on 02-17-2015 7:28 AM
Hi All,
I am having EHP1 for NW 7.3 installed on windows 2008 R2 and I am trying to do SSO with ADS.
I am following the steps as below :
1. Created administrator user user1 and disabled "Use Kerberos DES encryption type for this Account" and checked "Password never expire option"
2. setspn -a HTTP/javahost.mydomain.com user1
3. Logged into javahost:port/nwa
4. Generated Keytab file in Domain server:
ktab -a user1@MYDOMAIN.COM -k keytab
5. Imported the keytab into the JAVA system :
Kerberos Realm--> edit --> Keys--> Update Keys -> uploading keytab file --> browse --> selected file and IMPORT --> Save.
6. Activate the REALM.
7. Adjusted the authentication stack:
EvaluateTicketLoginModule SUFFICIENT
SPNegoLoginModule OPTIONAL
CreateTicketLoginModule SUFFICIENT
BasicPasswordLoginModule REQUIRED
CreateTicketLoginModule REQUIRED
-->Save.
8. Did the settings in the browser.When tried to open the URL http://<server>:<port>/XMII/Menu.jsp
I am getting a windows authentication message as in the attached screen shot (Windows_auth)
After that I can see the Logon page
I am able to Login through LDAP User credentials.
But how to by pass Logon page to directly go to Menu page?.
Is there any other settings to be done at Server or net weaver level to Auto Authenticate?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Vinoth
Could you check this SAP KBA
1609801 - PCM: How To configure/test single/multi domain SSO authentication using AD/LDAP
BR
SS
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
9 | |
7 | |
3 | |
2 | |
2 | |
2 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.