Skip to Content
0
Oct 27, 2015 at 08:32 AM

WinAD SSO is not working after configuring keytab file

872 Views

Hello All,

We have successfully implemented WIn AD SSO on SAP BO 41 SP5 but after configuring keytab file; WinAD SSO is not working successfully.

We have followed following procedure:

1. Generated keytab file and placed it in c:\windows of BO Server

2. Stopped tomcat

3. Added following line in global.properties

idm.keytab=C:/WINDOWS/bosso.keytab

4. Removed wedgetail line from java options in tomcat configuration.

5. Restarted tomcat

After this only we are not able to find 'credentials obtained' in stderr file in tomcat logs.

We have special characters like %,@,^ etc. in our service account's password.

When we tested with kinit command it says pre authentication failed and gives the attached error message.

We could also see that, some blogs says remove the special characters from service account password but same has not any valid SAP note, so our infra team is reluctant to do so.

Thanks

Kushal

Attachments

kinit error.PNG (18.8 kB)