SSO to a Siteminder application

Hi,
I need to integrate a web application into the portal that uses siteminder for authentication. I have looked through all the available details and have not been able to find a solution to this problem.
There is no possibility of either changing the external application or siteminder.
Your help would be greatly appreciated.
Regards,
Vibhu

Vibhu,
How is your portal authentication done? Does that also uses SSO (Netegrity)?  One of my implementation I did use Netegrity to setup SSO (single sign on)for Portal. Authentication was done by Microsoft ADS.
-NE
www.sapecc.com

Similar Messages

  • SSO FOR NON SAP APPLICATIONS

    SSO for non sap applications in EP on which siteminder sso is integrated
    Posted: Aug 28, 2006 7:09 AM        Reply      E-mail this post 
    Hi ,
    we have implemented Siteminder on SAP PORTAL 6 SP16 for authentication.I would like to integrate non sap application in Portal.I could not find any documentaion for setting up non sap application's in portal on which siteminder external authentication is implemented.
    can anybody help for getting step by step document.
    diff rewards to be given

    Hi,
    if you have access to service.sap.com via S-User, you can download "SAP Enterprise Portal Security Guide" in the portal section. It has dedicated descriptions about SSO-Settings, also about netegrity.
    You can also search help.sap.com about "SSO" which gives you overview descriptions.
    On SAP Service Net, there is also an pdf "Integrating Security functions" in the Netweaver 2004s Portal section, where the description of the Java API for the PDK is included. This is very helpfull for coding.

  • SSO to non SAP Application (ASP)

    We have followed the sample steps for SSO to non SAP Applications in ASP, but we're receiving the following results:
    Start SSO2TICKET main
    Version: SAPSSOEXT 2
    Ticket verifying failed. Return codes error=1 and ssf error=0
    Does anyone know what the problem is and how to solve it?
    Thanks!

    hi ive,
    u cn refer to this links.......these r  some of    the blogs that u cn go throu.its useful.
    <b>User Mapping-based Single Sign On,
    SAP Logon Ticket-based Single Sign-On>
    regards
    bhargava

  • SSO to non SAP Application using SAP Logon Ticket

    Hi Experts,
    I Have EP 7 SP 15 using SPNego Wizard to SSO with Active Directory and SSO between EP and ECC using SAP Certificates.
    Now I have a demand to SSO some JAVA based applications (non SAP) to my portal using the SAP Logon Ticket.
    I Have followed some blogs that directed me to use SAPSSOEXT (some libs) to read the MYSAPSSO2 cookie. The problem is that I didn't found this cookie, I even executed the command javascript:document to look for this cookie but the browser just show me the JSESSIONID info.
    Does anybody knows where I can find this cookie or if there's a better way to set up this SSO? It´s necessary to say that I cannot SSO these application to the kerberos protocol because some security reasons on my company.
    Thanks
    Armando

    Hi,
    I dont have much info related but i can giv u hint
    refer OSS Notes 442401 and 723896.
    When using SAP logon tickets for non-SAP applications, two different implementation options are available. The difference lies in where the ticket verification takes place.
    In the first case,  the SAP logon ticket is submitted to the web server filter located on the web server. The web server filter verifies the portal serveru2019s public key
    certificate using its local Personal Security Environment (PSE) and then populates the HTTP header field with the user ID for SSO to the non-sap web application.
    In the second case,  the SAP logon ticket is sent to the non-SAP application, which then verifies it using the ticket verification DLL and submits the user ID to the application for SSO.
    You can refer following link :-
    http://help.sap.com/saphelp_nw70/helpdata/EN/89/6eb8deaf2f11d5993700508b6b8b11/frameset.htm
    user authentication and SSO
    http://help.sap.com/saphelp_nw70/helpdata/EN/8f/ae29411ab3db2be10000000a1550b0/frameset.htm
    Authentication Using a Directory with SSO Integration Using Logon Tickets
    http://help.sap.com/saphelp_nw70/helpdata/EN/f8/3b514ca29011d5bdeb006094191908/frameset.htm
    SSO
    SAP Logon Ticket-based Single Sign-On
    http://help.sap.com/saphelp_nwce10/helpdata/en/45/b6af743753003ae10000000a11466f/frameset.htm

