- SAP Community
- Products and Technology
- Technology
- Technology Q&A
- Issuer of SSO ticket is not authorized
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Issuer of SSO ticket is not authorized
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 01-28-2008 8:55 AM
Hi
we have EP of SP13. the Ep fetches the details of the employees and the hr related documentation was going thro the portal by SSO. last week on thursday the SSO certificate got expired. so we have created a new certificate as per the procedure given in the SAP note and it is successfully created and imported in all concern servers. after this we have logged in to the portal it gave us the following error :
com.sap.mw.jco.JCO$Exception: (103) RFC_ERROR_LOGON_FAILURE: Issuer of SSO ticket is not authorized
at com.sap.mw.jco.MiddlewareJRfc.generateJCoException(MiddlewareJRfc.java:418)
at com.sap.mw.jco.MiddlewareJRfc$Client.connect(MiddlewareJRfc.java:835)
at com.sap.mw.jco.JCO$Client.connect(JCO.java:3129)
at com.sap.mw.jco.JCO$Pool.initPool(JCO.java:4599)
at com.sap.mw.jco.JCO$PoolManager.getClient(JCO.java:5980)
at com.sap.mw.jco.JCO$PoolManager.getClient(JCO.java:5935)
at com.sap.mw.jco.JCO.getClient(JCO.java:8216)
at com.sap.tc.webdynpro.serverimpl.core.sl.AbstractJCOClientConnection.getClient(AbstractJCOClientConnection.java:393)
at com.sap.pcuigp.xssfpm.wd.BackendConnections.connectModelInternal(BackendConnections.java:261)
at com.sap.pcuigp.xssfpm.wd.BackendConnections.initBackend(BackendConnections.java:226)
at com.sap.pcuigp.xssfpm.wd.BackendConnections.connectModel(BackendConnections.java:159)
at com.sap.pcuigp.xssfpm.wd.wdp.InternalBackendConnections.connectModel(InternalBackendConnections.java:183)
at com.sap.pcuigp.xssfpm.wd.FPMComponent$FPM.connectModel(FPMComponent.java:699)
at com.sap.pcuigp.xssfpm.wd.BackendConnections.init(BackendConnections.java:138)
at com.sap.pcuigp.xssfpm.wd.wdp.InternalBackendConnections.init(InternalBackendConnections.java:179)
at com.sap.pcuigp.xssfpm.wd.FPMComponent.wdDoInit(FPMComponent.java:170)
at com.sap.pcuigp.xssfpm.wd.wdp.InternalFPMComponent.wdDoInit(InternalFPMComponent.java:110)
at com.sap.tc.webdynpro.progmodel.generation.DelegatingComponent.doInit(DelegatingComponent.java:95)
at com.sap.tc.webdynpro.progmodel.controller.Controller.initController(Controller.java:215)
at com.sap.tc.webdynpro.progmodel.controller.Controller.init(Controller.java:200)
at com.sap.tc.webdynpro.clientserver.cal.ClientComponent.init(ClientComponent.java:346)
at com.sap.tc.webdynpro.clientserver.cal.ClientApplication.init(ClientApplication.java:370)
at com.sap.tc.webdynpro.clientserver.task.WebDynproMainTask.execute(WebDynproMainTask.java:608)
at com.sap.tc.webdynpro.clientserver.cal.AbstractClient.executeTasks(AbstractClient.java:59)
at com.sap.tc.webdynpro.clientserver.cal.ClientManager.doProcessing(ClientManager.java:248)
at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doWebDynproProcessing(DispatcherServlet.java:154)
at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doContent(DispatcherServlet.java:116)
at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doGet(DispatcherServlet.java:48)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:95)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:159)
after putting the log and tracing of few services all we have got few trace files. but we could not determine the exact cause.
