11-25-2011 5:44 AM
Dear Techies!
I have configured the single sign-on thru Digital Certificate
Authentication for SAP WEB Gui in my ECC System.
In t-Code STRUSTSSO2, I have added almost 274 users in Certificate list,
the systems is working fine, but as soon as I add one more useru2019s
Certificate in Certificate list, System failed to open the SAP Web Gui.
I have verified that adding a certificate in certificate list is
creating the problem, when I removed that last added certificate, the
system again start working fine. (As per my findings, the issue is with
the No of certificates already being added , not with any particular
certificate)
Pls. advice, is there any restriction in adding the users in certificate
List?
Regards
Saqib
11-30-2011 1:49 PM
Hi,
when using X.509 client certificates for SSO generally you will have the client certificate signed by a trusted certificate authority and then import the root certificate into the SAP SSL server PSE in transaction STRUST. You then do not need to import every single users certificate into the system. See the online help at
http://help.sap.com/saphelp_nw70/helpdata/en/a8/d9d53a9aa9e933e10000000a114084/frameset.htm
for configuring this. This would be the best practice here and avoid the issue you are seeing now.
Thanks,
Chris