Skip to Content
0
Former Member
Jul 31, 2016 at 06:43 PM

SSO from Fiori to BO not working

265 Views

Dear Expert,

We want to establish SSO from Fiori launchpad (Gateway) to BO. We have completed folllowing configuration

1. We have set following parameter in BW and Gateway system

-login/create_sso2_ticket = 2

-login/accept_sso2_ticket = 1

2. Create and exchange System PSE

- Exchanged system PSE between BW anf Gateway system

- Created BO cerficate, imported it in BW and Gateway System

-

- Added certficate to ACL

3. Adding an SAP Entitlement System

- Added BW and GW system as entitlment system

- Imported Roles from GW and BW system

- Mapped user alias, having both system assigned (BW and GW)

4. Enable SSO for Open Document

- Following parameter has been set for Open Document properties in custom folder

- authentication.default=secSAPR3

- authentication.visible=true

- sso.types.and.order= sapLogonToken, trustedX509, sapSSO, trustedIIS, trustedHeader, trustedParameter, trustedCookie, trustedSession, trustedUserPrincipal, trustedVintela, vintela, infoview, siteminder

- logon.allowInsecureEmbedding=true

We have BO installed as distributed system installation. In HTTP trace I can see that

-

- BO Web server is in *abc.com domain

- CMS is in *ent.abc.com domain

I can now only imagine if domain could be issue? as I understand all system in scope should be one domain

-

- SSO is not working, do you have any hint ?

- Any hint would be really appriciated

Regards,

Kunal Salunkhe