i will give trace file details:
#1.5#001560AD3200003C00006E5F00001C20000444C459E4AF78#1201510019297#com.sap.engine.services.security#sap.com/irj#com.sap.engine.services.security#J2EE_GUEST#34921####96729510cd7d11dcb004001560ad3200#SAPEngine_Application_Thread[impl:3]_27##0#0#Debug##Java###Login module from authentication stack does not authenticate the caller.#2#com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule#ticket# #1.5#001560AD3200003C00006E6000001C20000444C459E4B02F#1201510019297#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.abort()#J2EE_GUEST#34921####96729510cd7d11dcb004001560ad3200#SAPEngine_Application_Thread[impl:3]_27##0#0#Path##Plain###Entering method# #1.5#001560AD3200003C00006E6100001C20000444C459E4B071#1201510019297#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####96729510cd7d11dcb004001560ad3200#SAPEngine_Application_Thread[impl:3]_27##0#0#Debug##Plain###Internal Login Module data has been reset.# #1.5#001560AD3200003C00006E6200001C20000444C459E4B0B4#1201510019297#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####96729510cd7d11dcb004001560ad3200#SAPEngine_Application_Thread[impl:3]_27##0#0#Path##Java###Exiting method with #1#true#
#1.5#001560AD3200003C00006E6300001C20000444C459E4B10B#1201510019297#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.abort()#J2EE_GUEST#34921####96729510cd7d11dcb004001560ad3200#SAPEngine_Application_Thread[impl:3]_27##0#0#Path##Plain###Entering method#
#1.5#001560AD3200003C00006E6400001C20000444C459E4B14D#1201510019297#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####96729510cd7d11dcb004001560ad3200#SAPEngine_Application_Thread[impl:3]_27##0#0#Path##Java###Exiting method with #1#true# #1.5#001560AD3200003C00006E6500001C20000444C459E4B1A0#1201510019297#com.sap.engine.services.security#sap.com/irj#com.sap.engine.services.security#J2EE_GUEST#34921####96729510cd7d11dcb004001560ad3200#SAPEngine_Application_Thread[impl:3]_27##0#0#Info##Plain###Cannot log info about the logon attempt because the user name is null.# #1.5#001560AD3200003C00006E6600001C20000444C459E4B832#1201510019297#com.sap.engine.services.security#sap.com/irj#com.sap.engine.services.security#J2EE_GUEST#34921####96729510cd7d11dcb004001560ad3200#SAPEngine_Application_Thread[impl:3]_27##0#0#Path##Java###Exception #1#: Access Denied.
java.lang.Exception
at com.sap.exception.BaseExceptionInfo.traceAutomatically(BaseExceptionInfo.java:1141)
at com.sap.exception.BaseExceptionInfo.<init>(BaseExceptionInfo.java:253)
at com.sap.engine.services.security.exceptions.BaseLoginException.<init>(BaseLoginException.java:129)
at com.sap.engine.services.security.login.FastLoginContext.login(FastLoginContext.java:223)
at com.sap.engine.system.SystemLoginModule.login(SystemLoginModule.java:90)
at sun.reflect.GeneratedMethodAccessor18763.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.getLoggedInUser(SAPJ2EEAuthenticator.java:86)
at com.sapportals.portal.prt.service.authenticationservice.AuthenticationService.getLoggedInUser(AuthenticationService.java:305)
at com.sapportals.portal.prt.connection.UMHandler.handleUM(UMHandler.java:96)
at com.sapportals.portal.prt.connection.ServletConnection.handleRequest(ServletConnection.java:186)
at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:522)
at java.security.AccessController.doPrivileged(Native Method)
at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:405)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.servlet.InvokerServlet.service(InvokerServlet.java:156)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:95)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:159)
Caused by: com.sap.engine.services.security.exceptions.BaseLoginException: Authentication did not succeed.
