cancel
Showing results for 
Search instead for 
Did you mean: 

GRC AC 10: User's authentication is not verified in PSS

former_member184114
Active Contributor
0 Kudos

Hi All,

I have seen very interesting situation in PSS.

I have configured MS active Directory using LDAP. All end users are expected to input their windows domain user id and password to access PSS. After that, when I access End User Logon Page, it asks for inputting user id and password correctly. Interestingly, what happens is that even though when I am providing wrong password, it is allowing me to access PSS!!! and does not give me any error.

Secondly, even if the user is not available in Windows Domain, and I try to access it using that "non existing" user id with "dummy" password, it does not give me any error and allows me to access PSS!!!

Only when I try to add a system, it does not show any systems, since this user id is not there in any SAP backend system.

Has anyone faced this situation?

Can anyone provide me solution for this?

Regards,

Faisal

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
0 Kudos

Hi Faisal,

Kindly check the following-

1-In the configuration parameter in IMG change the paramter value

   of paramter 2052 from 'YES' to 'NO'.

  2-Check that you have entered a qualified host name based on note

   1603115.

3.Please review/implement the sap notes-1613084 and 1628387 to resolve the

authentication issue.

Hope this helps!

Best Regards,

Nandita

former_member184114
Active Contributor
0 Kudos

Nandita,

Thanks for your reply.

I have not set parameter 2052 to "NO" against parameter group "LDAP"

I have entered fully qualified name of the MS AD server as per note#1603115.

I have checked for note#1613084 and 1628387, they seem to be in place already.

Can you please suggest?

Regards,

Faisal

Former Member
0 Kudos

Hi Faisal,

did u resolve this issue?

I also have LDAP as authentication data source....

Please provide the solution, if you have fixed it already.

Did you set the parameter 2052 to "NO" or "YES"?

regards

Edgar

former_member184114
Active Contributor
0 Kudos

Dear Edgar,

Yes, it is resolved.

This parameter is set to "YES".

Is it like you provide any password and it is being accepted?

Looking forward to helping you.

Regards,

Faisal

Former Member
0 Kudos

Hi Faisal,

thanks for your reply.

first it was accecpting every random Password like you described.

After setting the sequences of the data source configurations (ERP PRD=1; LDAP=2), in my GRC PRD system there is no Password field anymore?!

On GRC DEV and TST password field is will be displayed, even the customizing is the same on DEV, TST and PRD!

Here the thread:

http://scn.sap.com/thread/3569783

Thanks in advance

former_member184114
Active Contributor
0 Kudos

Edgar,

To the best of my knowledge and I strongly feel that, this field's visibility is directly related to the below configuration:

Maintain Data Sources Configuration->End User Verification=YES.

I looked into your other post as well and you mentioned that it is already set to "YES".

Let me share my experience similar to yours:

I had the same issue if my quality system. It was set to "YES". But even though password field was not visible.

I changed it to "NO" and then again set it to "YES". Somehow, this solved my problem.

I am not sure about above activity. But this worked for me!

I dont know if you can do and check the same.

Regards,

Faisal

Answers (0)