  • Unable to SSO to Campus Solution Application from Enterprise Portal

    Hi all,
    i am using Peoplesoft HRMS & Campus Solution 9.0 on machine (cms1) and Peoplesoft Enterprise Portal 9.0 on machine (cms2). the peopletools version on both is 8.49.
    The database name for campus solution is HRCS9 and for portal is EPORTAL.
    after configuring nodes on both the databases when i try to SSO to my CS application from portal error screen appears "invalid User ID or Pasword"
    the logs from both the application servers are as follows:
    Portal Application Server log:
    PSADMIN.5032 (0) [11/10/08 19:23:16](0) Begin boot attempt on domain EPORTAL
    PSWATCHSRV.5380 (0) [11/10/08 19:23:25] Checking process status every 120 seconds
    PSWATCHSRV.5380 (0) [11/10/08 19:23:25] Server started
    PSAPPSRV.5392 (0) [11/10/08 19:23:31](0) PeopleTools Release 8.49 (WinX86) starting
    PSAPPSRV.5392 (0) [11/10/08 19:23:31](0) Cache Directory being used: C:\PA8.49\appserv\EPORTAL\CACHE\PSAPPSRV_2\
    PSAPPSRV.5392 (0) [11/10/08 19:23:36](3) (PublishSubscribe): PubSubSystem::InitializeServer(): Initialization succeeded.
    PSAPPSRV.5392 (0) [11/10/08 19:23:36](0) Server started
    PSAPPSRV.5456 (0) [11/10/08 19:23:36](0) PeopleTools Release 8.49 (WinX86) starting
    PSAPPSRV.5456 (0) [11/10/08 19:23:36](0) Cache Directory being used: C:\PA8.49\appserv\EPORTAL\CACHE\PSAPPSRV_1\
    PSAPPSRV.5456 (0) [11/10/08 19:23:37](3) (PublishSubscribe): PubSubSystem::InitializeServer(): Initialization succeeded.
    PSAPPSRV.5456 (0) [11/10/08 19:23:37](0) Server started
    PSSAMSRV.5500 (0) [11/10/08 19:23:37](0) PeopleTools Release 8.49 (WinX86) starting
    PSSAMSRV.5500 (0) [11/10/08 19:23:37](0) Cache Directory being used: C:\PA8.49\appserv\EPORTAL\CACHE\PSSAMSRV_100\
    PSSAMSRV.5500 (0) [11/10/08 19:23:37](0) Server started
    PSDBGSRV.5660 (0) [11/10/08 19:23:41](0) PeopleTools Release 8.49 (WinX86) starting
    PSDBGSRV.5660 (0) [11/10/08 19:23:41](0) Cache Directory being used: C:\PA8.49\appserv\EPORTAL\CACHE\PSDBGSRV_1\
    PSDBGSRV.5660 (0) [11/10/08 19:23:41](0) Server started
    PSADMIN.5032 (0) [11/10/08 19:23:43](0) End boot attempt on domain EPORTAL
    PSAPPSRV.5392 (1) [11/10/08 19:26:41 GetCertificate](3) Returning context. ID=PTWEBSERVER, Lang=ENG, UStreamId=192641_5392.1, Token=PSFT_PA/2008-11-10-11.26.41.999750/PTWEBSERVER/ENG qQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4Adwg4AC4AMQAwABQbbEPz+6zLyPQKGNiShI90iiKus2kAAAAFAFNkYXRhXXicLYpNDkAwEEZfEUtLtyDV1N+SpOykQVg6hss5nNGYl7z5MvPdQBJHSsl+IsLknp0Tx8gmXjmCU8fCTOblOknjwjNgDVroKKiEz/rPJYZGbEPuAy21/HkBHRYNEw==
    PSAPPSRV.5392 (3) [11/10/08 19:26:45 GetCertificate](3) Returning context. ID=PTWEBSERVER, Lang=ENG, UStreamId=192645_5392.3, Token=PSFT_PA/2008-11-10-11.26.45.999344/PTWEBSERVER/ENG qAAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4Adwg4AC4AMQAwABTwJg4srjPRJcaB+xCKfDz62SDcVWgAAAAFAFNkYXRhXHicLYpLDkBAEAXLJ5aWbkF8hrAkwU4mCEvHcDmH80x0JdX9XvoGwsD3PO3Hx01i2TkZGdjklcM5GlmYia3aSR8Xlh5TkouWlEJ8zv87o6SRDbXcOSolAy8dRQ0W
    PSAPPSRV.5392 (5) [11/10/08 19:26:49 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=192649_5392.5, Token=PSFT_PA/2008-11-10-11.26.50.000094/PS/ENG ngAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSSKFTlDSWX4An/BOAT06JahrlSGl4AAAAFAFNkYXRhUnicLYoxCoAwFENfa3H0JpZaqtTRQd2koLuTt/Rw/l/MgySEPIBrrDGSr6XKFU7alYOdTvvGxU1hIUWCkOkZBPXwd09kEh9l8fWlzCT4AAJnCh8=
    PSAPPSRV.5392 (31) [11/10/08 19:29:31 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=192931_5392.31, Token=PSFT_PA/2008-11-10-11.29.31.999829/PS/ENG mwAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABTzL4/qlLgyMb8tEqL+ecIQxTr7mlsAAAAFAFNkYXRhT3icLYgxDoAgEAQHJJb+RINgAaWF2hkS7a38JY/zuLiT7E72BVxnjZGtFo0rXPQbJwdD852bh8LKEvBCYmQWWvvfJwJZOqpnJenHBwPkCkI=
    PSAPPSRV.5392 (101) [11/10/08 19:32:55 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=193255_5392.101, Token=PSFT_PA/2008-11-10-11.32.55.999563/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSF5U6f9jcl+IXjYPYkFDP4uPL3M10AAAAFAFNkYXRhUXicLYgxDoAgEAQHJJT+RIIgRksLtTMk2lv5Sx/nQdxJdif7AKbRSsm+mhqTObErBztt8Y2Lm8zCEPDCREcvlPa/OyJBOgmOuZIY5eUDA7MKPQ==
    PSAPPSRV.5392 (127) [11/10/08 19:34:00 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=193400_5392.127, Token=PSFT_PA/2008-11-10-11.34.00.999829/PS/ENG nAAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABQFx3N1TnUPWz51nCxa1i9Q/xoGaFwAAAAFAFNkYXRhUHicLYkxDoAgEAQHJJb+RIJIAaWF2hkS7a38pY/zjriTzG6yD+A6a4z0a2lxlZN+5WBn0L1xcVNZSJEgZEYmQR3+7ZlJYv09pZGJYj4DQAo6
    PSAPPSRV.5392 (134) [11/10/08 19:34:26 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=193426_5392.134, Token=PSFT_PA/2008-11-10-11.34.26.999641/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABR/ru0ssiOhk5UPzOBClNrqwWWAw10AAAAFAFNkYXRhUXicLYhBCoAgFESfJi27SaEmUssW1S6E2rfqlh7OrzQP3gzzAabTSklnTYtJ3PQ7FydD3QcPL4mN4LHCwogTqu2/J2aC2BPFayPK46AAA7AKOg==
    PSAPPSRV.5392 (141) [11/10/08 19:34:58 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICScript](3) New authentication token detected from node PSFT_HR/2008-11-10-22.35.47.000234, no change needed for current session.
