RFC Destination (ABAP) to use Single Sign on

How do I configure an RFC destination to take the current user-id and connect to the RFC destination system without prompting for logon? (I do not look for a dedicated user-id pwd option - must use the current user's id)
SNC is configured, and when I doubleclick in sap logon pad, I get connected to the corresponding SAP system without the login screen. Specifying the same parameters in the SNC def (SM59 - change destination) doesn't make any difference and returns an RFC error when trying to test.
I have checked SSO links (some) on SAP help site (Do I need to configure the system in SSO2?). From portal and all it works fine. Not sure what specific config is required to connect to ABAP RFC destination to use SSO (or SNC whatever it be) to not throw the login screen.
Any help?
Thanks,

i assume you are talking about to ABAP systems.
check this link, you have to set up trust relationship between the systems.
<a href="http://help.sap.com/saphelp_nw04s/helpdata/en/22/042671488911d189490000e829fbbd/frameset.htm">Trust Relationships Between SAP Systems</a>

Similar Messages

  • How to use Single sign On in CRM2007 ?

    Dear All,
    I have created a launch transaction for launching ransactions from R3 (using BOR).
    Now, the problem is when I click on the link in WebUI it gives me a popup for entering R3 User Id and only then it allows navigation to R3 transaction.
    How do I remove this popup ? I want that since user has already eneterd password for WebUI it should further not prompt him/her for the password. How to achieve this ?
    Can we use Single Sign on ? How ?
    Regards,
    Ashish

    Hi Stephen,
    I have done the settings as per the OSS notes. But, I am getting the following error while navigating to R3 from CRM (BOR Launch transaction):-
    - SSO logon not possible; browser logon ticket cannot be accepted
    - Choose "Logon" to continue A dialog box appears in which you can enter your user and password
    - No switch to HTTPS occurred, so it is not secure to send a password
    Also, after this I get the popup where I have to enter R3 User Id and Password and then it continues.
    But, the whole purpose was to remove this intermediate popup.
    What settings are missing / going wrong ?
    Regards,
    Ashish

  • How to use single sign on to authenticate

    How to use single sign on to use the MS-AD for authentication
    I have created an data source which points to the MS-AD and tested
    Next how do i add this to the policies.
    Thanks
    NS

    Hi,
    Please, specify the products and versions that you are using?
    thanks,
    Thiago Leoncio

  • Hi, I cant login to the facebook app on my iphone 5 ios 6.0.2.  I keep getting an error message saying 'There was an error logging in using single sign on' when im asked to log in again i get a 'session expired' message.  This only started happening yeste

    Hi, I cant login to the facebook app on my iphone 5 ios 6.0.2.  I keep getting an error message saying 'There was an error logging in using single sign on' when im asked to log in again i get a 'session expired' message.  This only started happening yesterday. Anyone else having this problem? Thanks.

    I am having the same problem and took the following steps to mitigate it to no avail.
    1. I deleted the Facebook app on the phone and turned off Facebook in the iPhone's system-wide settings.
    2. I re-enabled Facebook in the iPhone's system-wide settings and reinstalled the Facebook app and logged in again. It worked. For about an hour.
    3. I completely restored the phone to a previous backup (before the problems started) and reenabled Facebook .... reinstalled the app.... and now it works intermittenly. But it hasn't worked in about 12 hours now (just tried a few minutes ago).
    Please advise.

  • Integrating AS 10.1.2 and AS 10.1.3 to use Single Sign-on for BI Publisher

    Hi Everyone
    I was trying to make the following demonstration scenario on the AS and the facilities that can afforded by Oracle to our company:
    Note: I have just one machine for demonstration with Win2003 Enterprise
    First of all, I need to build a portal for my company, this portal will be published to the web through port 80 opened by Microsoft ISA Firewall (ISA installed on different machine):
    1- Portal should be integrated with oracle forms and reports with single sign-on
    2- AS, should have single sign-on authentication to work on port 80 only.
    3- Portal should be integrated with BI Publisher 10.3
    For the objectives mentioned above i have done the following:
    1- install AS 10.1.2 (infra and mid-tier) on the same machine with default installation options (http port 7777 for infra and port 80 for MT). (objective 1 = done)
    2- to make sso works on port 80, i have used webcache as reverse proxy for sso, and it's done but i have error (WWC-41400), but it doesn't affect login on portal, and that is my first problem.
    3- To have BI Publisher to work and authenticate users using single sign-on on port 80 (from outside), I had to install AS 10.1.3 (http on port 7779) on the same machine mentioned above, and then deploy BI Publisher on it, and that was ok, but problem is how to make use of single sign-on to authenticate people listed in oracle internet directory of INFRA installation mentioned above to use BI Publisher on port 80 only.
    So, could anyone please guide me in problem 2 and 3.
    Thanks in advance.
    Anas

    a couple of parameters not configured inside the Tomcat files. Now the SSO is working.
    SNC is not required for sso in bi 4.0
    http://wiki.sdn.sap.com/wiki/display/BOBJ/BI4IntegrationintotheSAPEntreprisePortal+7.0.x
    http://wiki.sdn.sap.com/wiki/display/BOBJ/SetupofSAPSSOServiceinSAPBOBI4.0+CMC
    Best Regards

