Skip to Content
0

How To switch off SSO

Dec 01, 2016 at 05:02 PM

146

avatar image

This kills me for years and I'm pretty sure every developer MUST have this problem:

Once you have activated SSO properly it always will log you into the expected websites. Great that there is no more need to do that manually. Except the rare cases when you need to check what happens for somebody who does not have SSO or during development.

BUT it seems to be impossible to find a sourvce that tells how to do this easily. No matter what browser I am using, I cannot find any source that has info on that....

Any ideas anybody?

sso
10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

2 Answers

Axel Dubbert Dec 08, 2016 at 02:10 PM
1

If you use a freshly started Chrome Browser you will be asked which certificate to use. You can deny using a certificate.

This works very well for me in a scenario with SAP Portal (X509 based SSO) and an ABAP Backend.

You could be able to set a likewise option in Internet Explorer, but it might be hidden due to Enterprise security policies for the IE.

Best regards,

Axel

Show 1 Share
10 |10000 characters needed characters left characters exceeded

Sounds feasible. And actually yes, my Chrome always asks at the first call. Need to test this. I don't care for other browsers, I just will use the one which works.

Thanks for the hint.

Regards,

Benny

0
Gabriel CORDOVAN Dec 02, 2016 at 09:35 AM
0

Hi Benny,

Please give some more details about the SSO solution that you are using.
If there are no client certificates on your system (delete your soft certificate or unplug your PKI card) the system will take you to user/password logon screen.

In case of ABAP systems, you can also check icm/HTTPS/verify_client parameter and USREXTID table content.

Kind regards,
Gabriel

Show 1 Share
10 |10000 characters needed characters left characters exceeded

You mean I should delete the client certificates? Sorry, but I would not call this convenient. There must be developers who sometimes need to switch SSO on or off....

I am using local certificates as my answer already implies. Working for SAP, so this is corporate strategy.

Regards,

Benny

0