cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Active Directory SSO on BO Enterprise

Former Member

on ‎01-04-2011 10:18 AM

0 Kudos

Hi Guru's!

I've a simple question regarding BO Single Sign On.

I'm working on a customer with sharepoint AD authentication. For BI (BW) implementation everything working fine. Enterprise Portal Users are the same as Active Directory User. I've just create standard user on ABAP side with initial password.

Users who want to run report on enterprise portal automatically login into portal without credential popup.

Now we want to implement Business Objects Solutions on top of SAP BW and mantain the same logic. But Administration consultant says that's not possible.

At this moment the BO System ther's SAP Authentication but SAP Auth on ABAP Side, not on Active directory side.

I will try to explane:

- In AD System the user john had a password like john32 (manteined by AD). The user is automatically imported on BI/BW enterprise portal. In ABAP environement i've just to create john user with 12345678 password. John can log on enterprise portal without popup login but only with his credentials.

- Now, on BO Environement, administrator had set up system with SAP Authentication. User John does not exist on BO environement but exists on BI/BW System with initial password. Users can not access the BO portal with their AD credentials and they have to know ABAP Password.

I have heard directly from sap that there is a workaround to replicate the same situation as the BW portal, someone knows?

Thank you all for your help and sorry for my English is not perfect!

Cheers and best christmas wishes!

Andrea

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

former_member142702
Advisor
Advisor
‎01-04-2011 1:42 PM
0 Kudos

It sounds to me that you need to setup Windows AD SSO on the BOBJ server and server-side SNC between SAP BW and BO (Windows AD to SAP alias mapping).

The whole thing works as follows:

1) Create URL iViews (based on openDocument) to embed the BO reports into your Enterprise Portal

2) Setup WIndows AD SSO on the BO Side.

3) Setup server-SNC between BO and SAP

4) Map the Windows AD account to SAP Alias in BO (Since the usernames are the same you just have to change an entry in the registry)

Your users will login in the Enterprise Portal without providing a username and password (nothing changes here). When they click an iView to start a BO report, the BO server will log the user automatically using her/his WIndows AD credentials (due to the WIndows AD SSO setup). If the BO report is fetching data from the SAP BW system and is set to use SSO then the BO server will use automatically the SAP username mapped to the IWndows AD account to fetch the data.

Regards,

Stratos

Show replies
Show replies
Former Member
‎08-13-2015 3:04 AM
0 Kudos

Hi Stratos,

    Are you still here?

Recently, we're considering of a integration of Sharepoint portal and BOBJ BIP 4.1, and our dashboard using BW Query as data source. SSO between BOBJ BIP and BW is ready; And we can set up SSO between BOBJ BIP and Sharepoint via Windows AD. But the problem is how to mapping the Windows AD users with BW users, as you mentioned before? Would you please show me the details?

Many Thanks,

Jamie

Former Member
‎01-04-2011 12:26 PM
0 Kudos

Do you want to setup SSO from BW towards BO?

Show replies
Show replies
Ask a Question