Skip to Content
0
Former Member
Apr 17, 2014 at 08:12 AM

SAP NW 7.40 : SPNego authentication failed

371 Views

Hello,

I used SPNego on NW 7.01.

I have upgraded my system from NW7.01 to NW 7.40.

I have regenerated the spnego by SPNego Wizard.

I have recreated the entry spnego by offlinecfgeditor (template=spnego).....I had to delete it after upgrade to be able to connect to the system.

Now, I can't connect using SPNego :

LOGIN.FAILED

User: N/A

IP Address: 128.41.15.233

Authentication Stack: sap.com/SSOEAR*login

Authentication Stack Properties:

policy_domain = /login

realm_name = Upload Protected Area

Login Module Flag Initialize Login Commit Abort Details

1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule SUFFICIENT ok false true

#1 trusteddn1 = CN=D39,OU=DSIRH,OU=DGRH,O=SAP Trust Community,C=DE

#2 trustediss1 = CN=D39,OU=DSIRH,OU=DGRH,O=SAP Trust Community,C=DE

#3 trustedsys1 = D39,000

#4 ume.configuration.active = true

2. com.sap.security.core.server.jaas.SPNegoLoginModule OPTIONAL ok exception true SPNego authentication has failed during previous attempt.

#1 com.sap.security.spnego.legacy = false

#2 com.sap.spnego.creds_in_thread = true

#3 com.sap.spnego.jgss.name = DJ1SAPSSO@EMEA.LOREAL.INTRA

#4 com.sap.spnego.uid.resolution.attr = krb5principalname

#5 com.sap.spnego.uid.resolution.mode = simple

3. com.sap.security.core.server.jaas.CreateTicketLoginModule SUFFICIENT ok false true

#1 ume.configuration.active = true

4. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule REQUISITE ok false false

5. com.sap.security.core.server.jaas.CreateTicketLoginModule REQUISITE ok false true

#1 ume.configuration.active = true

No logon policy was applied


Can you help me?

Regards