on 08-12-2005 2:29 PM
I want to create a jco connection in "http://host:port/webdynpro/welcome", and in the security step, i selected the "Tickets" way.
Then I opened visual admin to connect to the j2ee enginee, open the "Key Storage" service, choosed "TicketKeyStore", Then selected the "SAPLogonTicketKeyPair-cert" and exported it to a ".crt" file.
Then I logined the destination SAP system, used transaction "strustsso2", And import this ".crt" file, then clicked "Add to Certificate List"; After that clicked "Add to ACL" a dialog popuped, i inputed the destination server's system ID and client. Saved them
After all these things has been done, I went to test the jco connection I have created, but it failed
The error message is "com.sap.mw.jco.JCO$Exception: (103) RFC_ERROR_LOGON_FAILURE: You are not authorized to logon to the target system."
It seems maybe some step of configuration of SSO has mistake
Is there anything wrong or missed?
Please give me some instruction
Hi ,
Could you please check the link https://hostname:portname
and weather it accepting the certificates or not ?
Regards, Anilkumar
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi, Anilkumar:
I cannot so understand you, can you tell me detail
https://hostname:portname means the j2ee enginee?
and how can i know weather it accepting the certificates or not
Hi Kevin
Tought this document could help you in configuring SSO.
https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.docs/library/security/how to configure sso in a complex system landscape.pdf
Regards
NagaKishore V
Hi, Anilkumar Vippagunta :
I want J2ee enginee to issue a sso ticket and SAP system is the accept system
Anilkumar Vippagunta :
This document help, but i have done everything according the document. This problem occured
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Kevin
If you want the issuer to be J2EE engine and accept system to be SAP R/3 then you need to configure R/3 to accept the tickets. For this refer to the section
3.2 SAP Web AS ABAP Configuring the SAP Web AS ABAP to Accept SAP Logon Tickets
in the document link i provided.
Regards
NagaKishore V
Hi,NagaKishore:
I have done these.
I think my ABAP system is configured ok
Some other people help me to check that the logon ticket didn't contain an ABAP UserID, maybe this is the problem.
I should configure the UME or use mapping, but whe I tried user mapping, still failed, I am expecting the further solution
Hi,
Yes.With your J2EE engine hostname and port only.
It will display security alrert popup with "Yes/No" options.
That means that your engine is accepting the certificates.
Regards, Anilkumar
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
10 | |
10 | |
9 | |
7 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.