We are using Web seal to SSO into SAP Portal. We have SAP - Employee Self Service rolled out to 60K employees in 70 countries.
Our architeture is
Custom Application (Java) -> WebSeal -> SAP Portal
User logs inot Custom App with his user ID and Password and he is taken to SAP Portal via Webseal
Occasionally we face an issue what When user Logs in, he sees details of a another user. They dont share machine, they dont share department, infact they are not even in the same state.
Some of the logs we analysed, both of them has been using application at the same time.
We suspect that some of the session is getting mixed up which is resulting in user X seeing data for User Y.
We have removed all sessions / cookies on log off.
Have anyone faced similar issue with webseal and SAP Portal? Any pointers?