Skip to Content
0
Apr 27, 2016 at 08:15 PM

GRC 10.1 End user Logon SSO with LDAP

855 Views

Hello All,

Could you please help me in configuring SSO between LDAP and GRC for End user logon funtionality.I do not see a post which talks clearly talks about this

I have configured the LDAP server in GRC and created a LDAP Connector which is working fine and our security team is able to sync all the LDAP Users into GRC system.

As part of GRC ARM End user Logon now I need to configure SSO between LDAP and GRC

user should be able to access GRC system with his LDAP authentication for requesting SAP access in the landscape.

We don’t create a ID for the User in SAP GRC but he will be able to access GRC system with his LDAP authentication.

if this can be achieved by exchanging the certificates between LDAP and GRC.

What kind of certificate should i ask our LDAP team to provde to add in strust of GRC.

i have gone through sap notes 1733442 which only talks about approaches to follow but ,there is no detailed process availabe for it.

im trying to acheieve SSO by the below approach as explained in the note

SSO via Browser with Certificate Auth (As we do in SAP)

1 Sync all AD users into GRC ABAP without password. -

2 Setup Certificate issuer to Authenticate against AD.

3 Setup GRC ABAP to trust that Certificate Authority/issuer

4 Login into Certificate Generator App on computer get the certificate in browser, access GRC 10 application URL

Please let me know.

Regards,

Shakeel Samdani

Message was edited by: Matthias Kaempfer