Skip to Content
author's profile photo Former Member
Former Member

SSO: Form based authantication to SAP port 7.0 from Intranet

Hi Friends,

My current landscape architecture is: ECC is pure ABAP stack on back end and SAP portal which is pure AS java on front end.

Version of SAP component are

ECC : 6.0

EP: 7.0

I have domain installation but don't have LDAP yet. so user UME is back-end ABAP system.

We are planning to have SSO by using active directory (AD) or HTTP based authentication.

Requirement is that, my client having an intranet web link and they want authentication from that.

I am looking for expertise suggestions on below;

  • What's form based authentication ? can we bypass LDAP (SAP LDAP Agent ) form based authentication ...

  • How can we configure authentication with intranet by using any other alternative methodology of SSO.

Suggestion will be appreciate by awarding points...

Thanks

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

2 Answers

  • author's profile photo Former Member
    Former Member
    Posted on May 26, 2010 at 10:38 AM

    Hi Sachin,

    my client having an intranet web link and they want authentication from that

    Can you tell more about this intranet web link behaviour, functionality!

    What's form based authentication ? can we bypass LDAP (SAP LDAP Agent ) form based authentication

    Yes, it is possbile with external J2EE application (you can call this as intranet appn) for authenticating the LDAP users and redirect them to SAP Portal access.

    How can we configure authentication with intranet by using any other alternative methodology of SSO

    Can you be more clear on this question?

    But why it is needed some thrid-party application to authenticate and provide portal access, this can be directly in Portal with LDAP as user datasource? Is this because of ABAP as user datasource for Portal?

    Thanks,

    MS

    Add a comment
    10|10000 characters needed characters exceeded

    • >

      > How can we configure authentication with intranet by using any other alternative methodology of SSO

      > Can you be more clear on this question?

      >

      > But why it is needed some thrid-party application to authenticate and provide portal access, this can be directly in Portal with LDAP as user datasource? Is this because of ABAP as user datasource for Portal?

      >

      > I dont need any third party application want to check that without changing ABAP as data source is it possible to authenticate by AD or any other option is there ?

      When using SAP provided methods of authentication, using MS AD as authentication server, you need to change the data source in UME. If you do not want to do this, or cannot do this, and want to continue to use ABAP as datasource, then you need to consider alternative solutions. An example can be found at http://ecohub.sdn.sap.com/irj/ecohub/solutions/trustbrokeradapter which does not require any changes to data source - this product separates the AD authentication from the user store being used.

  • Posted on Jun 07, 2010 at 09:30 PM

    Hi,

    your question was asked and answered several time by this forum. I'll give some short infos, please search SDN for more information.

    • What's form based authentication ? can we bypass LDAP (SAP LDAP Agent ) form based authentication ...

    Form based is the standard authentication of the portal and means that the user is entering his credentials (user/password), sends on submit and is logged on.

    • How can we configure authentication with intranet by using any other alternative methodology of SSO.

    SSO is only a module in the logon stack. If it fails, the portal will go on to the next module in the logon stack. Normally, this is the UIDPW (-> form based authentication) module and will present the user with the user/password fields to enter.

    As SSO is based on the URL, you'll only have to create 1 URL for SSO and 1 non-SSO URL. Needless to say, users that are not in the LDAP will automatically receive the form based authentication.

    br,

    Tobias

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.