    PSAPPSRV.5392 (141) [11/10/08 19:34:58 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICScript](3) Returning context. ID=PS, Lang=ENG, UStreamId=193458_5392.141, Token=PSFT_HR/2008-11-10-22.35.47.000234/PS/ENG nAAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABRxo0+U3IHEtF9OLFkSVGTDW+/Im1wAAAAFAFNkYXRhUHicLYhLDkBAEETfjImlm5A2WriAz0oEeyu3dDg9E/WSV5V6gFB456xfT07YOSknNhaqtGcublYONCLGSE1rJMvvho7erAxmyUT7FD4EiAop
    PSAPPSRV.5392 (182) [11/10/08 19:45:06 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (182) [11/10/08 19:45:06 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (183) [11/10/08 19:45:12 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICScript](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (183) [11/10/08 19:45:12 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICScript](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (184) [11/10/08 19:45:16 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICScript](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (184) [11/10/08 19:45:16 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICScript](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (185) [11/10/08 19:45:16 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (185) [11/10/08 19:45:16 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (186) [11/10/08 19:45:19 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (186) [11/10/08 19:45:19 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (187) [11/10/08 19:45:21 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (187) [11/10/08 19:45:21 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (188) [11/10/08 19:45:23 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (188) [11/10/08 19:45:23 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (189) [11/10/08 19:45:26 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (189) [11/10/08 19:45:26 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (190) [11/10/08 19:45:29 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (190) [11/10/08 19:45:29 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (191) [11/10/08 19:45:30 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (191) [11/10/08 19:45:30 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (192) [11/10/08 19:45:32 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (192) [11/10/08 19:45:32 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (193) [11/10/08 19:45:35 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) PeopleSoft Token authentication failed: invalid token signature: PS@SAJJAD
    PSAPPSRV.5392 (193) [11/10/08 19:45:35 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICPanel](3) SwitchUser frame received invalid token, ignoring it. CtxUser=PS/ENG. Token: PSFT_HR/2008-11-10-22.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5392 (195) [11/10/08 19:46:11 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=194611_5392.195, Token=PSFT_PA/2008-11-10-11.46.10.999875/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABS0qpyQho8sgQmnp1cRCH5eiqUov10AAAAFAFNkYXRhUXicLYhBDkAwFERfq7F0E01JUUsL7KQJeyu3dDj/N+YlMy/zAK6yxsi+lhKXOalXDnYa9Y2Lm8xC7AlCoqUTtMPvnsgorY9nLiQmBvgAA6cKPw==
    PSAPPSRV.5392 (216) [11/10/08 20:19:47 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICScript](3) New authentication token detected from node PSFT_HR/2008-11-10-23.15.45.000015, no change needed for current session.
    PSAPPSRV.5392 (216) [11/10/08 20:19:47 PS@SAJJAD (NETSCAPE 7.0; WINXP) ICScript](3) Returning context. ID=PS, Lang=ENG, UStreamId=201947_5392.216, Token=PSFT_HR/2008-11-10-23.15.45.000015/PS/ENG mQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABQMZZkf0TkEbWOuy2hvwAqxOdvmd1kAAAAFAFNkYXRhTXicS2VgYGBhZmJkBNJ7mBjAgCWAIZiBzZXBj8GdgQ/EdmMIYYhn8GAIYjAxYjAAQgsGXQZDIASRBlC2HhCbAkkTMGkAhSAxBgAEPAoj
    PSWATCHSRV.5380 (0) [11/10/08 20:23:11] Shutting down
    PSADMIN.2052 (0) [11/10/08 20:23:20](0) Begin boot attempt on domain EPORTAL
    PSWATCHSRV.4188 (0) [11/10/08 20:23:29] Checking process status every 120 seconds
    PSWATCHSRV.4188 (0) [11/10/08 20:23:29] Server started
    PSAPPSRV.4572 (0) [11/10/08 20:23:29](0) PeopleTools Release 8.49 (WinX86) starting
    PSAPPSRV.4572 (0) [11/10/08 20:23:29](0) Cache Directory being used: C:\PA8.49\appserv\EPORTAL\CACHE\PSAPPSRV_2\
    PSAPPSRV.4572 (0) [11/10/08 20:23:30](3) (PublishSubscribe): PubSubSystem::InitializeServer(): Initialization succeeded.
    PSAPPSRV.4572 (0) [11/10/08 20:23:30](0) Server started
    PSAPPSRV.2356 (0) [11/10/08 20:23:30](0) PeopleTools Release 8.49 (WinX86) starting
    PSAPPSRV.2356 (0) [11/10/08 20:23:30](0) Cache Directory being used: C:\PA8.49\appserv\EPORTAL\CACHE\PSAPPSRV_1\
    PSAPPSRV.2356 (0) [11/10/08 20:23:31](3) (PublishSubscribe): PubSubSystem::InitializeServer(): Initialization succeeded.
    PSAPPSRV.2356 (0) [11/10/08 20:23:31](0) Server started
    PSSAMSRV.5632 (0) [11/10/08 20:23:31](0) PeopleTools Release 8.49 (WinX86) starting
    PSSAMSRV.5632 (0) [11/10/08 20:23:31](0) Cache Directory being used: C:\PA8.49\appserv\EPORTAL\CACHE\PSSAMSRV_100\
    PSSAMSRV.5632 (0) [11/10/08 20:23:32](0) Server started
    PSDBGSRV.5360 (0) [11/10/08 20:23:36](0) PeopleTools Release 8.49 (WinX86) starting
    PSDBGSRV.5360 (0) [11/10/08 20:23:36](0) Cache Directory being used: C:\PA8.49\appserv\EPORTAL\CACHE\PSDBGSRV_1\
    PSDBGSRV.5360 (0) [11/10/08 20:23:36](0) Server started
    PSADMIN.2052 (0) [11/10/08 20:23:38](0) End boot attempt on domain EPORTAL
