Skip to Content

LDAP without using Siteminder

May 03, 2017 at 12:32 PM


avatar image

Hello Experts,

I am using LDAP authentication for SAP BI4.2 SP3. Now for SSO I do not want to go for Siteminder which is a third party application and would require license.

Do I have any other options that can be used to implement SSO with LDAP.



10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Tim Ziemba
May 17, 2017 at 02:53 PM

We actually recommend not using siteminder plugin, it's been deprecated for a while and no longer being developed.

trusted authentication in KBA 1593628 is the method for al other non AD oir SAP SSO types. That KBA will show you how to setup BI but the tricky part is delivering the username, which SAP doesn't document as it's up to each customer environment and SSO mechanism available.



Show 2 Share
10 |10000 characters needed characters left characters exceeded

But if we use this method, any user can login using any other users account, for instance even if I do not have administrator password for SAP BO, i can enter http://serverName:8080/BOE/BI?user=Administrator and I will be able to access Administrator BI Launchpad.

So there would not be any security to SAP BO, in this case how do I achieve security.


that KBA is only the setup, query_string is not the solution just the test. You must provide your username via one of the other methods, and secure yourself via SSL, IP resctiction, etc