LOGIN_DATE
  etc.
  You could create a custom login or logout portlet which uses the WWSEC APIs and also reference a function that adds or updates a row in the above sample table. That way you can keep track of this information. If you use a custom portlet, remember to turn off your page links as appropriate so that there are no ways to escape using the custom portlet!
  It is probably best to do it on the login process and people may not log out properly, i.e., close the browser which means you do not get an accurate picture of log in times.
  You then can in your custom portlets/apps etc. do a check against this table to do simple things like 'Welcome back John' etc. etc.

• Regarding configuring Portal Application Login

  Hello,
  I have an application that contains 3 different Menus which
  have some Reports/Forms/Charts accessible through them.
  Right now I have developed all these under Portal30 schema.
  What is the best way now to make this a multi-user environment.
  Meaning - how can I create Roles/Users/User groups so that they
  login to my home page through Oracle Login Portlet and just
  access the application and leave.
  They should not go into developer mode and edit the pages/db
  objects etc.
  Most of the times it will be 2-3 different type of users who
  will access this entire system and each group will have access
  to one of 3 menus only.
  Thank you for your time for replying.
  Please reply to [email protected]
  Madhav

  what is the version for your browser?
  please confirm, in one tab of your IE, you go to the application and log on. Then open up another tab in the same IE window, and type the application URL. Now you are prompted for the login credentials again. Right?
  - Have you tried refresh on this new tab when it prompts for the credentials?
  - does it still ask you for the credentials to login?
  On clicking refresh/ relaod, it should recognize your login status.

• 9iAS Portal R2 Login Issue

  Hello guys,
  I installed 9iAS (9.0.2) Infra and Mid-tier on separate machines. Insatllation is successful. But the default passwords for the accounts PORTAL and PORTAL_ADMIN are not the same as the user names (violating the documentation). After so many tries I could log into the portal with the 9iAS instance admin password (password of user 'ias_admin'). So, the credentials were: portal/welcome1. But I don't find any link to the components development (Forms, Reports, Charts etc). Would any one please give me the solution? I will be ever grateful to you.

  Problem solved.
  Thanks.

• How can I do link forgot user id when login to portal.

  In portal when login user can click logon help if he forgot his password. forgot password link in portal logon page | SCN But what if user forgot his user id? How can I do link in whitch on users id mail send his user id.

  Websites remembering you and automatically log you in is stored in a cookie.
  *Create an allow Cookie Exception to keep such a cookie, especially for secure websites and if cookies expire when Firefox is closed.
  *Tools > Options > Privacy > Cookies: Exceptions
  In case you are using "Clear history when Firefox closes":
  *do not clear the Cookies
  *do not clear the Site Preferences
  *Tools > Options > Privacy > Firefox will: "Use custom settings for history": [X] "Clear history when Firefox closes" > Settings
  *https://support.mozilla.org/kb/Clear+Recent+History
  Note that clearing "Site Preferences" clears all exceptions for cookies, images, pop-up windows, software installation, and passwords.
  Clearing cookies will remove all specified (selected) cookies including cookies that have an allow exception and cookies from plugins.

• "In the Data Palette window, drag the Login to Portal portlet ..."?

  Hi;
  In http://e-docs.bea.com/workshop/docs81/doc/en/portal/samples/login.html?skipReload=true it says "In the Data Palette window, drag the Login to Portal portlet onto a placeholder on the page. "What does this mean and how do I do it?
  And the following line is "In the Property Editor window, set any relevant properties." - where is the property window and what properties do I want to set and to what value?
  thanks - dave