    PSAPPSRV.2356 (1) [11/10/08 20:25:02 GetCertificate](3) Returning context. ID=PTWEBSERVER, Lang=ENG, UStreamId=202502_2356.1, Token=PSFT_PA/2008-11-10-12.25.02.000187/PTWEBSERVER/ENG pwAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4Adwg4AC4AMQAwABQQsYcH3IQfKnnerJ5hIMFKc0iMlmcAAAAFAFNkYXRhW3icHYpLDkBAEAXLJ5aWbkGGELYkw04mCEvHcDmH83RXul6n8x4gTeIoUr4xNkXg4MIzscsbpznzrCzkQd9ZjZvASNvgxEBJLX47c0Ol7WRntzNqNXv4ABuyDPk=
    PSAPPSRV.2356 (3) [11/10/08 20:25:03 GetCertificate](3) Returning context. ID=PTWEBSERVER, Lang=ENG, UStreamId=202503_2356.3, Token=PSFT_PA/2008-11-10-12.25.03.000141/PTWEBSERVER/ENG pwAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4Adwg4AC4AMQAwABToF9dLt4Qjr/+VEATVk6CVD4LgFmcAAAAFAFNkYXRhW3icHcpBDkAwEIXhX4mlpVuQohJbkrKTBmHpGC7ncJ7Oy/smmcwDZKlJEu3XEKcMHFx4Jna5cUZzz8pCEXSd9XETGHEtVhmoaJRfG22p1V5auuifBqfyARudDPA=
    PSAPPSRV.2356 (5) [11/10/08 20:25:06 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=202506_2356.5, Token=PSFT_PA/2008-11-10-12.25.06.000609/PS/ENG mwAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABRQhF048bQ+Z5DECgIB3RE4d+MoGVsAAAAFAFNkYXRhT3icHYYxCoAwEAQnMVj6E8MZVLS0iHYS0N7KX/o4L7fDzu4LhMY7p/t5LKFw0WZODrr6d24eChtjQpSFnkGpFnMiaie1MJvFnrDCDwKACiI=
    Campus Solution Application server log:
    PSADMIN.8716 (0) [11/10/08 18:30:29](0) Begin boot attempt on domain HRCS9
    PSWATCHSRV.8500 (0) [11/10/08 18:30:37] Checking process status every 120 seconds
    PSWATCHSRV.8500 (0) [11/10/08 18:30:37] Server started
    PSAPPSRV.8136 (0) [11/10/08 18:30:38](0) PeopleTools Release 8.49 (WinX86) starting
    PSAPPSRV.8136 (0) [11/10/08 18:30:38](0) Cache Directory being used: C:\PT8.49\appserv\HRCS9\CACHE\PSAPPSRV_2\
    PSAPPSRV.8136 (0) [11/10/08 18:30:38](3) (PublishSubscribe): PubSubSystem::InitializeServer(): Initialization succeeded.
    PSAPPSRV.8136 (0) [11/10/08 18:30:38](0) Server started
    PSAPPSRV.5584 (0) [11/10/08 18:30:39](0) PeopleTools Release 8.49 (WinX86) starting
    PSAPPSRV.5584 (0) [11/10/08 18:30:39](0) Cache Directory being used: C:\PT8.49\appserv\HRCS9\CACHE\PSAPPSRV_1\
    PSAPPSRV.5584 (0) [11/10/08 18:30:39](3) (PublishSubscribe): PubSubSystem::InitializeServer(): Initialization succeeded.
    PSAPPSRV.5584 (0) [11/10/08 18:30:39](0) Server started
    PSSAMSRV.7824 (0) [11/10/08 18:30:40](0) PeopleTools Release 8.49 (WinX86) starting
    PSSAMSRV.7824 (0) [11/10/08 18:30:40](0) Cache Directory being used: C:\PT8.49\appserv\HRCS9\CACHE\PSSAMSRV_100\
    PSSAMSRV.7824 (0) [11/10/08 18:30:40](0) Server started
    PSDBGSRV.5264 (0) [11/10/08 18:30:43](0) PeopleTools Release 8.49 (WinX86) starting
    PSDBGSRV.5264 (0) [11/10/08 18:30:43](0) Cache Directory being used: C:\PT8.49\appserv\HRCS9\CACHE\PSDBGSRV_1\
    PSDBGSRV.5264 (0) [11/10/08 18:30:43](0) Server started
    PSADMIN.8716 (0) [11/10/08 18:30:45](0) End boot attempt on domain HRCS9
    PSAPPSRV.5584 (1) [11/10/08 18:31:39 GetCertificate](3) Error Setting Sign on PeopleCode context for User QEDMO@TRAVELPC7: Sign on PeopleCode was not executed
    PSAPPSRV.5584 (1) [11/10/08 18:31:39 GetCertificate](3) PeopleSoft ID and Password authentication failed. Invalid user QEDMO@TRAVELPC7.
    PSAPPSRV.5584 (1) [11/10/08 18:31:39 GetCertificate](1) (NET.502): QEDMO@TRAVELPC7 is an Invalid User ID, or you typed the wrong password. User ID and Password are required and case-sensitive. Make sure you're typing in the correct upper and lower case.
    PSAPPSRV.5584 (1) [11/10/08 18:31:39 GetCertificate](1) (NET.346): Failed to execute GetCertificate request
    PSAPPSRV.5584 (2) [11/10/08 18:35:45 GetCertificate](3) Error Setting Sign on PeopleCode context for User QEDMO@TRAVELPC7: Sign on PeopleCode was not executed
    PSAPPSRV.5584 (2) [11/10/08 18:35:45 GetCertificate](3) PeopleSoft ID and Password authentication failed. Invalid user QEDMO@TRAVELPC7.
    PSAPPSRV.5584 (2) [11/10/08 18:35:45 GetCertificate](1) (NET.502): QEDMO@TRAVELPC7 is an Invalid User ID, or you typed the wrong password. User ID and Password are required and case-sensitive. Make sure you're typing in the correct upper and lower case.
    PSAPPSRV.5584 (2) [11/10/08 18:35:45 GetCertificate](1) (NET.346): Failed to execute GetCertificate request
    PSAPPSRV.5584 (3) [11/10/08 18:35:47 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=183547_5584.3, Token=PSFT_HR/2008-11-10-10.35.47.000234/PS/ENG nAAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABRxo0+U3IHEtF9OLFkSVGTDW+/Im1wAAAAFAFNkYXRhUHicLYhLDkBAEETfjImlm5A2WriAz0oEeyu3dDg9E/WSV5V6gFB456xfT07YOSknNhaqtGcublYONCLGSE1rJMvvho7erAxmyUT7FD4EiAop
    PSAPPSRV.5584 (8) [11/10/08 18:35:49 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=183549_5584.8, Token=PSFT_HR/2008-11-10-10.35.49.000671/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABR0fEtz3pni7zhAyAK80s6LQnHBvV0AAAAFAFNkYXRhUXicLYlNDkAwGERfq7F0E/KhigP4WYlgb+WWDudrY17yZpJ5AJdZY7RfS4rbOcknNhaKuGcublYOfIMoAyW1Ei2/K1o6tWdUSyLQ68cHBNEKMA==
    PSAPPSRV.5584 (20) [11/10/08 18:36:06 GetCertificate](3) Error Setting Sign on PeopleCode context for User QEDMO@TRAVELPC7: Sign on PeopleCode was not executed
    PSAPPSRV.5584 (20) [11/10/08 18:36:06 GetCertificate](3) PeopleSoft ID and Password authentication failed. Invalid user QEDMO@TRAVELPC7.