at com.sap.engine.services.security.login.ModulesProcessAction.run(ModulesProcessAction.java:135)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.services.security.login.FastLoginContext.login(FastLoginContext.java:154)
at com.sap.engine.system.SystemLoginModule.login(SystemLoginModule.java:90)
at sun.reflect.GeneratedMethodAccessor18763.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.getLoggedInUser(SAPJ2EEAuthenticator.java:86)
at com.sapportals.portal.prt.service.authenticationservice.AuthenticationService.getLoggedInUser(AuthenticationService.java:305)
at com.sapportals.portal.prt.connection.UMHandler.handleUM(UMHandler.java:96)
at com.sapportals.portal.prt.connection.ServletConnection.handleRequest(ServletConnection.java:186)
at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:522)
at java.security.AccessController.doPrivileged(Native Method)
at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:405)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.servlet.InvokerServlet.service(InvokerServlet.java:156)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:95)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:159)
#
#1.5#001560AD3200003C00006E6700001C20000444C459E4F181#1201510019313#com.sapportals.wcm.rendering.control.cm.WdfProxy#sap.com/irj#com.sapportals.wcm.rendering.control.cm.WdfProxy#J2EE_GUEST#34921####96729510cd7d11dcb004001560ad3200#SAPEngine_Application_Thread[impl:3]_27##0#0#Warning##Plain###No starturi was defined in the iView, using uri instead#
#1.5#001560AD320000250000626400001C20000444C459F4E69A#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.initialize()#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Entering method with ()#1#Subject: , javax.security.auth.login.LoginContext$SecureCallbackHandler@17e396d# #1.5#001560AD320000250000626500001C20000444C459F4E71F#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Debug##Java###The options of EvaluateTicketLoginModule in [] authentication stack are: [].#2#ticket#{ume.configuration.active=true}# #1.5#001560AD320000250000626600001C20000444C459F4E7C9#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.constructor(Map, Properties)#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Entering method with ()#1#{System-ID=EPP, sap.security.auth.configuration.name=ticket, sap.security.auth.context.object=Security Context : session (34921) for J2EE_GUEST created at Mon Jan 28 14:00:07 GMT+05:30 2008}, <null># #1.5#001560AD320000250000626700001C20000444C459F4E828#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Info##Java###got []: []#2#ume.configuration.active#true#
#1.5#001560AD320000250000626800001C20000444C459F4E88D#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Exiting method with #1#[Ljava.lang.Object;@1ec48cc# #1.5#001560AD320000250000626900001C20000444C459F4E8D3#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.getMergedOptions()#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Plain###Entering method# #1.5#001560AD320000250000626A00001C20000444C459F4E927#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Exiting method with #1#[Ljava.lang.Object;@19f89aa#
#1.5#001560AD320000250000626B00001C20000444C459F4E97F#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Debug##Java###The options of EvaluateTicketLoginModule in [] authentication stack after merge with UME properties are: [].#2#ticket#{ume.configuration.active=true, system=EPP, client=400, j_authscheme=basicauthentication, inclcert=0, alias=SAPLogonTicketKeypair, ume.logon.security.enforce_secure_cookie=FALSE, validity=8, keystore=TicketKeystore, password=}# #1.5#001560AD320000250000626C00001C20000444C459F4E9F5#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Debug##Java###The options of EvaluateTicketLoginModule in [] authentication stack after adding the default values are: [].