Hi,

I haven't seen that message but it looks like you need to write your own authentication module for your IBM system. EP will issue a logon ticket. SAPSSOEXT is a library which allows you validate logon ticket and extract data. So you need to export public key used for logon ticket and then on IBM side you need to read logon ticket, use this library to extract data, map SAP user to IBM user and log this user into the system. Don't forget to validate expiry date of logon cookie. You can download documentation for SAPSSOEXT from service.sap.com/swdc. It's part of the package for SAPSSOET.

Cheers

Hi,

first, I guess you are not supposed to use this program directly. It should be just an example. Your web server needs to get MYSAPSSO2 cookie from user and validate it using SAPSSOEXT library. If everything is OK then it should create a session for that user. This needs to be developed and it depends on external product. That file which you need to pass to ssosamp needs to contains MYSAPSSO2 cookie. So if you want to test it then go to your portal, get cookie from IE (you can use Developer tools) and paste it to file and run ssosamp.

Cheers

Hi,

so can you see cookie in Firefox? There are some add-ons which can help you to see what you get from EP. Do those two systems have same domain? [SAP documentation|http://help.sap.com/saphelp_nw70ehp1/helpdata/en/e0/fa984050a13354e10000000a1550b0/content.htm].

Cheers

Hi,

if a cookie is generated for a domain only connection to that domain can read those cookies. So it looks like that EP generates a valid cookie but browser does not send it to IBM HTTP server because domains don't match. But you can configure EP to generate multiple cookies for multiple domains. That's described in that linked documentation.

Cheers