cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to implement SSO with Web Outlook?

Former Member

on ‎04-21-2005 1:59 PM

0 Kudos

I have implemented the NTLM in my Portal.

I have also implemented an iView which displays the Web Outlook's Calander.

The problem is that authentication is needed before seeing the calander. How can I implement SSO, so that the user won't have to type his UserName and Password. Note that the UserName and Passwod the portal receives at the NTLM stage are identical to those the user needs to

authenticate in front of the exchange. The problem is how to "tell" it to the exchange...

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
‎05-16-2005 6:17 PM
0 Kudos

Roy,

I don't have the full answer, but I have some tips.

I have the same problem, only the target application is different, but uses the same login/password than EP.

My advice is this: you can use AppIntegrator in order to allow access to Outlook, and you can send the UserID using the variable "<User.UserID>". Unfortunately, I don't know how to send password too.

Please, if you have any other information, let me know.

Cheers

Patricio

Show replies
Show replies
former_member394902
Contributor
‎05-17-2005 7:28 AM
0 Kudos

Hi Roy,

1. Create a system e.g. Exchange using the par file com.sap.netweaver.coll.appl.gw

2. Create a AppIntegrator iView using the par file com.sap.portal.appintegrator.sap and in the next step choose "Generic"

3. the following parameter needs to be filled in the newly created iView - "System" this will be Exchange from #1 above, URL template this will look like http://<server_hostname>:<port>/Exchange/<User.UserID>/Calendar/?cmd=contents

4. In "personalization" -> "user mapping" provide the username password for system exchange

5. you are now ready to use OWA without entering user/password

hope this helps.

Former Member
‎05-17-2005 7:56 AM
0 Kudos

Dear Akhilesh,

First, tank you for your detailed response.

Few questions though:

After entering the username password and the URL I receive this pop-up:

Session management will not work!

Please check the DSM log file for details.

And then the page is blank, I don't see the OWA.

Former Member
‎05-17-2005 8:02 AM
0 Kudos

Oh, and what should I put at the <User.EserID> part at the URL? Should I leave it like this?

former_member394902
Contributor
‎05-17-2005 8:06 AM
0 Kudos

which version of Exchange are you on ??

yes <User.UserID> should be left like that. The appintegrator picks up the user credentials from user mapping and replaces this placeholder appropriately.

Message was edited by: Akhilesh Mahto

Former Member
‎05-17-2005 8:18 AM
0 Kudos

I am using Exchange 2003.

Former Member
‎05-17-2005 8:25 AM
0 Kudos

By the way, I was able to disable this message at the "Support Desk" area but when previweing the iView I still receive a pop-up to enter Username and password.

And another thing: here we logon to the OWA with domain\username at the username. Should I put this at the Personalization-> User Mapping as well at the username field?

former_member394902
Contributor
‎05-17-2005 8:33 AM
0 Kudos

Yes, OWA always uses Basic Authentication, which means you will have to provide the domain information. In user mapping the user should be in format domain\user

Former Member
‎05-17-2005 8:41 AM
0 Kudos

Well, it still pops-up to enter username and password even after adding the domain. At the user mapping there is mailserver field, I left it blank I beleive it is OK. Any more ideas?

former_member394902
Contributor
‎05-17-2005 10:40 AM
0 Kudos

There is one more property that needs to be set i.e User Mapping Template

For basic authentication, it has to be set in the following way: <MappedUser>:<MappedPassword>@

also Cumulative Security Update for Internet Explorer (832894)", disables the user:pass@ way of authentication.

check this for a workaround of the same

http://weblogs.asp.net/cumpsd/archive/2004/02/07/69366.aspx

also i hope that you have configured proxy on the J2EE i.e. the following needs to be set in the configtool

-DhttpnonProxyHosts=the domains for which you do not want proxy

-DhttpProxyHost=proxy server

-DhttpProxyPort=proxy port

former_member394902
Contributor
‎05-17-2005 10:46 AM
0 Kudos

Hi Roy,

SSO to OWA is not possible since the application of the MS cumulative security update for IE.

Now the only way of achieving SSO is using Kerberos authentication. If you have access to SAP Notes check the Note 712902

Hope this helps.

Akhilesh

Former Member
‎05-17-2005 10:56 AM
0 Kudos

So if I have Security Update 832894 installed the workaround you suggested at this link:

http://weblogs.asp.net/cumpsd/archive/2004/02/07/69366.aspx

won't work as well?

Former Member
‎05-17-2005 11:06 AM
0 Kudos

And where do I find the User Mapping Template field?

former_member394902
Contributor
‎05-17-2005 11:07 AM
0 Kudos

yes, from the note that i mentioned before, it looks like the only way to go for SSO is Kerberos authentication.

former_member394902
Contributor
‎05-17-2005 11:43 AM
0 Kudos

the property is named "URL template fraction for user mapping"

Former Member
‎04-23-2005 8:09 AM
0 Kudos

Anyone...?

Show replies
Show replies
Ask a Question