on 12-12-2012 10:22 AM
Hello!
We trying to connect from com.sap.mobile.hcm.leaverequest application to our Sybase server.
When we trying to connect the device to SUP, we got the error "Error occured during user activation; check your SUP login credentials..." (From Android). iOS telling just about the same.
We using:
-Andriid
-iOS
-SUP 2.1.3
-SAP Gateway 2.0
We do not use Relay server (this is demo solution).
To do our SCC settings we used this guide (as basic):
Here is screenshots of our customisations of the settings that are required for authentication, as I suppose:
I will provide more information if require.
The SUP server log shows nothing (we activated Proxy component on Debug level). Other Log components do not provide any helpful data.
The Windows server logs do not contain any suspicious messages.
On mobile devise we using for autentification:
Login Type: Manual
SUP Host Addres: 192.168.1.107
Port: 5001
SUP Company ID: 0
SUP User Name: employee
SUP Activation Code: 123
Login Credentials (this is login to our SAP system as i suppose)
User Name: manager
Password: ******
We would be glad of any useful information.
Thanks in advance.
Dmitry.
Hi Dimitry,
I hope you installed SUP on Windows7/Windows 2008 server OS?
I think SUP machine 5001 port is not accessbile. Try to add this port in Fire wall by going to Control Panel --> Windows Firewall --> Advanced Settings (In left panel) --> Inbound Rules and Outbound Rules. Try adding an exception for 5001 port on SUP server.
I hope it will solve your problem.
Regards,
Abhishek Joshi
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Dimitry,
I am not sure how you checked that 5001 port. Try to add it to Inbound and Outbound Rules and check once.
If problem persists then could you please collect the logs using iphone configuration utility when you click on connect button on application, so that i can analyze the issue?
Regards,
Abhishek Joshi
Hi Dimitry,
The problem is not there where your thinking, the problem is in the security settings, instead of using Admin try using a NoSecAuth, also ensure that Basic Authentication has been maintained for the gateway user at the gateway as well in the SAP-HR
Hope that helps you.
Regards,
Srinivas Divakarla
Hi Dimitry,
After looking at log, it looks like problem is with application configuration.
As you mentioned, you are not getting any log at all. I hope you have access to server. Could you please check the server log located under <INSTALLDIR>\servers\UnwiredServer\logs folder?
Regards,
Abhishek Joshi
Hi Srinivas,
Thank you for the new point of view!
We tryed with two security configurations NoSecAuth and HttpAuthentificationLoginModule (created new, not admin).
Also we have Gateway and SAP in one system, and our user have SAP_ALL and he pass in "iwcnt/leavemanagement" and system successfully.
Is this enough to run correctly?
Regards,
Dmitry.
Abhishek,
I found marks about our connections in
SAPMOBILE_OBMO_MOLogAuth.txt
Something like:
20121212T171711.750|2|User/Activation Code combination [MANAGER/123] not registered. Connecting Device ID = 3f590a8d60ea6fafa957e7e2bc2c659ca8788d92__com.sap.meps.leaverequest.|manager
I looked frough structure of log folder and found marks only in MOLogAuth.
Can you suggest which file should I find?
Regards,
Dmitry.
Hi Dmitry,
Under logs folder, please check below log files:
<ServerName>-server.log Also there would be some old archives, check them as well.
MOLogMobileObjects\<ServerName>_OBMO_MOLogMobileObjects_*.txt (This should really help)
MO\<ServerName>_OBMO_MO_*.txt
Let's see what errors are available in these logs for your user.
Regards,
Abhishek Joshi
Hi Dmitry,
I see that the error is "error during user activation". So I guess the issue is with either AppID-Sec.Config-Domain which are part fo connection template Or User/activation code.
Did you edit the application connection template and added the domain later?
Did you check the manual user created in SCC is not expired? Activation code for user has a defaulut expiry time of 72 hours. If it is expired, please create new one.
May be you can try creating applicatio conection again and try to register. Do it in the below order
Create Sec Config.
Create Application ID and choose domain as default while creating the application ID.
AppID created in SCC should exactly match with whats provided i documentation (Ex: "com.sap.mobile.hcm.leaverequest").
You can refer to doc http://scn.sap.com/docs/DOC-23532 for asistance on creating appID and sec config.
Regards
Rohith
Abhishek,
MANAGER is ok. I have recreated users, to doublecheck the data (new one is manager) and applications.
About log files that you adviced:
<ServerName>-server.log - empty
MOLogMobileObjects\<ServerName>_OBMO_MOLogMobileObjects_*.txt - is for MBO, but we are using OData
MO\<ServerName>_OBMO_MO_*.txt - attached to this message. But i did not find there anything useful. Maybe you are able to do this.
Regards,
Dmitry.
Hi, Rohith!
First of all we used your guide, and made all required configurations as it seems to us.
Answering your questions:
- Did you edit the application connection template and added the domain later?
- Yes, with default domain, during the creation.
- Did you check the manual user created in SCC is not expired? Activation code for user has a defaulut expiry time of 72 hours. If it is expired, please create new one.
- Yes, it is not expired. We reregistered user several times in last few hours.
We recreated the application and application connection in the the order that you suggested with the new security profile.