    PSAPPSRV.5584 (20) [11/10/08 18:36:06 GetCertificate](1) (NET.502): QEDMO@TRAVELPC7 is an Invalid User ID, or you typed the wrong password. User ID and Password are required and case-sensitive. Make sure you're typing in the correct upper and lower case.
    PSAPPSRV.5584 (20) [11/10/08 18:36:06 GetCertificate](1) (NET.346): Failed to execute GetCertificate request
    PSAPPSRV.5584 (22) [11/10/08 18:36:12 GetCertificate](3) PeopleSoft ID and Password authentication failed. Invalid password for user PS@TRAVELPC7.
    PSAPPSRV.5584 (22) [11/10/08 18:36:12 GetCertificate](1) (NET.502): PS@TRAVELPC7 is an Invalid User ID, or you typed the wrong password. User ID and Password are required and case-sensitive. Make sure you're typing in the correct upper and lower case.
    PSAPPSRV.5584 (22) [11/10/08 18:36:12 GetCertificate](1) (NET.346): Failed to execute GetCertificate request
    PSAPPSRV.5584 (24) [11/10/08 18:36:18 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=183618_5584.24, Token=PSFT_HR/2008-11-10-10.36.17.999828/PS/ENG nAAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABRGfL1yB177ZbI+Ypj9oXv+BvImz1wAAAAFAFNkYXRhUHicLYZNDkAwGERfq7F0E9IfoQ7gZyVC91Zu6XC+NuZl3swDmEorJftqSszBRT2zs9Lkv5C42TjpPVaItDgh2/7uCAxixyieChEv5QMFwApL
    PSAPPSRV.5584 (31) [11/10/08 18:36:33 GetCertificate](3) Error Setting Sign on PeopleCode context for User QEDMO@TRAVELPC7: Sign on PeopleCode was not executed
    PSAPPSRV.5584 (31) [11/10/08 18:36:33 GetCertificate](3) PeopleSoft ID and Password authentication failed. Invalid user QEDMO@TRAVELPC7.
    PSAPPSRV.5584 (31) [11/10/08 18:36:33 GetCertificate](1) (NET.502): QEDMO@TRAVELPC7 is an Invalid User ID, or you typed the wrong password. User ID and Password are required and case-sensitive. Make sure you're typing in the correct upper and lower case.
    PSAPPSRV.5584 (31) [11/10/08 18:36:33 GetCertificate](1) (NET.346): Failed to execute GetCertificate request
    PSAPPSRV.5584 (39) [11/10/08 18:37:14 GetCertificate](3) Error Setting Sign on PeopleCode context for User QEDMO@SAJJAD: Sign on PeopleCode was not executed
    PSAPPSRV.5584 (39) [11/10/08 18:37:14 GetCertificate](3) PeopleSoft ID and Password authentication failed. Invalid user QEDMO@SAJJAD.
    PSAPPSRV.5584 (39) [11/10/08 18:37:14 GetCertificate](1) (NET.502): QEDMO@SAJJAD is an Invalid User ID, or you typed the wrong password. User ID and Password are required and case-sensitive. Make sure you're typing in the correct upper and lower case.
    PSAPPSRV.5584 (39) [11/10/08 18:37:14 GetCertificate](1) (NET.346): Failed to execute GetCertificate request
    PSAPPSRV.5584 (40) [11/10/08 18:39:25 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=183925_5584.40, Token=PSFT_HR/2008-11-10-10.39.24.999906/PS/ENG nAAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABQ3+W4XtDdyAym8UBAHH8NzifD5wVwAAAAFAFNkYXRhUHicLcZNDkAwEIbht9VYugkZ1Uh7AD8rEeyt3NLhTKXzJs83D+Aqa4zua/nP7ZzUExsLTf5nLm5WDoJHtEhLr2Wl2DGQVE9QU0kY4QMF3ApJ
    PSAPPSRV.5584 (58) [11/10/08 18:40:12 GetCertificate](3) Error Setting Sign on PeopleCode context for User QEDMO@SAJJAD: Sign on PeopleCode was not executed
    PSAPPSRV.5584 (58) [11/10/08 18:40:12 GetCertificate](3) PeopleSoft ID and Password authentication failed. Invalid user QEDMO@SAJJAD.
    PSAPPSRV.5584 (58) [11/10/08 18:40:12 GetCertificate](1) (NET.502): QEDMO@SAJJAD is an Invalid User ID, or you typed the wrong password. User ID and Password are required and case-sensitive. Make sure you're typing in the correct upper and lower case.
    PSAPPSRV.5584 (58) [11/10/08 18:40:12 GetCertificate](1) (NET.346): Failed to execute GetCertificate request
    PSAPPSRV.5584 (59) [11/10/08 18:45:59 GetCertificate](3) Returning context. ID=PS, Lang=ENG, UStreamId=184559_5584.59, Token=PSFT_HR/2008-11-10-10.45.59.000140/PS/ENG nQAAAAQDAgEBAAAAvAIAAAAAAAAsAAAABABTaGRyAk4AZQg4AC4AMQAwABSaO0dC5ooPNpst4hSrWhY4sPryll0AAAAFAFNkYXRhUXicLYjLCYAwFAQnMeRoJ8qLJKAF+DmJqHdPdpnifAnuwOyyL+Aaa4x2ttS4gws/s7PSlr1w87BxEgdEGekISrH87okkdWJSSyXoJ/ABBMgKKQ==
    PSAPPSRV.5584 (95) [11/10/08 18:48:17 GetCertificate](3) Error Setting Sign on PeopleCode context for User QEDMO@SAJJAD: Sign on PeopleCode was not executed
    PSAPPSRV.5584 (95) [11/10/08 18:48:17 GetCertificate](3) PeopleSoft ID and Password authentication failed. Invalid user QEDMO@SAJJAD.
    PSAPPSRV.5584 (95) [11/10/08 18:48:17 GetCertificate](1) (NET.502): QEDMO@SAJJAD is an Invalid User ID, or you typed the wrong password. User ID and Password are required and case-sensitive. Make sure you're typing in the correct upper and lower case.
    PSAPPSRV.5584 (95) [11/10/08 18:48:17 GetCertificate](1) (NET.346): Failed to execute GetCertificate request
    PSAPPSRV.5584 (96) [11/10/08 19:08:27 GetCertificate](3) Error Setting Sign on PeopleCode context for User QEDMO@SAJJAD: Sign on PeopleCode was not executed
    PSAPPSRV.5584 (96) [11/10/08 19:08:27 GetCertificate](3) PeopleSoft ID and Password authentication failed. Invalid user QEDMO@SAJJAD.
    PSAPPSRV.5584 (96) [11/10/08 19:08:27 GetCertificate](1) (NET.502): QEDMO@SAJJAD is an Invalid User ID, or you typed the wrong password. User ID and Password are required and case-sensitive. Make sure you're typing in the correct upper and lower case.
    PSAPPSRV.5584 (96) [11/10/08 19:08:27 GetCertificate](1) (NET.346): Failed to execute GetCertificate request
    please suggest me what to do to resolve it.

