cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Configure NetWeaver App Server, Java EE 5 as a Service Provider

Former Member

on ‎06-11-2007 7:58 AM

0 Kudos

Hi All,

I am trying to establish SSO between SAP NetWeaver Application Server, Java EE 5 and an Identity Federation product using SAML Artifact profile.

Here, I am planning to use NetWeaver as a Service Provider. The SAML Protocol version that I will use is SAML1.0/SAML 1.1.

Can anyone provide me any pointer to setup this environment?

Thanks,

Shyam

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Vlado
Advisor
Advisor
‎06-11-2007 8:35 AM
0 Kudos

http://help.sap.com/saphelp_nwce10/helpdata/en/45/b7a61461dc0063e10000000a11466f/frameset.htm

HTH!

-Vladimir

Show replies
Show replies
Former Member
‎06-12-2007 12:22 PM
0 Kudos

Hi Vladimir,

I went through the link to set-up NetWeaver as a Service Provider and it was really very helpful.

Actually, what I am trying to achieve is I have to configure SSO (Single Sign-On) between NetWeaver (as a Service Provider) and a Identity Federation Management Product (as an Idenity Provider) using SAML Artifact profile.

Configuration at both (Identity Provider and Service Provider) end has been done. Now, I am wondering how to validate this setup? Could you please help me by providing link or example to validate this functionality.

Thanks,

Shyam

juergen_kremp
Explorer
‎07-12-2007 7:49 AM
0 Kudos

Hello Shyam,

the ultimate function test can only be the execution of the end-to-end scenario itself.

From the SAP NetWeaver perspective the means that from somewhere an HTTP-GET request is sent to a web application with SAMLLoginModule in its login module stack, containing a SAML-Artifact, that resolves via SourceID to a configured partner with maintained HTTP destination for assertion resolution to fetch an assertion that carries a SubjectIdentifier token with a username that is known to the user management of the NetWeaver.

When you have successfully configured the "SAML Test Application", the web application accessible at http://<host>:<port>/samlssodemo_dest/destination is prepared to intercept SAML artifacts in the GET request and contact a source site for assertion resolution. You just need to change the configuration of the partner "SAML SSO Demo Application" to your source site and ensure that it populates the NameIdentifier as descibed above.

Kind regards,

Juergen Kremp

NW F SIM

Ask a Question