If you have any other ideas, please share with us.
Best regards,
Dmitry.
Hi Dmitry,
I assume that your app ID is correctly created in SCC(Ex: "com.sap.mobile.hcm.leaverequest")..
Also check if the SUP server is using port 5001 for messaging.
You can check this under Servers>>Server Configuration>>Messaging(tab)>>Listers(sub tab).
Check the port number listed there. If not 5001, use the same for registration.
Regards
Rohith
Hi Abhishek!
Thanks for your contribution.
Eventvwr shows nothing about our problem.
Also server.log and archive server.log are empty. Do we need to activate them somewhere? If it is so, please tell us how.
Also we have empty security log in Monitoring. I suppose that something interesting can be there. Do we need activate them or it is normal?
Best regards,
Dmitry.
Hi Dimitry,
I doubt something is really wrong here.
I saw that you enabled logging for PROXY component with DEBUG option. Could you please enable DEBUG option for first 7 entries because i doubt that it's not going into PROXY component at all and coming out before that? Please upload complete logs folder here.
Please check that you are not getting error related to VC Runtime in eventvwr.
There is no need to do the role mapping for NoSecLoginModule.
Regards,
Abhishek Joshi
Abhishek,
There is no VC Runtime errors in eventvwr.
The logs attached to this reply (file: logs.txt).
We enabled DEBUG option for first 7 entries as you said:
We tryed to connect from iPad and Android.
Aplicatin user: "leave".
Also after reinstallation of SUP and OS on our server, we are getting new error in iPad logs. It is also attached (file: IMG_0010.PNG).
Hope it could help you.
Best regards,
Dmitry.
Hi Abhishek!
I'm not able to attach *.zip file to my reply.
File types allowed: .asc, .txt, .text, .xml, .xsl, .gif, .png, .jpeg, .jpg, .jpe
You need to unpack log.txt.zip and change the extension from log.txt to log.zip. After that you will be able to unpack log.zip and get the log folder.
Or share with me your e-mail, and I'll send it by mail.
Regards,
Dmitry.
Dear, Abhishek.
Please, write me to e-mail:
and I'll send you the log folder.
Regards,
Dmitry.
Hi Dmitry,
I checked logs and observed that there might be wrong user name entered for registration. User name is case sensitive.
You created user "leave" in scc and looks like tried giving "LEAVE" from application?
20121217T032711.692|4|CheckValCode received UserId LEAVE
20121217T032711.705|3|ValCode check failed, record does not
exist, user = LEAVE, valcode = 123, Connecting Device ID =
3f590a8d60ea6fafa957e7e2bc2c659ca8788d92__com.sap.meps.leaverequest.
20121217T032711.706|3|incoming handled from/to:
httpd://5212280/298 tm://?cid=0&httpheaders=Host%3A%20192.168.1.107%3A5001%0D%0AUser-Agent%3A%20SAP%2520Leave%2520Request/2.4.3%20CFNetwork/548.1.4%20Darwin/11.0.0%0D%0AAccept%3A%20*/*%0D%0AIas-Rs-Cookie%3A%20reset%0D%0AAccept-Language%3A%20ru%0D%0AAccept-Encoding%3A%20gzip%2C%20deflate%0D%0AContent-Type%3A%20application/x-www-form-urlencoded%0D%0AConnection%3A%20keep-alive%0D%0ATransfer-Encoding%3A%20Chunked&httpsession=6940
Please confirm that you are giving same user name as it appears in SCC.
Regards,
Abhishek Joshi
Hi Abhishek!
Thank you for your investigation.
Upper/lower case in user name depends of device (Android or iOS). We are using the same User, that appears in SCC.
To avoid problems with it, we started to use numeric username, but the problem still here:
ValCode check failed, record does not exist, user = 12345678, valcode = 123
Using HWC, I'm getting about the same error:
SearchValCode...Workflow app id Not Found.
and
ValCode check failed, record does not exist...
Full log message attached.
Best Regards,
Dmitry.
Hi Dmitry,
Please open http://localhost:5100/MobileOffice/Admin.asmx on your SUP server and click on getDeviceList and getDeviceList2 and invoke and check your device is present or not.
Also try to gnerate activation code instead of giving it manually.
Regards,
Abhishek Joshi
Hi, Rohith!
Correct ID of application is "com.sap.meps.leaverequest".
You can find it in "Administrator's Guide SAP Leave Request 2.4", or in logs, that we posted:
ValCode check failed, record does not exist, user = LEAVE, valcode = 123, Connecting Device ID =
3f590a8d60ea6fafa957e7e2bc2c659ca8788d92__com.sap.meps.leaverequest.
Regards,
Dmitriy.
Hi guys,
This is Annette from SUP Knowledge Management team. It seems that your experience with the application lifecycle has had some issues. In 2.2 we created a new document to try and bring some clarity to the Registration process. I would love to have you look at this document and provide me any feedback you may have: impressions, suggestions. This is a first draft and we do have other enhancements planned. But direct user input would certainly help. Especially if any terminology isn't clear or different from what you expect.
Here's the link:
Feel free to post any comments back to this thread and I'll collect them.
Cheers,
Annette
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.