on 08-19-2014 10:07 AM
Hi,
Trying out the REST sdk (with 4.1) and have hit a problem from the start. I guess i'm missing some config somewhere but here's the issue...
I create an enterprise user in the CMC in the everyone group...
Using POSTMAN in Chrome I hit the logon service with...
http://server:6405/biprws/logon/long
POST
Accept application/json
Content-Type application/json
{
"userName": "testREST",
"password": "testREST",
"auth": "SecEnterprise"
}
if works and returns "logonToken"...
I then try as an Active Diretcory user (the one I used to create the test enterprise account who is a member of administrators..me.) CMC logon is fine using AD and the standard /BI logon is configured for SSO and also logs in fine.
so I go with...
{
"userName": "JBRAKER"
"password": "myADpassword"
"auth": "SecWinAD"
}
It returns error "FWM 00006" with Active Diretcory Authentication failed to log you on.
I've tried using @domain and changing server url to FQDN but no joy.
Any ideas what i'm missing? As mentioned the server is setup for AD SSO but i see nothing to configure for the REST services apart from the URL in the CMC.
Thanks!
Jeremy
Did you configure properly Kerberos on WACS?
- Active Directory Configuration Settings
+ Krb5.ini File Location:
+ bscLogin.conf File Location:
For SSO login you have to configure WACS with Kerberos + SSO :
- Web Services SDK and QaaWS Service
+ Authentication Settings
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
HTTP 401 Unauthorized.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Daniel,
I tried to get /logon/adsso, I got the error "VSJ authentication was not performed for this request". Again, I'm not looking for a solution for password-less SSO login. But,with active directory logon where the user enters the credentials
Rogerio,
Our network admin are planning to close port 6400 and provide only LoadBalanced URL with Only port 80 available. So, I want to switch from EnterpriseSession to RestFul WS login method. Hope you got my situation.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I'm using Java. "FWM 00006.Active Directory Authentication failed to log you on" is the error message. What you suggested is not really bad, there is an option in which I can login with IEnterpriseSession.logon method.Get the serializiedsession and pass it to /logon/token url and get the logontoken. But I want to directly use /long/logon method.
Hi,
I think that the issue here is that you need to get the logonToken with Enterprise authentication, as stated in the manual,
Regards,
Rogerio
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello, I'm also facing the same issue. Any answers. I can successfully login using WindowsAD using SAP BO Java SDK, but not through RestFul SDK. Please help.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
What response do you get when calling:
GET .../biprws/logon/adsso
If configured correctly, this should return a logonToken in XML or json, depending on your Accept header.
there is also a great blog on the setup written by Craig Wilson: Craig Wilson - Insight into Business Intelligence: Major achievement! Single Sign On through Busines...
Hello Jeremy,
Did you follow the documentation?
http://help.sap.com/businessobject/product_guides/sbo41/en/sbo41_bip_rest_ws_en.pdf
Section 5.3 for the configuration
Section 6.4 for the logon
Anthony
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello,
Have you tried /logon/adsso ?
Bernd
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
86 | |
10 | |
10 | |
9 | |
6 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.