cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SSO issue - post SP upgrade

former_member759680
Contributor

on ‎06-18-2009 4:31 PM

0 Kudos

Hello,

We have dual stack Netweaver system. We just upgraded to SP18.

Everything in the system is fine, except for the SSO login for some users.

Sometimes the SSO works and sometimes the users have to enter their login details.

Can you tell me the reason behind this erratic behavior?

Also, can you guide me in the right direction is troubleshooting thsi issue.

Where do I look in the OS level or in Visual admin.

Kindly help.

Thanks.

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

former_member759680
Contributor
‎06-30-2009 12:31 PM
0 Kudos

It was a setting on the security provider, tab properties, the class was not filled for the node server 0.

Show replies
Show replies
Former Member
‎06-18-2009 11:33 PM
0 Kudos

Gautam,

Goto

http://hostname:5XX00/irj/portal>System Administration>System Configuration>Portal content>Systemlandscape>connection tests>Connection Test for Connectors.

If this test is successful it means your SSO is configured it not then you need to configue your SSO again using Visual admin & strutsso2

Thanks

Sushil

Show replies
Show replies
former_member759680
Contributor
‎06-19-2009 5:19 AM
0 Kudos

Guys,

SSO is working fine most of teh time. All certificates are in place.

It's just that almost 10-20% of the times the SSO login fails.

It's erratic.

Are there any SSO logs that I can check. I mean there must be some kind of logs, right?

Former Member
‎06-19-2009 5:46 AM
0 Kudos

Hi,

I think this is a network problem.If itwas SSO issue you would not be able to connect once .

You can check the trace file when it fails.

/usr/sap/SID/JCXX/j2ee/cluster/server0/logs

When you network is fine yu login in one system and have the authentication once and can run the SSO.once you get did connected fron network all the authentication are lost ans so you need to give the user id and the password.

Thanks

Rishi Abrol

former_member759680
Contributor
‎06-19-2009 6:47 AM
0 Kudos

Thanks, but there are quite a lot of logs in /usr/sap/SID/JCXX/j2ee/cluster/server0/logs.

Could be a little more specific please.

Former Member
‎06-19-2009 6:51 AM
0 Kudos

Hi ,

Just sort the file that was updated at the time when you had sso fail.

Like for unix do : ls -ltr

then check the file defaulttraceXXXXX.trc.

Thanks Rishi Abrol

Former Member
‎06-19-2009 9:29 AM
0 Kudos

Hi,

There is tool called diagtool you can use this, this is attached to a note in the market place, I dont exactly remember the note number but you can get in the market place.

It provides the step by step how to use it and it generates the logs, you can find very helpfull information in that logs.

Regards,

Vamshi.

Former Member
‎06-18-2009 4:38 PM
0 Kudos

Please check the transaction SSO2 in the ABAP side .

Thanks Rishi Abrol

Show replies
Show replies
former_member759680
Contributor
‎06-18-2009 4:43 PM
0 Kudos

I entered the hostname of the same server and the system number - 00

In the output, everything seems fine -

Output -

Profile Parameters login/create_sso2_ticket = 2

System P3W Is Creating Logon Tickets That Do not Include Its Certificate

The Current System P3W Is Also the Issuing System for the Logon Ticket

An Entry in Certificate List of P3W Is not Necessary

The Certificate for System P3W Is not Included In the Certificate List for System P3W

System P3W Accepts Verified Logon Tickets for System P3W.

Could you suggest some other checks?

Former Member
‎06-18-2009 5:30 PM
0 Kudos

Hi,

Just check in Strustsso2 tcode in both the systems you have check whether the certificates exists and validity has not expired in both the systems.

Regards,

Vamshi.

Ask a Question