    Check your trusted nodes in both applications.
    To do this go to PeopleTools->Security->Security Objects->Single Signon
    Make sure PSFT_HR is in the list under "Trust Authentication Tokens issued by these Nodes" in Enterprise Portal and PSFT_PA is in the list in HR/Campus Solutions.
    You could also check your authentication domain for both to make sure it is the same.
    This is set in PeopleTools->Web Profile->Web Profile Configuration under the General tab.

  • SSO Enabling a custom application with OAM

    Hi All !
    Am a bit stuck on a problem and need some urgent help. Actually we are trying to launch some custom-built (J2EE/.NET) web applications from the Oracle Portal with SSO i.e. once the user logs into the portal he would not have to log-in again to the applications which would be launched from the portal home page.
    We have successfully integrated the Oracle Portal with the OAM SSO, but facing some problems with SSO enabling the custom applications. Any help on what should be the ideal integration architecture and approach for SSO enabling the apps with minimum amount of modification of the application code.
    The licenses are available for OID, OVD, OAM.
    Thanks in advance. Any views/comments/links to useful material appreciated.
    Cheers
    Soumak

    If your custom application uses its own database for Authentication, then you have to modify the login process for your application. i.e. you have to trust the OAM to have done the authentication and then create any custom cookie that your application might use in its landing page.
    I am assuming that your custom application have some way of tracking if the user has logged in or not. You can protect the Custom application URL within OAM and once the user has logged in you can then generate your custom application cookie.
    Even if you use OVD, you stil have to modify login process in your custom appliation to trust the third party to have done the authentication.
    Thanks
    Ram

  • How to create sso login for webcenter application

    Hi,
    i have created a webcenter portal application with a login page.i have to create a sso login for that application .
    can anyone suggest me how to do?