  • Best practices followed in using Single Sign-On

    Hi Everybody,
    Now here is the toughest situation I have been facing on my project where I have to decide on how to use single sign-on(SSO) or whether SSO is the right solution for my problem.
    Here goes the problem :
    I have been developing a dashboard for my client using APEX 3.0.0.00.20 on Oracle Database 10g Enterprise Edition Release 10.2.0.2.0.
    Now the client do not want to create new logins for the end users on this new APEX application.
    After going through several threads in the forum about SSO I thought SSO might get me there but the confusion is how exactly SSO works for a situation like this.
    As per my understanding SSO would act like an intermediary staging place which would take the existing logins and associate with the APEX logins(please correct me if I am wrong).
    Also when I requested my DBA to install the SSO SDK as per the link http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html#INSTALL I got a reply saying SSO is deprecated and now it is mod_osso.
    I need your thoughts and opinion on what the best practices being followed in projects like these.
    Thanks in advance.
    Raj.

    Teku,
    * You install the SSO SDK into a schema in the Application Express database.
    * You register the APEX site as an Oracle AS SSO partner application using the facilities of the AS Login Server which produces some "keys".
    * You take those keys and plug them into a script that you run in the APEX SSO SDK schema.
    * You create an APEX application and set its authentication scheme to SSO using a wizard or the authentication scheme edit pages in the Application Builder. (From this point on, you can create or modify any number of applications in any workspace (in this APEX database) to use SSO just by using the authentication scheme wizards/edit pages in the Application Builder.)
    *You run the application and get redirected to the login server.
    *The login server authenticates you based on username/password in OID.
    *The login server then redirects back to the requested page in your application.
    Scott

  • Use single sign on for multiple portal domains

    Is it possible for a user to sign on once to a domain, and then be able to access other domains. What I'm trying to do is have one user registration page/login page, but use different portal server domains to present different sites, while at the same time having a type of single sign on, once a user has entered his credentials. Thus my registration process will create a new ldap user in an external directory, and i can then just point all the different domains to that External Ldap directory.

    I wouldn't recommend this because it would affect performance plus there are potential other issues like conflict that you would run into ..
    Everytime a user logs into a new session is created for him and this means a user might have multiple sessions on the server. The cookie that is also set is dependent on per portal domain so it might not work ..
    An alternative approach might be to have multiple roles and then customize the role for different views. You can modify the membership code in such a way that based on certain criteria you can assign him to a particular role, equivalent to your domain. However the problem could be if you want to provide delegated admin, currently the delegated admin is only at a domain level.

  • How to find out, which RFC-Destinations are in use?

    Hi community
    We have a huge list of RFC-Destinations in our productive system and I want to delete unneeded entries.
    Is there a report or a log, which shows, which RFC-Destinations were used, and when?
    Thanks in advance.
    Regards, Michael

    HI
    can you see the default trace in tcode SMGW, Be careful about deleting any system rfc.
    Read the documentation about default RFC, internal RFC, LDAP_RFC, transport RFC.
    I don't know other way to do that you need
    Regards
    William Neira

  • Getting an ntvdm error while using single sign-on

    HI!
    When I run GssExample from the tutorial, I get an ntvdm error in a requester, saying "Error while setting up environment for the application. Choose 'Close' to terminate the application.".
    Then I can klick on "Close" or "Ignore". Either way, it takes some seconds and then GssExample is working as expected. But this requester is of course annoying. I get it every time I start GssExample.
    This only happens with single sign-on (useTicketCache=true).
    Using JDK 1.4.0 on Windows 2000 SP2.
    Any ideas?
    Thanks!
    Regards,
    Thomas

    OK.. the error goes away when using jdk1.4.1 but still the system is unable to get the user credentials from the cache :-(

  • Outlook Email Integration proxy issue while using Single Sign-On

    Hi All,
    This is my first post on the forum, so I'd like to say hello :).
    We are using the OEI to attach some e-mails. Unfortunately the Single Sign-On option was not available for us.
    Now when SSO supports POST profile it seems like we should be fine. Unfortunately when I try to log in OEI is asking me about proxy credentials - login and password.
    I would like to understand on which side GSK or Oracle we need to configure the plug-in and how we can do this. Of course in order to set up proxy.
    Thanks a lot, Szymon

    I see only two possibilities -
    Either update all your LDAP user ids to Upper case
    Or Update all your CE user id's and MDM user id's to Lower case.
    Thanks,
    Shambhu.

