Skip to Content
avatar image
Former Member

Single Sign on Portal CE - Portal 7 issue

Hi Experts,

I am having issues accessing with single sign on to a SAP Portal 7. Let me explain in detail.

We have a SAP Portal CE connected to enterprise Active Directory to authenticate users. In the connection of this server to AD we have configured mapping to sap user in a specific AD field.

When I access to ECC (ABAP) system with the Logon tickect issued by SAP CE map work perfectly and I can access to the system.

However when I try same in our SAP Portal only works if I have SAP user with the same name than Active directory username, it doesn't work with the field mapped from AD (sapuser).

Obviusly I have upload in both systems certificates files from SAP CE.


Windows user: john.smith

Field in AD (sapuser): 1000323

I log into SAP CE with windows authentication and then I try to access to ECC system where I have a sap user called 1000323 and works perfectly.

But I try to logon in SAP Portal after login in SAP CE and I only have a user called 1000323 in SAP Portal, it doesn't work. I need to have a user in SAP Portal called john.smith

Any idea about actions to do to have SAP Portal getting Logon ticket using correctly AD field mapped?

Thanks in advance!

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Feb 05, 2010 at 01:06 PM

    You need to use authentication with user mapping on the portal side too... Is that the way you configure it?



    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Juan Reyes


      yes. due to some "enterprise / security" requirements I have a SAP Portal CE connecting to our AD. This Portal CE will be used as ticket issuer. Configuration of this Portal has mapped the "custom sap user".

      if I access to ECC system with a username as "custom sap user" field I can access correctly.

      But if i try to access to another SAP Portal (Not Portal CE ticket issuer) with standard UME configured and having user names with "custom sap user" AD field it is impossible to access. I need to have username with AD username.

      It is like for Portal mapping in the AD field is not working. I am looking for some special configuration in the SAP Portal in order to understand SAP Logon ticket provided by SAP CE and use the custom mapped field in AD as UME user name.