    Hi.
    Do you have OAM as SSO?.
    The best way is to create a loginProxy page which proxies the user and password entered to OAM Login process (or the other SSO system).
    This post of JayJay will help you: http://jjzheng.blogspot.com/2013/10/non-programmatic-authentication-using.html
    Regards.

  • SSO for Oracle Apex application

    Hi All,
    I am working on the requirement where the client want to implement the SSO for the apex application which are in different workspaces.
    But not using oracle SSO server :(
    The Microsoft active directory is used for authentication.
    Please give me some idea how to implement SSO for these apex applications.
    Thanks & Regards,
    Prutha

    Hi,
    I am trying to implement Single-Sign On for my Apex applications. Below are the requirement steps:
    This is working fine within same WORKSPACE and on single DB, but I need to implement SSO across DB with different workspaces.
    1. I have *2 Databases* DB-1 and DB-2. Both are different and running on different machines.
    2. On Both DB's Apex is configured.
    3. I have to deploy an app which uses internal Application Express account credentials for Login on DB-1
    4. From DB-1, after login, I have to provide a link to open another Apex App deployed on DB-2
    5. All Apex Apps on both DB's are using same Authentication Schemes.
    6. In both DB's I have PAGE SENTRY function for session validation.
    Can we configure Apex only once on both DB servers like RAC. Do we have any admin setting in Apex by which we can achieve th motive.
    Please help me to implement such functionality using only Apex across different DB's and different Workspaces.
    Thanks,
    Ismail
    Edited by: user9536278 on Mar 27, 2012 4:18 AM

  • Problem in configuring SSO using SAML for applications hosted on diff m/c

    Hi Techies,
    I am stuck in a weird problem for past month or so without any resolution. Not much help by googling. So I hope i get the answer from the mouth of the horses -
    I am trying to use SSO using the sample application appA and appB as stated in the tutorial of SSO by BEA.
    I am summarizing the problem below -
    Steps followed for Configuring SSO using SAML
    1. Created 2 domains on 2 seperate machines namely domainA and domainB
    2. Source appliction is deployed on domainA and the target application is deployed on domaninB
    The steps mentioned in the following tutorial has been followed-
    http://dev2dev.bea.com/pub/a/2006/12/sso-with-saml.html
    3. As mentioned in the tutorial the certificate is generated using keytool utility. The same certificate is copied
    to WEBLOGIC_HOME/server/lib of destination machine.
    4. The certificate was successfully registered on desitnation or host 2 but while activating the configuration
    changes(SSL client Ientity Alias and SSL Client Identity Pass Phrase) for Federation services the following error
    is thrown -
    " SAMLBeanUpdateListener: SAMLKeyManager.prepareUpdate() failed with exception:
    weblogic.descriptor.BeanUpdateRejectedException: SAML key Manage failed to validate key (SSL Client) configuration
    in the FederationServicesMBean, key alias: testalias "
    The interesting bit of the problem is that the same configuration works on 2 domains created on same machine. The
    problem only occurs when domains are created on seperate machines.
    Alterative to the problem: when the certificate is generated seperately for domainB and copied to
    WEBLOGIC_HOME/server/lib, it works. However, the certificate generated in domainA should have been copied.
    Note: I am using Weblogic portal 9.2.1
    Any quick replies will be much appreciated. Thanks.
    Edited by saurabh.agrawal at 02/06/2008 2:01 PM

    Hi François,
    You are right about the use of the NameID format. But the issue here is/was that OIF at SP is integrated with OAM, and the authenticated user at OIF-SP and OAM will be the Anonymous user rather than the user who was identified at the IdP even though the remaining attributes sent are for the IdP user. I think these attributes can be used by with OAM for authorization using custom authorization plug-ins but haven't tried that one out.
    As for the attribute sharing profile, it's this one - http://www.oasis-open.org/committees/download.php/18058/sstc-saml-x509-authn-attrib-profile-cd-02.pdf, although for the life of me, I cannot remember why I suggested this in the first place!
    -Vinod

  • SSO for  non sap applications in EP on which siteminder sso is integrated

    Hi ,
    we have implemented Siteminder SSO on   SAP PORTAL 6 SP16  for authentication.I would like integrate non sap application in Portal.I could not find any documentaion for setting up non sap application's in portal on which siteminder sso external authentication is implemented.
    can anybody help for getting  step by step document.
    Thanks
    Tag

    Hi ,
    we have implemented Siteminder SSO on SAP PORTAL 6 SP16 for authentication.I would like to integrate non sap application in Portal.I could not find any documentaion for setting up non sap application's in portal on which siteminder sso external authentication is implemented.
    can anybody help for getting step by step document.
    diff rewards to be given...
    Thanks
    Tag

  • SSO to Form Based Application

    Has Access Manager yet added the ability to do "form memory" for easy SSO integration to applications performing form based authentication. This is a feature found in products such as Netegrity Siteminder and CA's stuff.
    This is easier for legacy applications with closed code than trying to modify the login sequences for these applications.
    Z

