on 01-10-2006 4:34 PM
Hi!
I am a newbie and processing the "SAP Exchange Infrastructure 3.0 Installation" step by step. When I have to import the SAP Exchange Profile with user XISUPER I get every time following error:
403 Forbidden
You are not authorized to view the requested resource.
Details:
No details available
To user XISUPER I have granted all required roles.
Instead of user XISUPER I have used J2EE_ADMIN. This had worked fine until the point "Creating RFC Destinations in the ABAP Environment". Here I have to use user XIISUSER. When I test my connection to INTEGRATION_DIRECTORY_HMI with following settings:
Connection type: H
User: XIISUSER
Authentication: Basic
Timeout: 30000
I get following error message:
HEADER NAME HEADER VALUE
esponse_line HTTP/1.1 403 Forbidden
erver_protocol HTTP/1.1
tatus_code 403
tatus_reason Forbidden
nnection close
t-cookie JSESSIONID=(secat2_S01_00)ID4374050DB871114645705230010End; Version=1; Path=/
t-cookie saplb_*=(secat2_S01_00)4374050; Version=1; Path=/
agma no-cache
che-control no-cache
pires 0
ntent-type text/html
ntent-length 1506
rver SAP J2EE Engine/6.40
te Tue, 10 Jan 2006 10:46:04 GMT
HTTP BODY
...
Helvetica" size="3" color="#000000"><b> You are not au
orized to view the requested resource.</b></font></p>##<p><font face="
ial, Verdana, Helvetica" size="2" color="#000000"><table><tr><td valig
"top"><b> Details:</b></td><td valign="top"><PRE>No details avail
le</PRE></font></td></tr></table></font></p>##</body>##</html>##
Time (ms) 9.482
Has anybody an idea?
Thanks in advance
Christian
Hi Christian,
This typically occurs if the XI service user passwords are incorrect.
Has anybody changed the XI service user passwords recently? Was this working before?
Check out these OSS notes and see if they help:
751856 HTTP 403 during cache refresh of the adapter framework
721548 Changing the passwords of the XI Service Users
736312 Activating all XI ICF services
regards,
Rex
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thank you for your answer.
I have read all OSS notes and done all the required steps. It doesn't work. From the very beginning it was not working with xi-users, only j2ee_admin was accepted. The problem ist not an authentication but an authorization problem. I assume that I have to grant proper authorization rights on the J2EE-site. Till now I don't know how...
Regards
Christian
Hi Chris,
>>>but an authorization problem. I assume that I have to grant proper authorization rights on the J2EE-site
have a look at the configuration guide:
at roles assigned to service users
http://help.sap.com/saphelp_nw04/helpdata/en/56/361041ebf0f06fe10000000a1550b0/content.htm
Regards,
michal
This may not help but make sure xisuper has:
SAP_ALM_ADMINISTRATOR
SAP_ALM_CUSTOMIZER
SAP_BC_AI_LANDSCAPE_DB_RFC
SAP_SLD_ADMINISTRATOR
SAP_SLD_CONFIGURATOR
SAP_SLD_DEVELOPER
SAP_SLD_GUEST
SAP_SLD_ORGANIZER
SAP_XI_ADMINISTRATOR
SAP_XI_ADMINISTRATOR_ABAP
SAP_XI_ADMINISTRATOR_J2EE
SAP_XI_BPE_ADMINISTRATOR_ABAP
SAP_XI_BPE_CONFIGURATOR_ABAP
SAP_XI_BPE_MONITOR_ABAP
SAP_XI_CONFIGURATOR
SAP_XI_CONFIGURATOR
SAP_XI_CONFIGURATOR_ABAP
SAP_XI_CONFIGURATOR_J2EE
SAP_XI_CONTENT_ORGANIZER
SAP_XI_CONTENT_ORGANIZER_ABAP
SAP_XI_CONTENT_ORGANIZER_J2EE
SAP_XI_DEMOAPP
SAP_XI_DEVELOPER
SAP_XI_DEVELOPER_ABAP
SAP_XI_DEVELOPER_J2EE
SAP_XI_MONITOR
SAP_XI_MONITOR_ABAP
SAP_XI_MONITOR_J2EE
in su01.
rgds
Jim
Privet Michal!
Jipi, I have found the problem. In security provider of virtual administrator I had to map manually the users to security roles. But why? The groups are all mapped to the security roles and my user belongs to these groups or not? Properly because the function "Assign application roles to user groups" doesn't work. But how can I make it to work?
Greetings
Christian
User | Count |
---|---|
84 | |
10 | |
10 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.