on 09-08-2014 5:19 PM
Good day,
Please help, we are implementing SSO using Secure Login Server, Secure Login Client, Active Directory, X.509 certificates. We've managed to get the setup to work for SAPGui with the Secure Login Server connected to the AD. However we cannot get nwbc (desktop & html) to work. We've done the nwbcoptions.xml settings, as well as transaction SPNEGO still the logon screen keeps popping up.
Any pointers would be appreciated.
Hello
There are 2 solutions:
there is the solution with SAP Logon Tickets. This solution is included in SAP Netweaver.
http://help.sap.com/saphelp_nw70ehp3/helpdata/en/4c/5bd4fe97817512e10000000a42189b/content.htm
So this is a solution for SSO for NWBC but you also want to have a Kerberos integration ... this is an issues because only SAP NW Java is suppporting SPNego and not SAP NW ABAP. So this solution is only working if the first request will be send to SAP NW Java server and the user gets then a SAP Logon Ticket. See also:
Furthermore there is the additional product SAP NetWeaver Single Sing-On available which support also NWBC 3.0 and higher: http://help.sap.com/nwsso10 -> installation -> components: secure login client + secure login sever + secure login library. NWBC is supported here via certificates out of the box.
You can find also a how to guide here for SAP NW SSO:
http://scn.sap.com/docs/DOC-29687
See below blogs
Regards
Vijay Kalluri
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Did you check if there are duplicate Service Principal Name being used?
Try this command to check:
setspn –T * -T foo -X
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
94 | |
11 | |
11 | |
10 | |
9 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.