cancel
Showing results for 
Search instead for 
Did you mean: 

SSO btween sap portal and sap BOE with different domain

Former Member
0 Kudos
425

Hi,

i am working on scnarion where in there is a specific requirement to configure SSO between my portal and SAP BOE system.

The idea behind that is to seemlessly integrate the SAP BOE with sap portal , but sap portal and sap BOE in differnt domain.

can any one please help me how to reslove this .

Thanks in advance

RAMA

Edited by: Ramakullay Challa on Apr 17, 2011 5:36 PM

Accepted Solutions (0)

Answers (2)

Answers (2)

former_member194211
Contributor
0 Kudos

Hi Ramakullay,

Try creating a host entry for your BOE server with same domain as that of Portal.

If Portal link is Portal.<domain Name>.com, then create a host entry for BOE server as,

<IP address> BOE server name.<Domain same as Portal>.com

Thanks.

Sushil

Former Member
0 Kudos

Hi,

The host entry solution is just a workaround for testing.

This a very bad solution to deploy for all users in production.

The good solutions have already been given : domain relaxing if possible or reverse proxy in the same domain.

Regards,

Olivier

former_member201257
Active Contributor
0 Kudos

If your domains for portal and BOBJ only differ in the sub domian, then you can use domain relaxation to achieve the cross domain SSO.

In this, you can adjust the property ume.logon.security.relax_domain.level according to your needs.

For example, if your portal is in domain xyz.intra.com (portal url being portal.xyz.intra.com) and if your BOBJ is in domain abc.intra.com (BOBJ url being bobj.abc.intra.com),

then you will need to set ume.logon.security.relax_domain.level = 2.

Then, the portal certificate will be valid for all the sub domains of *.intra.com

*********************

If your portal and BOBJ are in completely different domains, you can use some kind of proxy mechanism (Web Dispatcher or some other reverse proxy mechanism for example) and configure URLs that are in the same domain for your EP and BOBJ servers.

So, you could configure a proxy like myportal.mycompany.com for your portal and mybo.mycompany.com for your BOBJ server.

Then the two servers will be in the same domain and the certificate issued by the portal should be good for the BOBJ server for SSO to work.

Hope that helps !!

- Shanti