  Help please
  thanks - dave

• Portal Login Broke after Db Upgrade to 9.0.1.3

  Hi -- My portal web page login doesn't work after upgrading my portal database version from 8.1.7.1 to 9.0.1.3. All the scripts I ran (Note 159657.1 and Chap. 7 of 9i Database Migration Manual) ran ok. I also applied whatever patches/fixes required to get Oracle 9iAS 1.0.2.2.2 working with database version 9 per the certification matrix pages. I am still using Oracle 9iAS 1.0.2.2.2 on the middle tier and have only upgraded the database version. Also, I am not using LDAP for authentication.
  After the database upgrade, the portal web login page comes up fine, but after I execute a login attempt I get a "Page Not Found" in my browser. This error shows up in apache's error_log:
  [Mon Oct 7 03:54:41 2002] [error] mod_plsql: /pls/ssodad/portal30_sso.wwsso_app_admin.ls_login ORA-1403
  ORA-01403: no data found
  ORA-06512: at "PORTAL30_SSO.WWSSO_APP_ADMIN", line 391
  ORA-06512: at "PORTAL30_SSO.WWSSO_APP_ADMIN", line 669
  ORA-06510: PL/SQL: unhandled user-defined exception
  ORA-06512: at "PORTAL30_SSO.WWSSO_LS_PRIVATE", line 358
  ORA-06510: PL/SQL: unhandled user-defined exception
  ORA-06512: at line 8
  [Mon Oct 7 03:56:07 2002] [warn] mod_plsql: Stale Connection due to Oracle error 1400
  [Mon Oct 7 03:56:07 2002] [error] mod_plsql: /pls/ssodad/portal30_sso.wwsso_home.home ORA-1400
  ORA-01400: cannot insert NULL into ("PORTAL30_SSO"."WWCTX_SSO_SESSION$"."SUBSCRIBER_ID")
  ORA-06512: at "PORTAL30_SSO.WWCTX_SSO", line 2215
  ORA-06512: at "PORTAL30_SSO.WWCTX_SSO", line 1053
  ORA-06510: PL/SQL: unhandled user-defined exception
  ORA-06512: at "PORTAL30_SSO.WWCTX_SSO", line 1261
  ORA-06512: at "PORTAL30_SSO.WWCTX_API", line 179
  ORA-06512: at "PORTAL30_SSO.WWSEC_APP_PRIV", line 529
  ORA-06512: at "PORTAL30_SSO.WWSSO_HOME", line 322
  ORA-06512: at line 8
  Everything worked fine prior to the upgrade. There are no invalid objects causing this and I can log into the portal database fine through a sqlplus session. Does anyone know why portal login is broke after database upgrade? Has anyone upgraded their portal database versions in place with this issue afterwards?
  Thanks for any help anyone can offer...!
  Kate

  Hi Benjamin,
  Thanks for your reply. I already had a working 9iAS Release 1 with a 8.1.7.1.0 database. All I did was upgrade the database from 8i to 9i on the database server. I also applied the jdbc patch on the 9iAS app server so a connection with the 9i database could be established. As far as I know, there's no portal configuration assistant step here because I already had a complete fully-functioning portal install before the database upgrade to 9i. Is there something I'm missing about your suggestion?
  Thanks.

• Portal Login and DB security

  If a user logs in via portal, how is this (if at all) synched up with DB security? Will there be/can there be a way this is tied together so that if a user has security on row level of DB, this is known to Portal at login in time.

  Stella,
  I think the Portal itself doesn't care if you have DB access or not. A user mapped to a db user gets more(or less) privileges and can create reports and stuff(if create priv. is given).If you are a db user and a Portal user, Portal will also login to the database, when you login to the Portal. Simple test:select v$session before logging in, and then after. you will see the difference.
  If you want data access of Portal users to be governed by row-level security, there are
  2 methods:
  1. Create every Portal user as a DB user.
  The pros of this method are that if you implement VPD, the RDBMS will apply row-level
  security when the user logs in and accesses data. The problem is that you have two create two users using 2 separate UIs. We have to implement this solution for our Client and the # of users are in thousands. We are writing a custom portlet for this.
  2. There is a white paper which descibes using VPD for Portal-only users. It is fairly
  simple, but we haven't done a full test.
  hth,
  Sanjay