  • Problem Using Single Sign on with Deployed Applications

    I have deployed some appliciations to a standalone OC4J. I am using Identity Management for authentication and it works unless I check the Single Sign on box here:
    OC4J
    Administration ->
    Security Provider->
    Enable SSO Authentication
    I receive this error:
    499 Oracle SSO
    Oracle SSO
    (all my products are version 10.1.1.3)
    I guess I should run ssoreg and osso1013. I can't find the latter.
    I appreciate any comment.
    Regards,
    Farbod

    Dear John,
    from my point of view, we have to seperate the problem in two parts:
    1.) The automatic logon to the struts application via SSO.
    2.) The session sharing via some J2EE mechanism.
    For the SSO (1.) You have to logged on to the portal - with a cookie on the clientside. This cookie can be used for SSO by Your Struts application as long as You share the same session (same browserinstance). This is not difficult examples are available.
    The sessionsharing between a J2EE aap - Struts and an iView is an intersting point. I hope I can get some time to try this out. One trick which is not too clever is to store the session data serialized in a database and privide the sessionid in the url which calls the iView or Struts. Sessionsharing between iViews is no problem as long as You use the HTTPSession.
    Walter

  • How to use single sign-on  for BCC and Experience Manager

    Does anyone have experience in implementing single-sign-on for BCC and Endeca Experience manager for business users.

    With the older versions of Endeca commerce stack there is no OOTB support for this. However with Oracle Commerce 11, SSO with BCC and Experience Manager are out of the box. Oracle Commerce 11 is released today.

  • Session management in Info View with two different logins using single sign

    There is a form with 2 user logins UserA and User B to redirect to infoview with sso in my application. I am able to go to each of the Infoview pages successfully but have the following problem.
    User A logs in and infoview opens in a new IE window and sees his/her folders based on permissions and is able to do his/her work for the first time.
    User B logs in andand infoview opens in a new IE window sees his/her folders based on permissions and is able to do his/her work for the first time.
    <b>After a while when User A tries to access the InfoView in the previously opened IE Window, he/she gets an error message. An error has occurred: The object with ID 2519 does not exist in the CMS or you don't have the right to access it.
    User B is able to continue his/her work. Who ever logs in the last, he/she is able to continue his/her work but the other one gets an error.</b>
    <b>Please let me know on how to address this issue . I added logonToken and tried everything at my hand but no success. Is this session controlled by business objects or by the jsp page. What more changes are required for my jsp page to fix the error. Attached below are the form and the applogon.jsp snippets.</b>
    <B> applogon.jsp</B>
        IEnterpriseSession enterpriseSession = null;
        Exception failure = null;
        boolean loggedIn = true;
         String redirectURL = null;
         // If no session already exists, logon using the specified parameters.
        if (enterpriseSession == null){
            try{
                // Attempt logon. Create an Enterprise session manager object.
                ISessionMgr sm = CrystalEnterprise.getSessionMgr();
                // Log on to BusinessObjects Enterprise
                enterpriseSession = sm.logon(username, password, "cms", "secEnterprise");
            }catch (Exception error){
                loggedIn = false;
                failure = error;
            if (!loggedIn){
                // If the login failed, redirect the user to the start page.
                return;
            }else{
                // Store the IEnterpriseSession object in the session.
                session.setAttribute("EnterpriseSession", enterpriseSession);
                // Create the IInfoStore object.
                IInfoStore iStore = (IInfoStore) enterpriseSession.getService("InfoStore");
                // Store the IInfoStore object in the session using the helper functions.
                session.setAttribute("InfoStore", iStore);
                // Store the CMS name for later use.
                session.setAttribute("CMS", "CMS");
                   // Create the IReportSourceFactory object.
                   IReportAppFactory reportAppFactory =(IReportAppFactory)enterpriseSession.getService("RASReportService");
                   // Store the IReportSourceFactory object in the session using the helper functions.
                   session.setAttribute("ReportAppFactory", reportAppFactory);
                // Retrieve the logon token manager.
                ILogonTokenMgr logonTokenMgr = enterpriseSession.getLogonTokenMgr();
                   String logonToken = logonTokenMgr.createLogonToken("", 60, 100);
                   String infoViewURL = null;
                   String tokenParam = null;
                   infoViewURL = "/businessobjects/enterprise115/desktoplaunch/InfoView/logon/logon.do";
                   tokenParam = "token=" + logonToken;
                   redirectURL = infoViewURL + "?" + tokenParam;
                // Retrieve a logon token and store it in the user's cookie
                // file for use later.
                Cookie cookie = new Cookie("LogonToken", logonTokenMgr.createLogonToken("", 60, 100));
                response.addCookie(cookie);
                // Store the logon token for later use.
                session.setAttribute("token", enterpriseSession.getLogonTokenMgr().getDefaultToken());
         // Redirect the user to the relevant tutorial page.
         out.println("You have been logged on to Enterprise.");
         response.sendRedirect (redirectURL);
    Thank You for your help

