on 09-27-2018 1:39 PM
Hi
We are trying to open a connection to a customer's SAP system by using SAProuter from the supplier to the client. The client is running SAP, and the supplier needs to read data from the client's SAP system.
Currently we get the error that credentials are missing.
The client has confirmed that they are using Active Directory with Kerberos for SSO, and it seems like SSO is at the source of this error. How do we cater for SSO using SAProuter? For now, we are just trying to get a successful niping test.
The error on the supplier side is:
*** ERROR => SncPEstablishContext() failed for target='p:CN=MyCertName' [D:/depot/b 3638]
*** ERROR => SncPEstablishContext()==SNCERR_GSSAPI [D:/depot/bas/74 3604]
GSS-API(maj): Miscellaneous failure
GSS-API(min): A2210210:Verification of own certificate by server failed
Unable to establish the security context
target="p:CN=MyCertName"
<<- SncProcessInput()==SNCERR_GSSAPI
*** ERROR => NiSncIProcIn: SncProcessInput failed (sncrc=-4;0000000845A9B490;97) [nisnc.c 1003]
The error on the client side (destination) is:
*** ERROR => SncPAcquireCred()==SNCERR_GSSAPI [/bas/753_REL/sr 1465]
GSS-API(maj): No credentials were supplied
Could't acquire ACCEPTING credentials for
name="p:CN=MyCertName"
<<- SncProcessInput()==SNCERR_GSSAPI
*** ERROR => NiSncIProcIn: SncProcessInput failed (sncrc=-4;0x1d17270;1761) [nisnc.c 1003]
*** ERROR => NiSncIProcOpcode: NiSncIProcIn failed (rc=-17) [nisnc.c 337]
*** ERROR => NiBufIIn: NiBufIProcMsg failed (rc=-17) [nibuf.cpp 2828]
*** ERROR => NiBufReceive C12/-1 '158.xx.x.xxx' failed (rc=-17) [nirout.cpp 3326]
Hello Patricio,
Where are you seeing each error message?
At the supplier end, is it at the saprouter trace file (dev_rout)?
And on the client end? Is it an output from the niping command?
This seems to be related to the SNC setup (encryption between the two systems).
Regards,
Isaías
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thanks Isaias. Problem was that they have imported our certificate incorrectly. Obvious at the end. Thanks.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
98 | |
11 | |
11 | |
10 | |
10 | |
8 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.