cancel
Showing results for 
Search instead for 
Did you mean: 

sso:integrating microsoft outlook into ep 7

Former Member
0 Kudos

hi gurus,

we need to integrate microsoft outlook into EP 7 using logon ticket without usermapping,

our requirement is to give MS outlook as a sepetate role.i have searched SDN and found some information,

if possible give some more info and step-by-step guide.

note:helpful answers are rewarded.

Thanks & Regards

K Naveen Kishore

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
0 Kudos

Hey Naveen,

You might want to give this a read as well:

http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/20e15cc2-1ee2-2910-80b4-9602491cb9c1

-Kevin

Former Member
0 Kudos

Hey Naveen,

What does your "ticket" logon module stack look like? I'm wondering if you've using any header variable authentication as this can greatly simplify what you're trying to accomplish. We happen to use CA SiteMinder here as an enterprise authentication solution and, to simplify the explanation, it sets an http header variable (cookie) before passing you to the SAP Portal, which the Portal is configured to accept in the by adding the HeaderVariableLoginModule to the ticket stack. This same header variable satisfies the authentication requirements of Outlook (also SiteMinder-protected) so the integration is seamless. All you do is create a URL iView to Outlook WebAccess in the Portal and you're set.

Alternatively, I'd presume it would also work if you used kerberos authentiation in your login module stack as well. Check here for a little more info: http://help.sap.com/saphelp_nw70/helpdata/en/43/4e80824d155f86e10000000a1553f6/content.htm . I can't say I've done this personally but, conceptually, it sounds pretty straight forward. Again, once you've authenticated against kerberos, you should be fine to pass directly into Outlook.

The same principles of SAP Single Sign-On still apply though... you still need the user to be present (same ID), valid, and unlocked in the Outlook user store for SSO to succeed. Life is a lot easier if you leverage LDAP for your Portal's UME so you're guarenteed that your users also exist both places and are always valid. Just a recommendation though, not a requirement.

Hope this helps.

-Kevin