cancel
Showing results for 
Search instead for 
Did you mean: 

is it SSO problem

Former Member
0 Kudos
78

Hi Experts,

I installed bp for Learning Solution 300 on EP6.0 SP16. It has one BSP iView. The iview is assgined to a page and page to workset and worset to a role. Couple of Portal User ID was assgined this role. SAPR/3 user ids same as portal user ids were assigned to IT105 of PERNR in t-code 'pa30'.

We are using SAP logon ticket method for SSO with ECC5.0.

I logged into portal with one user id and tested the application. The corresponding PERNR was assigned some qualifications, profile match up etc. in the backend. The values are getting updated in the portal.

But when I logged into portal with another user id, I am seeing the same qualifcations of the last 'PERNR' instead of the qualificaitons of 'PERNR' assgined to this User ID.

Could you please tell me. what is happening here. Is it the problem of SSO?

however i see, in RZ10,

login/create_sso2_ticket value as 2.

Looking farward to your answers.

Thanks!

Siribabu

Accepted Solutions (1)

Accepted Solutions (1)

raja_thangamani
Active Contributor
0 Kudos

login/create_sso2_ticket value should be 1 instead of 2.

Raja T

Former Member
0 Kudos

Raja,

Thanks for replying to me.

How important it is to set the login/create_sso2_ticket value.

The value login/accept_sso2_ticket=1, to make the R/3 server to accept tickets from J2EE server.

How should I check, after the BSP application is tested, R/3 server received the SAPLOGON ticket?

raja_thangamani
Active Contributor
0 Kudos

Sorry I got confused..here is the correction..

Enabling sso via the following profile parameters should help:

login/accept_sso2_ticket = 1

login/create_sso2_ticket = 2

<b>Check your SSO cookies..</b>

To test, execute the BSP Application <b>SYSTEM</b> & Page <b>sso2test.htm</b>. It will tell you..

Raja T

Former Member
0 Kudos

I tested the page sso2test.htm. Then it again asked for the user id and password.

It should not ask for the user id and password, right?

I entered the user id and password for the backend system,

the following line displayed in the page.

"This page moved to ../system_test/test_sso2.htm. "

I clicked the url link " ../system_test/test_sso2.htm. "

It took me another page. The following error is displayed in the this page.

Service cannot be reached

What has happened?

URL http://<hostname>.<domain name>com:8000/sap/bc/bsp/sap/system_test/test_sso2.htm call was terminated because the corresponding service is not available.

Note

The termination occurred in system HCD with error code 403 and for the reason Forbidden.

The selected virtual host was 0 .

What can I do?

Please select a valid URL.

If you do not yet have a user ID, contact your system administrator.

ErrorCode:ICF-NF-http-c:000-u:SAPSYS-l:E-i:scrap_HCD_00-v:0-s:403-r:Forbidden

HTTP 403 - Forbidden

Your SAP Internet Communication Framework Team.

I checked in SICF,

yes there is no node for 'system_test' in the ICF.

could you provide more advice on this?

Thanks!

raja_thangamani
Active Contributor
0 Kudos

In Tcode SICF goto default_host-->Sap->bc->bsp->sap->system_test, rite click & actiavte the service.

Then execute the sso2_test.htm. YOu will get the pop-up to get the user id & pwd.

ansd follow the steps which was shown in the browser..

Raja T

Former Member
0 Kudos

I rectified the problem. It involved swapping of public keys front end system and backend system in t-code 'strust'.

Thank you for all your support.

Answers (0)