Skip to Content
Former Member
Aug 03, 2006 at 05:45 PM

Kerberos authentication - UME non-ADS data source


Trying to set up SSO to Portal iaw SAP help doc & OSS 935644 but need some help in the details.

Enviroment is:

portal ume data source:Other-dataSourceConfiguration_abap.xml (connected to and R/3 system)


MS ADS is the KDC (R3 userid = portal id = AD id)


Does the xml need to have the "kpnprefix" mapped to "uniquename" or something else or at all.

Does xml need to have krb5principalname mapped in the xml and if so to what?

Is the syntax of krb5principal "host/<host-fqdn>"?

Does custom attribute krb5principal name have to be set for every user?

The documentation in sap helpfiles and oss note 935644 seems inconsistent and incomplete. Is there a better source?