    // Retrieve the parameters that the user entered into the logon fields.
    <b> user name and password come from here from the above html form into the jsp here. Ted Is this what you are asking for where does the username and password come from
        String username = request.getParameter("user");
        String password = request.getParameter("pass");
    </b>
        IEnterpriseSession enterpriseSession = null;
        Exception failure = null;
        boolean loggedIn = true;
         String redirectURL = null;
         ISessionMgr sessionMgr = null;
         // If no session already exists, logon using the specified parameters.
        if (enterpriseSession == null){
            try{
                // Attempt logon. Create an Enterprise session manager object.
                sessionMgr = CrystalEnterprise.getSessionMgr();
                // Log on to BusinessObjects Enterprise
                enterpriseSession = sessionMgr.logon(username, password, "appserver.abc.com", "secEnterprise");
                   System.out.println("line61");
            }catch (Exception error){
                loggedIn = false;
                failure = error;
            if (!loggedIn){
                // If the login failed, redirect the user to the start page.
                return;
            }else{ this code is in my first post

  • Using LDAP and Single Sign On

    Hello
    I have many applications that log into a single directory using LDAP. I want to be able to use single sign on in Portal to this applications. Because the portal users and the applications users are the same is there a way to pass this information from portal to the applications directly without asking it to the user?.
    Thanks for any help

    How do the applications currently authenticate?
    What you really want is to have all the applications participate in Single Sign-On.
    There are 3 ways to do it...
    1. make the application an SSO partner application
    2. configure the application as an SSO external application
    3. incorporate the application into a 3rd party SSO solution with Oracle Single Sign-On as a participating app.

  • Single sign on concept

    Hi Friends..
    I saw one article in website, "SSO from ABAP to Portal and Vice Versa"
    until now I thought SSO is only available for portal to abap.
    so if anybody have idea about abap to portal single sign on concept let me explain.
    What is the use..where it is used?
    Thanks
    Gowrishankar

    Hi Mich
    Please look the below document.
    https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/20913057-efe2-2b10-2391-949c27ac910d
    In that document he mentioned SSO is used for portal to SAP(ABAP) and Vice versa.
    what he point out here..vice versa means just carry the data from SAP(ABAP) to Portal or SSO in SAP (ABAP) side..
    Thanks
    Gowrishankar

Maybe you are looking for

  • Can I include unstructured files in the general rule for a book ?

    Hi, I have a series of books with lots of generated files. I want to keep those as they are, but still add structure to the book and the content chapters. How do I write a general rule for the book element that allows an unstructured component - i.e.

  • PR/PO Aging Report

    Other than this---> BBP_BW_SC2 what other TCODES are available to view Aging SHC that would display the ff: PurchGrp Plant Plant Desc PR# Material Grp Desc PR Amount Date created/approved SHC# PO# PO date *PO amount*

  • IPhoto '11 Major Problems

    Hello, There are major problems in the new iPhoto '11 and I am wondering if anyone is having the problems listed below. Every time I open iPhoto 11 it wants to upgrade the photo library. I let it, check around iPhoto and look at pictures, and quit iP

  • Missing APPS...Please HELP

    Today my phone froze. I then turned if off. Once it tuned it back on several of my apps disappeared,including some that are preloaded on the phone; pictures,camera,settings, safari.... Does any one have any tips on what I can do. I don't have my sett

  • ECC 6.0 and using Adobe forms in Output

    Hello,   We're moving to ECC 6.0.   Is there a driver program for Invoicing that would allow us to use adobe forms   as output from within S/D e.g. (from txn VF03 for a invoice). Scenario:   We have a custom SAPScript invoice that we would like to co