Skip to Content
author's profile photo Former Member
Former Member

SSO problem with Kerberos and IE6 in portal

Hello,

I recently configured SSO (SPNego) with my HR portal. I ran tests and everything was working fine (on IE7).

Unfortunately, we still have some IE6 and, although I enabled Windows Integrated Authentication in web Web browser, enabled automatic logon in Intranet zone and added the AS Javau2019s DNS host name to the list of local intranet sites, all desktops running IE6 are driven to the logon page when accessing the Portal.

Same user connecting to the portal with IE7 enters without having to give user/password.

Is there any "special" option that needs to be setup in IE6 ?

Did any of you already run into the same problem ?

It's quite important as my colleagues are not ready to deploy IE7 through the whole company.

Thanks

Marc Buthey

Edited by: Marc Buthey on Feb 11, 2009 7:35 PM

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

2 Answers

  • Best Answer
    author's profile photo Former Member
    Former Member
    Posted on Feb 12, 2009 at 08:06 AM

    Hello,

    In fact, I found the reason of my problem, but it drives me to another question.

    The reasons is that when user just got created in ABAP, I gave them (through an LSMW), a default password.

    When they connect to the portal for the first time, they need to enter their user and the default password. Then, the portal asks to change the password (standard mechanism for me).

    Then, all new call to the portal URL works with the SSO and no user/password are asked anymore.

    My question is now : is there a way to create a user with a password that doesn't need to be changed ?

    To me, at a security point of view, it shouldn't exist as the password belongs to the user, but my management asks for it ...

    Thanks for your help.

    Best Regards

    Marc Buthey

    Add a comment
    10|10000 characters needed characters exceeded

    • Former Member

      When you create a user in ABAP you have two options. You can give them a password that has expired or you can disable their password. If you are happy to play with the underlying table (not recommended) you can set a flag to say that the password has been reset, even if it hasn't. Maybe someone will tell you how to do this, but it is not supported or recommended.

  • author's profile photo Former Member
    Former Member
    Posted on Feb 12, 2009 at 11:39 AM

    Hi Michael,

    Thanks for your answer, it confirm my opinion.

    Marc

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.