cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

AD Integration with sap abap R/3 system

Former Member

on ‎02-06-2015 12:23 AM

0 Kudos

Hi All,

We are in the planning to setup AD integration with our present sap system, where ad user name is differently maintained and sap user ids are different. we don't have any java systems in our landscape. our requirement is simple , user id and password  authentication should be through AD.

However was not able to find any specific implementation guide, it would be great if any one can share the best possible solution with steps to take an approach.

I have already gone through many post but couldn't find any thing suitable for our scenario.

Please help.

Thanks and Regards

JADS.

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
‎02-06-2015 12:25 AM
0 Kudos

Dear All ,

Just wanted to add our AD and SAP environment is running on windows 2008 r2.

Regards

Jads.

Show replies
Show replies
Former Member
‎02-06-2015 6:48 AM
0 Kudos

Hi Jads,

as you are in the forum for the SAP NetWeaver Single-Sign On product, do you have SAP NW SSO installed? If yes, please have a look at the docs for the solution.
There is also an implementation guide.

The AS ABAP does not nativly support an AD integration for password based login.

Kind regards,

Patrick

Former Member
‎02-08-2015 6:37 AM
0 Kudos

Hi Patrick,

Thanks for the link , we do not have SSO installed ,do we have to installation  sso. if yes could you please let me know  were can I find the installation Guide for the same.

1. Our requirement is very simple we want achieve the user id disable unable locked unlock through AD and our ad user names and sap user names are different. and we have only abap systems as you mentioned abap does not support ad integration. what will be the best Approch if we have to achieve this in our landscape.

Kindly help since im new to ad integration.

Regards

Jads.

Former Member
‎02-08-2015 8:29 AM
0 Kudos

Hi Patrick,

I have gine through the videos again to get the clear picture, If we implement first three task for secure login will that help us in achieving our requirement.

since the last video is about As java.

Really appreciate your response.

Regards

Jads.

Former Member
‎02-09-2015 7:12 AM
0 Kudos

Hi Jads,

the videos describe a feature of the SAP NetWeaver SSO product.

Yes, you will have to install this first.

Yes, only videos one to three apply for ABAP.

To install SAP NW SSO, please check the documentation.

The features you requested are only available via an add-on product and not nativly supported by the SAP ABAP system.

Kind regards,

Patrick

tim_alsop
Active Contributor
‎02-09-2015 8:02 AM
0 Kudos

Can you confirm if you want SSO or just AD authentication ? e.g. Do you want users to have to enter their AD user id and password during logon to the SAP system, or do you want users to logon to Windows and then login to SAP without being prompted to enter any credentials during the SAP system logon ?

Thanks

Tim

Former Member
‎02-11-2015 8:43 PM
0 Kudos

In my case, I'm interrested by just just the AD authentication. Is there any solution for that ?

SSO seems to be problematic for testing with user test (we have to logout then login from windows to change of user account in SAP).

Christian_Cohrs
Product and Topic Expert
Product and Topic Expert
‎02-12-2015 9:22 AM
0 Kudos

Hi Nicolas,

when using SAP GUI you could map several SAP backend users to the same AD account. The system would then let you decide at login which backend user your want to be. However, this only makes sense if there is a limited, known number of backend users for each AD user. Also, this only works in SAP GUI, not in the browser or NWBC. So it should not be the basis of a long term SSO strategy.

Best regards,

Christian

Former Member
‎11-10-2015 7:21 PM
0 Kudos

Thank you for your answer Christian.

I understand that it is not a long term strategy, but even if we use NWBC 5.0 or SAP Business Client 6.0 with windows SSO, we would like to be able to use test user without logout from windows session. Does SAP Single Sign-On 2.0 support this kind of scenarios ?

Regards,

Nicolas

Christian_Cohrs
Product and Topic Expert
Product and Topic Expert
‎11-11-2015 8:28 AM
0 Kudos

Hi Nicolas,

with NWBC this is a bit more difficult, as the authentication is done using SPNEGO on the HTTPS connection and the user cannot interfere with this.

You could define a separate ICF node for NWBC access to the backend system, and disable SSO on the backend for this node.

Best regards,

Christian

Ask a Question