#2#ticket#{ume.configuration.active=true, system=EPP, client=400, j_authscheme=basicauthentication, inclcert=0, alias=SAPLogonTicketKeypair, sap.security.auth.configuration.name=ticket, ume.logon.security.enforce_secure_cookie=FALSE, validity=8, keystore=TicketKeystore, password=}# #1.5#001560AD320000250000626D00001C20000444C459F4EA5A#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Plain###Exiting method# #1.5#001560AD320000250000626E00001C20000444C459F4EAF3#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.initialize()#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Entering method with ()#1#Subject: , javax.security.auth.login.LoginContext$SecureCallbackHandler@17e396d, {System-ID=EPP, sap.security.auth.configuration.name=ticket, sap.security.auth.context.object=Security Context : session (34921) for J2EE_GUEST created at Mon Jan 28 14:00:07 GMT+05:30 2008}, {ume.configuration.active=true}# #1.5#001560AD320000250000626F00001C20000444C459F4EB5F#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Debug##Java###The options of CreateTicketLoginModule in [] authentication stack are: [].#2#ticket#{ume.configuration.active=true}#
#1.5#001560AD320000250000627000001C20000444C459F4EBDD#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.constructor(Map, Properties)#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Entering method with ()#1#{System-ID=EPP, sap.security.auth.configuration.name=ticket, sap.security.auth.context.object=Security Context : session (34921) for J2EE_GUEST created at Mon Jan 28 14:00:07 GMT+05:30 2008}, <null># #1.5#001560AD320000250000627100001C20000444C459F4EC38#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Info##Java###got []: []#2#ume.configuration.active#true# #1.5#001560AD320000250000627200001C20000444C459F4EC94#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Exiting method with #1#[Ljava.lang.Object;@1070a2b# #1.5#001560AD320000250000627300001C20000444C459F4ECE0#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.getMergedOptions()#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Plain###Entering method# #1.5#001560AD320000250000627400001C20000444C459F4ED27#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Exiting method with #1#[Ljava.lang.Object;@12cad60# #1.5#001560AD320000250000627500001C20000444C459F4ED7D#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Debug##Java###The options of CreateTicketLoginModule in [] authentication stack after merge with UME properties are: [].#2#ticket#{ume.configuration.active=true, system=EPP, client=400, j_authscheme=basicauthentication, inclcert=0, alias=SAPLogonTicketKeypair, ume.logon.security.enforce_secure_cookie=FALSE, validity=8, keystore=TicketKeystore, password=}#
#1.5#001560AD320000250000627600001C20000444C459F4EDF3#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Debug##Java###The options of CreateTicketLoginModule in [] authentication stack after adding the default values are: [].#2#ticket#{ume.configuration.active=true, system=EPP, client=400, j_authscheme=basicauthentication, inclcert=0, alias=SAPLogonTicketKeypair, sap.security.auth.configuration.name=ticket, ume.logon.security.enforce_secure_cookie=FALSE, validity=8, keystore=TicketKeystore, password=}# #1.5#001560AD320000250000627700001C20000444C459F4EE58#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Plain###Exiting method# #1.5#001560AD320000250000627800001C20000444C459F4EEB6#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.login()#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Plain###Entering method# #1.5#001560AD320000250000627900001C20000444C459F4EF03#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Info##Java###Received no SAPLogonTicket. Authentication stack: [].#1#ticket#
#1.5#001560AD320000250000627A00001C20000444C459F4EF47#1201510020360#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Exiting method with #1#<null># #1.5#001560AD320000250000627B00001C20000444C459F4EFA2#1201510020360#com.sap.engine.services.security#sap.com/irj#com.sap.engine.services.security#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Debug##Plain###No user name provided.# #1.5#001560AD320000250000627C00001C20000444C459F4F497#1201510020360#com.sap.engine.services.security#sap.com/irj#com.sap.engine.services.security#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Exception #1#: Authentication did not succeed.
