Skip to Content
avatar image
Former Member

SSO between SUS and SRM

dear experts,

i need your help because we are trying to configure the following scenario:

we have in the same system, two clients. One client is SUS and one client is SRM. Our need is to logon on the SUS web part (service srmsus) and once we are logged on SUS jump to MWBC on SRM without specify the user and pass, and the user that we use to logon on SUS is diferent that the user mapped on the SRM.

is this possible? do you have any information about this?

we only have this system, we have no portal anywhere.

thanks a million in advance

best regards


Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Best Answer
    Apr 01, 2014 at 04:08 PM

    Yes it's possible if you configure SSO so that it works independently in both clients. I don't think you can use the assertion ticket or security session from one client in another client, especially since the user account names are different. For example SPNEGO for ABAP (part of NWSSO), SAML or X.509 would work.

    Add comment
    10|10000 characters needed characters exceeded

    • Hi all, I am a colleague of David and I am continuing the implementation of the SSO between SRM and SUS.

      Just to resume, as David says we are willing to configure the access to SRM BSP through HTTPS for external users and then redirect them to the SUS system throught NWBC with asking them password authenticacion between SRM and SUS.

      For understanding, the external users will connect to the BSP from internet (HTTPS) and authenticated with a user created in ABAP (client 600) this user should be able to logon to the link provided in the customized menu without user/password  to access the NWBC connected to SUS (client 800).

      The user will have the same ID in both client (600 and 800)

      We dont have Java, users created in SUS and SRM will not be maintained through Active directory.

      Is it mandatory to use SLC and SLS for that scenario ?

      Is it possible to just configure a trusted relation between client to allow BSP redirection to NWBC ?

      thanks a lot in advance.