    Hello Romano,
    thank you for assisting so much.
    Yes, the text itself is always new, but when i believe what it is saying, the content following is not new.
    Or do i only mis-interpret the meaning of that text ? Does it perhaps analogously  mean: "He User, the content you see was just fresh constructed and cached in the ApplicationCache and then sent to you" or .
    I also found the "com.sap.portal.httpconnectivity.urlfetcherservice" and played with it, but with that i achieve cache settings for all applications used and not for only the one i would like it for.
    I posted this also in category "Portal Content Development",
    URL iview Cache -> How can i empty the ApplicationCache
    and there are also interesting answers.
    Kind regards
    Andreas

  • SSO to Microsoft based application

    Hi,
    I want to enabler SSO from Portal to an ASP application running on IIS 5.0 and Win2k.
    I have gone through the document "Using SAP Logon Tickets for SSO to Microsoft based web applications.
    I taken the Web Server Filter approach to enable SSO, have downloaded SAPSSOEXT.dll file and added it as a ISAPI filter in IIS server.
    Now the doc says "The name of the hhtp header variable can be specified using the parameter remote_user_alias in the filter configuration file".
    I have no clue how to go about doing this.
    If anyone has done something like this before, please help.
    Also please let me know if I am moving in the right direction.
    Thanks in advance.
    Vivek

    Have a look at this document: https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.docs/library/webas/def/enabling single sign-on for asp.net applications in enterprise portal 6.article
    It describes it in more detail (we used it a bit different, and sent the authentication string as a parameter to a .net webservice and programatically verified it).
    Cheers
    Dagfinn

  • SSO to non SAP applications

    Hi,
    I am trying to implement SSO to SAP and JAVA applications in the process i need to verify the "PSE" file downloaded from the keystore administration and to decrypt the "SSO2 Cookie" in order to do this i hv downloaded the SAPSSOEXT.DLL file and placed it in "C:\Windows:\System32". and registed the DLL file using "REGSVR32 C:\Windows:\System32sapsso.dll"
    But when i am executing the program i am getting the follwing error
    java.lang.UnsatisfiedLinkError: no sapssoext in java.library.path
            at java.lang.ClassLoader.loadLibrary(ClassLoader.java:1682)
            at java.lang.Runtime.loadLibrary0(Runtime.java:822)
            at java.lang.System.loadLibrary(System.java:993)
            at SSO2Ticket.<clinit>(SSO2Ticket.java:38)
    at the line
    System.loadLibrary("sapssoext");
    Can some body please help me out how to add the downloaded dll file into java path.
    Thanks in Advance

    HIi check this Link
    Hope it will be usefull.
    https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/d0c78148-12de-2a10-27bf-960acc753aab
    Also use this link
    Single Sign-On to Non-SAP Java Applictions with SAPSSOEXTthanks
    Rewards r welcome
    Edited by: Mayank  Saxena on Sep 6, 2008 1:24 PM

  • SSO from non sap application server to SAP systems

    Mysapsso2 cookie has been generated after we are login into the portal https://FQDN/irj/portal for all the backend systems in client browser. Since it is working fine. After login into the portal , while clicking the URL iview of external JBoss application sever in portal home page and it is shows the new windows pop up login page. After login into this external JBoss application server, we have configured work item for SAP ITS WEBGUI login page of the backend system inside this JBoss appliaction. Here we need to pass the mysapsso2 cookie information in SAP WEBGUI, so that login page is bypassed using SSO. Kindly do give some suggestion for fixing this issue. Kind Regards, R Rajavelu

    Try to use it Appsintegrator to access the non sap application from SAP Application

  • SSO from non-SAP application to EP system

    Hi all,
    Is it possible to configure the Single sign-on from non-SAP application to SAP Enterprise portal?
    My requirement is
    I have a link to "Enterprise Portal" in my company's website home page. If I click on the link, it should directs to EP portal with out asking for logon.
    Please suggest, is it possible??
    Regards,
    Sujoy

    Hi Sujoy,
    SSO implementation to non-browser applications i.e non-SAP systems is possible in 3 ways which are listed .Can find useful info in the below links.
    http://help.sap.com/saphelp_nw70/helpdata/EN/12/9f244183bb8639e10000000a1550b0/frameset.htm
    among the non-browser applciation if it is an MS dotnet system then the below article will give a clear understanding of SSO implementation.
    https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/f05ae0f0-bf93-2b10-ed9e-a7320c012841
    Regards
    Supraja

Maybe you are looking for

  • Multiple sound cards on one syst

    is that possible? to control different sound environments... If yes how many can I have on one system, what type of hardware/software to control it's I will like to have on Windows. Regards DonabDon

  • Front window

    My application may have any number of opened JFrames. Is there a way to determine which frame is currently the front most frame of a particular type? I tried tracking window events and focus events, but I may need to find a window that has not recent

  • Oracle Workflow Java API

    Hi everyone, some questions to that API (maybe only Oracle can answer): 1) in the "Oracle Workflow and Java Technical White Paper" an API-Function called "setItemOwner" ist described but you cannot find this method inside any class of the wf*.jar fil

  • Problem loading flv into FLVPlayBack

    Hello All, I have set up a test site at http://www.sinifdizi.com/test.html. When the page loads there is an error. When I look at the browser activity viewer it says my video http://www.sinifdizi.com/videos/sinif-bol-01_01.flv not found. BUT!!!! If y

  • How open Adobe Reader 9 in second monitor by default?

    How can I make Adobe Reader 9.0 open always in my second monitor? With version 8 it was at least possible to open the first document on the second monitor if I had moved the window in an previous session to that monitor and closed it there. The secon