java.lang.Exception
at com.sap.exception.BaseExceptionInfo.traceAutomatically(BaseExceptionInfo.java:1141)
at com.sap.exception.BaseExceptionInfo.<init>(BaseExceptionInfo.java:253)
at com.sap.engine.services.security.exceptions.BaseLoginException.<init>(BaseLoginException.java:107)
at com.sap.engine.services.security.server.jaas.LoginModuleHelperImpl.throwNewLoginException(LoginModuleHelperImpl.java:520)
at com.sap.engine.services.security.server.jaas.LoginModuleHelperImpl.throwNewLoginException(LoginModuleHelperImpl.java:374)
at com.sap.engine.interfaces.security.auth.AbstractLoginModule.throwNewLoginException(AbstractLoginModule.java:411)
at com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule.login(BasicPasswordLoginModule.java:78)
at com.sap.engine.services.security.login.ModulesProcessAction.run(ModulesProcessAction.java:69)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.services.security.login.FastLoginContext.login(FastLoginContext.java:154)
at com.sap.engine.system.SystemLoginModule.login(SystemLoginModule.java:90)
at sun.reflect.GeneratedMethodAccessor18763.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.getLoggedInUser(SAPJ2EEAuthenticator.java:86)
at com.sapportals.portal.prt.service.authenticationservice.AuthenticationService.getLoggedInUser(AuthenticationService.java:305)
at com.sapportals.portal.prt.connection.UMHandler.handleUM(UMHandler.java:96)
at com.sapportals.portal.prt.connection.ServletConnection.handleRequest(ServletConnection.java:186)
at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:522)
at java.security.AccessController.doPrivileged(Native Method)
at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:405)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:95)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:159)
#
#1.5#001560AD320000250000627D00001C20000444C459F4F67A#1201510020375#com.sap.engine.services.security#sap.com/irj#com.sap.engine.services.security#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Debug##Java###Login module from authentication stack does not authenticate the caller.#2#com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule#ticket# #1.5#001560AD320000250000627E00001C20000444C459F4F729#1201510020375#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.abort()#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Plain###Entering method# #1.5#001560AD320000250000627F00001C20000444C459F4F773#1201510020375#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Debug##Plain###Internal Login Module data has been reset.# #1.5#001560AD320000250000628000001C20000444C459F4F7B5#1201510020375#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Exiting method with #1#true#
#1.5#001560AD320000250000628100001C20000444C459F4F80C#1201510020375#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas.abort()#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Plain###Entering method#
#1.5#001560AD320000250000628200001C20000444C459F4F84E#1201510020375#com.sap.security.core.server.jaas#sap.com/irj#com.sap.security.core.server.jaas#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Exiting method with #1#true# #1.5#001560AD320000250000628300001C20000444C459F4F8A2#1201510020375#com.sap.engine.services.security#sap.com/irj#com.sap.engine.services.security#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Info##Plain###Cannot log info about the logon attempt because the user name is null.# #1.5#001560AD320000250000628400001C20000444C459F4FEE1#1201510020375#com.sap.engine.services.security#sap.com/irj#com.sap.engine.services.security#J2EE_GUEST#34921####9714c880cd7d11dcc856001560ad3200#SAPEngine_Application_Thread[impl:3]_31##0#0#Path##Java###Exception #1#: Access Denied.
java.lang.Exception
at com.sap.exception.BaseExceptionInfo.traceAutomatically(BaseExceptionInfo.java:1141)
at com.sap.exception.BaseExceptionInfo.<init>(BaseExceptionInfo.java:253)
at com.sap.engine.services.security.exceptions.BaseLoginException.<init>(BaseLoginException.java:129)
at com.sap.engine.services.security.login.FastLoginContext.login(FastLoginContext.java:223)
at com.sap.engine.system.SystemLoginModule.login(SystemLoginModule.java:90)
at sun.reflect.GeneratedMethodAccessor18763.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.getLoggedInUser(SAPJ2EEAuthenticator.java:86)
at com.sapportals.portal.prt.service.authenticationservice.AuthenticationService.getLoggedInUser(AuthenticationService.java:305)
at com.sapportals.portal.prt.connection.UMHandler.handleUM(UMHandler.java:96)
at com.sapportals.portal.prt.connection.ServletConnection.handleRequest(ServletConnection.java:186)
at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:522)
at java.security.AccessController.doPrivileged(Native Method)
at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:405)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:95)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:159)
Caused by: com.sap.engine.services.security.exceptions.BaseLoginException: Authentication did not succeed.
