cancel
Showing results for 
Search instead for 
Did you mean: 

Single Sign-on configuration and EP migration

Former Member
0 Kudos

Hi,

We are planning to upgrade EP6/SP9 to EP7. We have single signon configured in the portal for SAP systems. Will the upgrade impact any of the existing configuration? What all should we need to do with respect to SSO before upgrading. Any help/docs would be of great help

regards,

Sujesh

Accepted Solutions (0)

Answers (1)

Answers (1)

daniel_davinci
Active Contributor
0 Kudos

Hi Sujesh,

What configuration are you using for SSO? IISProxy?

Yes it will still work after the upgrade but it is not supported. You should look at implementing Kerberos authentication if this is the case.

Cheers

Daniel

Former Member
0 Kudos

Thanks Daniel for the info.

I need to get the exact configuration details and i'll get back to you. Mean while can you tell me what alll SSO config types will not be affected by upgrade and which all will need a re configuration.?

The message "Yes it will still work after the upgrade but it is not supported", not supported means not recommended is it? or is it that it will get affetced. Please clarify

Thanks a lot in advance,

regards,

Sujesh

daniel_davinci
Active Contributor
0 Kudos

Hi Sujesh,

There is no mention of making changes for any specific configuration to 'keep' SSO after the upgrade, so in theory if it works now it should continue to work.

I only have direct experience with SSO using IISProxy for this upgrade so I cannot talk from experience with other configurations.

Yes, not supported means not recommended although it does work well the Kerberos authentication is better for various reasons. one reason being you can remove the need for the middleware (IIS) to connect your users since the login connects directly to the java stack.

Cheers

Daniel

Former Member
0 Kudos

Thanks again Daniel.

So if i understood you correctly, you have implemented IISPORXY type of SSO and it is not affected by the upgrade of the portal to EP7.

And even if kerberos is being implemented, will not be affected by the upgrade

Pls clarify my confusion

regards,

Sujesh

daniel_davinci
Active Contributor
0 Kudos

Correct, This has been my understanding/experience. Neither implementations of SSO should have any problems or require any additional configuration after the upgrade.

My suggestion is if you are currently using IIS Proxy to switch to Kerberos after. But this is only a suggestion, IISProxy WILL still work.

Cheers

Daniel

Former Member
0 Kudos

Hi,

We are using SAP LOGON TICKET for Single Sigon to SAP systems. Any impact on this while upgrading to EP7?

regards,

Sujesh

Former Member
0 Kudos

Hi Sujesh,

You need to add new sap logon ticket (verify file) exported from SAP EP7 to all SAP systems.

Refer this http://help.sap.com/saphelp_nw2004s/helpdata/en/d3/41c8ecb31d11d5993800508b6b8b11/frameset.htm

Regards,

Vishal

PS: Reward points for helpful answer