on 11-17-2008 9:50 AM
Hello all,
We are using EP7.0 with BI 7.0 in unix server. We are facing an problem in SSO ticket.
*Issue :*
End user logged in first time , then they excuting the report without any issues,after sometime the user get loged out and login again, then getting an error " system received an expired SSO ticket " in the report page as error.
So to avoid this problem what we need to change in the setting in both the side(EP & BI 7.0).
*Remarks* :
1. SSO certificate is valid upto dec 27th 2008
2. checked in strustsso2 , there is no issue
3. changed in visual admin parameter " login.ticket_liftime " value is 8h now, planning to change 24h.
So please guide us to resolve this issue
regards
MLN
Hello
Any Solution to this Problem ??
I am also facing the same problem.
I checked the time settings in both BI and EP servers. There is a time difference of 1 hr(which is bad ).
I have also configured SSO between EP and ERP system but amazingly there is also a time difference of 1 hr, but the SSO is working fine there.
I dont know what the problem is. Please help
Sarin
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Set your session to expire the same time as the SAP Logon Ticket. The default SAP Logon ticket expires every 8 hours but the session defaults to 27.7 hours. Actually, since you have a 1 hour time difference you may want to the life of the SAP Logon ticket to 1 hour more than the session. That way if the user still has a valid session the ticket will also be valid in a timezone 1 hour ahead of you.
We have servers in the Brazil time zone but our portal is in the Central Time USA. Worst case is 4 hours difference due to daylight savings time for both countries. We set the SAP Logon Ticket to be valid for 12 hours and user sessions expire every 8 hours. This resolved the problem for my company.
-John
Hi All,
I'm having the same problem with SSO ticket.
i'm connecting EP(java) to BI (Abap + Java) as the backend Application. but it is often giving us "System recieved an expired SSO ticket", i've checked certificate and it's not expired yet.
How to check login.life_time in EP. cause I'm not using ABAP in EP.
and also after UME Configuration there is no secuity setting in my place.
thanks before.
Any updates?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Just restart you java stack this problem will be resolved.
Regards,
Vamshi.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
In the EP,
System administration-> system configuration-> UM configuration > security settings.
Now, you increase the value for "Lifetime of SAP Logon Ticket (hh:mm)" . The default value is 8 hrs.
I think you are using abap UME.
So go and change in visual administrator and set the life time of SSO ticket to 24 hours.
This error comes if you login with same USER in multiple pc's and you close your browser directly than using loggoff.
the connection will not die it continues and the sso ticket expires.
http://help.sap.com/saphelp_nw2004s/helpdata/en/d4/07dd3aeedb7445e10000000a114084/frameset.htm
Follow this thread too
/thread/173740 [original link is broken]
Hi Lakshminarayanan,
Could you check the following?
1. In virtual admin --> server0 --> services --> keystorage --> Ticketstorage
Find the valid date of created portal certificate of SAPLogonTicketKeypair and
SAPLogonTicketKeypair-cert. If the valid date is expired, you neet to re-generate it and import into BI
system.
2. In BI system , strustsso2, did the java certificate add to ACL correctly?
The procedure to the SSO certificate:
1. create BI certificate with strustsso2 and then export it.
2. Import bi certificate into java instance with virtual admin.
3. Create SAPLogonTicketKeypair with virtual admin and then generate certification file.
4. Import java certificate into BI system in client 000.
5. Add imported certificate into certificate list and ACL in strustsso2 in cleint000.
6. If needed, add certificate to ACL in the portal specific client.
Hope it can help you.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
81 | |
24 | |
11 | |
9 | |
7 | |
5 | |
5 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.