- SAP Community
- Groups
- Interest Groups
- Application Development
- Discussions
- SSO from SAP EP 7.3 to MS SharePoint 2010
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
SSO from SAP EP 7.3 to MS SharePoint 2010
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-14-2012 3:47 PM
Hi,
We are trying to configure single-sign on between Enterprise Portal 7.3 and MS SharePoint 2010. What we are trying to achieve is to use SharePoint as our document repository. For example, an external user would login to the portal, they would have a page with links to documents that reside in our SharePoint. When they click on the link they can access the document using the single-sign on. I have reviewed the document [Interoperability Between SAP NetWeaver Portal and Microsoft SharePoint Technologies|http://www.google.com/url?sa=t&rct=j&q=interoperability%20between%20sap%20portal%20and%20microsoft%20sharepoint&source=web&cd=1&ved=0CC8QFjAA&url=http%3A%2F%2Fdownload.microsoft.com%2Fdownload%2Fb%2Fc%2F1%2Fbc1939d9-638f-4053-b602-4258f18bb683%2Fcb_045_interoperability%2520between%2520sap%2520netweaver%2520portal%2520and%2520microsoft%2520sharepoint%2520server%25202007.pdf&ei=lIA6T9nYJsKg2gWz6-WvCg&usg=AFQjCNGAdYQaM6QNO16mp4NDiPDaBgQHJA] and looking for some help on Section 3.7.4 of the document starting on page 119. Does section 3.7.4 need to be completed for EVERY domain user that you want to have SSO between Portal and SharePoint? Any help would be greatly appreciated as I am fairly new to SAP.
Thanks,
Jim
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-14-2012 11:22 PM
Hi,
it seem to me that you have to do it for every user account which sounds really terrible. I don't have practical information with this but SSO seems to be storing user name and password for each SAP account and authenticating against SAP application server using stored user name and password. Not sure what you are supposed to do when user changes her password. It would be much better if Sharepoint could generate a valid MYSAPSSO2 cookie that would be accepted by SAP and mapping of users would be performed on SAP side. Only way how to go around this is to map group of AD users to one generic SAP account. In this case you won't be able to have different authorizations for different users.
Cheers
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-14-2012 11:22 PM
Hi,
it seem to me that you have to do it for every user account which sounds really terrible. I don't have practical information with this but SSO seems to be storing user name and password for each SAP account and authenticating against SAP application server using stored user name and password. Not sure what you are supposed to do when user changes her password. It would be much better if Sharepoint could generate a valid MYSAPSSO2 cookie that would be accepted by SAP and mapping of users would be performed on SAP side. Only way how to go around this is to map group of AD users to one generic SAP account. In this case you won't be able to have different authorizations for different users.
Cheers
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-15-2012 1:48 PM
Yes, it would definitely be terrible mapping each individual user since we have thousands. I am hoping that there is someone out there that has done this type of integration before where you can access documents in SharePoint from the Portal using SSO. Any help or clarification would be greatly appreciated.
Thanks,
Jim
- SAP Managed Tags:
- Security
