cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Test Jco Connection failed with SSO tickets

Go to solution
Former Member

on ‎08-12-2005 2:29 PM

0 Kudos

I want to create a jco connection in "http://host:port/webdynpro/welcome", and in the security step, i selected the "Tickets" way.

Then I opened visual admin to connect to the j2ee enginee, open the "Key Storage" service, choosed "TicketKeyStore", Then selected the "SAPLogonTicketKeyPair-cert" and exported it to a ".crt" file.

Then I logined the destination SAP system, used transaction "strustsso2", And import this ".crt" file, then clicked "Add to Certificate List"; After that clicked "Add to ACL" a dialog popuped, i inputed the destination server's system ID and client. Saved them

After all these things has been done, I went to test the jco connection I have created, but it failed

The error message is "com.sap.mw.jco.JCO$Exception: (103) RFC_ERROR_LOGON_FAILURE: You are not authorized to logon to the target system."

It seems maybe some step of configuration of SSO has mistake

Is there anything wrong or missed?

Please give me some instruction

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎08-12-2005 2:31 PM
0 Kudos

Hi ,

Could you please check the link https://hostname:portname

and weather it accepting the certificates or not ?

Regards, Anilkumar

Show replies
Show replies
Former Member
‎08-12-2005 3:11 PM
0 Kudos

Hi, Anilkumar:

I cannot so understand you, can you tell me detail

https://hostname:portname means the j2ee enginee?

and how can i know weather it accepting the certificates or not

Former Member
‎08-12-2005 3:17 PM
0 Kudos

Hi Kevin

Tought this document could help you in configuring SSO.

https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.docs/library/security/how to configure sso in a complex system landscape.pdf

Regards

NagaKishore V

Answers (2)

Answers (2)

Former Member
‎08-12-2005 3:23 PM
0 Kudos

Hi, Anilkumar Vippagunta :

I want J2ee enginee to issue a sso ticket and SAP system is the accept system

Anilkumar Vippagunta :

This document help, but i have done everything according the document. This problem occured

Show replies
Show replies
Former Member
‎08-12-2005 3:23 PM
0 Kudos

Sorry, the second is for NagaKishore Vankayala

Former Member
‎08-12-2005 3:33 PM
0 Kudos

Hi Kevin

If you want the issuer to be J2EE engine and accept system to be SAP R/3 then you need to configure R/3 to accept the tickets. For this refer to the section

3.2 SAP Web AS ABAP Configuring the SAP Web AS ABAP to Accept SAP Logon Tickets

in the document link i provided.

Regards

NagaKishore V

Former Member
‎08-18-2005 5:00 PM
0 Kudos

Hi,NagaKishore:

I have done these.

I think my ABAP system is configured ok

Some other people help me to check that the logon ticket didn't contain an ABAP UserID, maybe this is the problem.

I should configure the UME or use mapping, but whe I tried user mapping, still failed, I am expecting the further solution

Former Member
‎08-22-2005 5:42 AM
0 Kudos

Hi Kevin,

Using which username you are login into your webdynpro application?

Username at WAS as well as SAP R/3 should be equal no matter of password.

So, do one thing. create one Username in WAS with same name as in SAP R/3.

Then try again using this username.

Regards,

Bhavik

Former Member
‎08-23-2005 2:03 AM
0 Kudos

Hi, Bhavik:

Thanks for your answer.

I have resolved this problem .

Former Member
‎08-12-2005 3:16 PM
0 Kudos

Hi,

Yes.With your J2EE engine hostname and port only.

It will display security alrert popup with "Yes/No" options.

That means that your engine is accepting the certificates.

Regards, Anilkumar

Show replies
Show replies
Ask a Question