Skip to Content
avatar image
Former Member

SAP ABAP Single sign on

Dear Members,

Need valuable comments and solutions with regards to my question below.

My requirement is to configure Single sign on for ABAP application server. I have 2 requirements

1.) This is my SRM server (EHP2 FOR SAP SRM 7.0) where in ABAP SNC configured based on below document 2 video

--> Successfully configured and single sign on working based on AD user id and password.

2.) secondly I want to configure a solution for /sap/bc/nwbc/srm based on 8001 or 8000 ports. Let me make one thing clear this is only ABAP based server.

Always I am getting a pop-up for user id and password. But the problem is now the authentication is done from AD not from the ABAP user master record.

How can I achieve this? I tried the 2 video step by step but still I am facing issue, I traced from SPNEGO transaction and found the below:

SPNegoValidateToken: Error when parsing received SPNego token via sec_kerberos_spnego_ParseToken with error return code:

I am not clear what is missed by me and what yet had to be implemented.

Basically how can I achieve single sign on for 8000 ports on ABAP system.

Appreciate quick response.

Thanks & Regards,

Mohammed Imran

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • avatar image
    Former Member
    Mar 25, 2015 at 12:43 PM

    Hello Mohammed,

    Assuming you have SSL Server PSE and SSL Client PSE setup and are trusted by your company CA, your company CA will then need to issue a user certificate for the user that you wish to login into SAP with ( I assume this will be your AD userid) .

    This user certificate will need to be imported into your browser and some additional steps on ABAP to ensure it recognizes the user certificate when presented by the browser.

    Check the following blog for pointers.

    Enabling X.509 based SSO for the SAP Web AS ABAP with your own CA based on OpenSSL for Windows



    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Former Member

      Thanks for the prompt reply, I've checked the note and every point in it. Let's see who will reply with an appropriate solution. Regards, Mohammed Imran