cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SSO problem with Kerberos and IE6 in portal

Go to solution
Former Member

on ‎02-11-2009 6:35 PM

0 Kudos

Hello,

I recently configured SSO (SPNego) with my HR portal. I ran tests and everything was working fine (on IE7).

Unfortunately, we still have some IE6 and, although I enabled Windows Integrated Authentication in web Web browser, enabled automatic logon in Intranet zone and added the AS Javau2019s DNS host name to the list of local intranet sites, all desktops running IE6 are driven to the logon page when accessing the Portal.

Same user connecting to the portal with IE7 enters without having to give user/password.

Is there any "special" option that needs to be setup in IE6 ?

Did any of you already run into the same problem ?

It's quite important as my colleagues are not ready to deploy IE7 through the whole company.

Thanks

Marc Buthey

Edited by: Marc Buthey on Feb 11, 2009 7:35 PM

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎02-12-2009 8:06 AM
0 Kudos

Hello,

In fact, I found the reason of my problem, but it drives me to another question.

The reasons is that when user just got created in ABAP, I gave them (through an LSMW), a default password.

When they connect to the portal for the first time, they need to enter their user and the default password. Then, the portal asks to change the password (standard mechanism for me).

Then, all new call to the portal URL works with the SSO and no user/password are asked anymore.

My question is now : is there a way to create a user with a password that doesn't need to be changed ?

To me, at a security point of view, it shouldn't exist as the password belongs to the user, but my management asks for it ...

Thanks for your help.

Best Regards

Marc Buthey

Show replies
Show replies
Former Member
‎02-12-2009 11:28 AM
0 Kudos

When you create a user in ABAP you have two options. You can give them a password that has expired or you can disable their password. If you are happy to play with the underlying table (not recommended) you can set a flag to say that the password has been reset, even if it hasn't. Maybe someone will tell you how to do this, but it is not supported or recommended.

Answers (1)

Answers (1)

Former Member
‎02-12-2009 11:39 AM
0 Kudos

Hi Michael,

Thanks for your answer, it confirm my opinion.

Marc

Show replies
Show replies
Former Member
‎02-12-2009 12:08 PM
0 Kudos

If you're happy with the answer, please close the message..

Ask a Question