Scribd Logo
Upload

Welcome to Scribd!

  • SSO Configuration For Java System

    Uploaded by

    kiran
    14 views3 pages
    SSO configuration

    Original Title

    SSO Configuration for Java System

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    SSO configuration

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    14 views3 pages

    SSO Configuration For Java System

    Uploaded by

    kiran
    SSO configuration

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as txt, pdf, or txt
    of 3

    Hi,

    You can try the following steps :-

    First at EP server end :

    Go to Visual Admin of the EP Server and generate Portal Certificate.

    Choose Server -> Services -> KeyStorage -> TicketKeystore

    You can delete existing cert pairs (like SAPLogonTicketKeypair-cert,SAPLogonTick


    etKeypair)

    Then choose Create with the following information:


    1) Mark Store Certificate
    2) Common Name: <SID>
    3) Entry Name: SAPLogonTicketKeypair
    4) Store Certificate: Mark it
    5) Key Length: 1024
    6) Algorithm: DSA
    7) Press Generate

    Now you will have two entries in the TicketKeyStore:


    SAPLogonTicketKeypair
    SAPLogonTicketKeypair-cert

    Choose SAPLogonTicketKeypair-cert & Export it (You can choose either X.509 or Ba


    se64 Encode Format).

    Now at ABAP end :-

    Go to ABAP System (Client 000) excute STRUSTSSO2

    Import Certificate (Button in the Certificate field) & open the generated certif
    icate from

    Press Add to Certificate List button (Button in the Certificate field)

    Now Go to the business client & Add to ACL button (Button in the Certificate fie
    ld) in STRUSTSSO2.

    Put <SID> of your EP system, Enter Client 000 & Save.

    Also set the following two profile parameters :login/create_sso2_ticket = 2


    login/accept_sso2_ticket = 1

    Then activate the requisite services by SICF. And publish the SICF services.

    Authentication at ABAP end :-

    Go to ABAP backend system & execute STRUSTSSO2. Doubleclick the Owner Certificat
    e and choose Export and store it on the file system [Nomenclature: <SID>_CERTIFI
    CATE].

    Go to VA at EP system :Server -> Services -> KeyStorage -> TicketKeystore & Load and choose the Certifi
    cate.

    Set the Backend System as "ACL" in the Portal


    Choose Server -> Services -> Security Provider -> ticket

    Choose the Authentication tab and add the following on the com.sap.security.core

    .server.jass.EvaluateTicketLoginModule:
    a) trustedsys<Sys No> : <SID>, <CLIENT>
    b) trustediss<Sys No> : CN= <SID>
    c) trusteddn<Sys No> : CN= <SID>
    ear Customer,
    Would you please apply the following steps to fix your issue with SSO:
    1.
    2.
    3.
    4.
    5.
    6.

    Open Visual Administrator


    Server-> Services -> Security Provider
    Enable the edit mode selecting the button in the top
    from ticket select "EvaluateTicketLoginModule"
    Then "Modify"
    Add three entrys:

    trusteddn7 = CN=PP1,OU=J2EE
    trustediss7 = CN=PP1,OU=J2EE
    trustedsys7 = PP1,000

    You might also like