at com.sap.engine.services.security.login.ModulesProcessAction.run(ModulesProcessAction.java:135)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.services.security.login.FastLoginContext.login(FastLoginContext.java:154)
at com.sap.engine.system.SystemLoginModule.login(SystemLoginModule.java:90)
at sun.reflect.GeneratedMethodAccessor18763.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.getLoggedInUser(SAPJ2EEAuthenticator.java:86)
at com.sapportals.portal.prt.service.authenticationservice.AuthenticationService.getLoggedInUser(AuthenticationService.java:305)
at com.sapportals.portal.prt.connection.UMHandler.handleUM(UMHandler.java:96)
at com.sapportals.portal.prt.connection.ServletConnection.handleRequest(ServletConnection.java:186)
at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:522)
at java.security.AccessController.doPrivileged(Native Method)
at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:405)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:95)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:159)
#
please check it anr revert
regards
bala
- SAP Managed Tags:
- SAP Enterprise Portal
Accepted Solutions (0)
Answers (4)
Answers (4)
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
yes the problem is resolved
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
hi
it is resolved and we have sorted the problem by reimporting and also we have upgraded the EP SP21 level patch
now there is diffrent problem arises. we have different Adobe interactive forms which has a button forms can be
saved in xml forms so even when u wnat to reload the dats we can do it.( prior version of adobe is 7.0.9
now i have updated the adobe to 8.1 now the we are getting the forms button which has options to
import or export to xml formats
is there any solution for this
regards
bala
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
hi
We have already done as the notes ( by using STRUSTSSO2) and implied all the procedures. i have done the deleteion and addition of the certificate
twice then also it does not happen. by taking taking downtime we are restarted the server as per sequence also it seems it is not wiorking.
since critical hr transcations are happening we are being doing the job from bottomline.
but no fruitful.
regards
bala
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Ok....here is my solution check it out.
SAP released this Note called 1083421 . There is a wizard called SSO2Wizard_700.ZIP which you can download from the Note. This note is valid since 23.12.2007 so I have to conclude this is fairly new. The wizard when downloaded can be accessed via http://<FQDN>:<port>/SSO2
...so this can help SSO logon ticket issues from the ABAP side and it automatically checks for inconsistencies. Its like the template Installer or the Support Tool we have for BI.
hope that helps..
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Hello,
Once you login to strustsso2 and import the certificate do not forget to do a check all and distribute all. As only this will distribute the certificate if there are more thank one application servers.
To check whether you have imported the certificate correctly login to server navigate to Tcode STRUSTSSO2 and open System PSE on the lefthand side and check that all application servers are in green if not reimport the certificate do a check all and distribute all.
Thanks & Regards,
Vijith
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Report Inappropriate Content
Bala,
Login to your Backend (R3/BI) with Admin credentials.
1.Go to Transaction STRUSTSSO2
2.Import the Portal Certificate in to your backend system.
3. Select and double click the imported certificate.
4. Click add to Certificate List.
5. Click Add to ACL,here you need to provide your Client and System name.
Client should be 000 (you should enter this default client) and System name should be correct.
6. Save the settings.
you shouldn't face the problem now.
If you still face the issue,let me know.
Regards,
Karthick Eswaran
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Colombia Production Number Range Retrieval from DIAN in Technology Blogs by SAP
- SAP GUI MFA with SAP Secure Login Service and Microsoft Entra ID in Technology Blogs by Members
- SINGLE SIGN ON CONFIG - USING SINGLE SNC NAME TO SUPPORT BOTH KERBEROS AND X.509 CERTIFICATE #ATR in Technology Blogs by Members
- Developing enterprise-grade applications with mutual TLS easy with SAP BTP, Kyma runtime and BTP destinations in Technology Blogs by SAP
- Building Integration Architecture for the Omni-channel Commerce in Technology Blogs by Members
| User | Count |
|---|---|
| 101 | |
| 13 | |
| 13 | |
| 11 | |
| 11 | |
| 7 | |
| 6 | |
| 5 | |
| 4 | |
| 4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.