on 04-25-2012 3:32 PM
We recently upgraded to SAP_BASIS 701 0011. Since that time all our web dynpro applications switch to HTTPS for the authentication.
Old behaviour:
http://externalserver.com/app?sap-system-login-basic_auth=X -> Login popup (basic auth) -> Application started in HTTP
New behaviour
http://externalserver.com/app?sap-system-login-basic_auth=X -> Redirects to...
https://internalserver/app?sap-system-login-basic_auth=X -> Breaks, user cannot access internal server
How do we disable this switch to HTTPS? It was previously not required under 701 0006.
SICF Settings:
1) Logon Data -> Security Requirement -> Standard (not SSL)
2) Error Pages -> Configuration -> Actions During Logon:
Protocol: X - do not switch
Do not display warnings: Checked
Check for multiple logon: Unchecked
Deactivate Login XSRF Protection: Checked
SAP Note 833489 seems to have no effect!
Update, the above SICF settings I posted are the "global settings". We have discovered that if we check the option "service-specific settings" then everything works as expected. It seems the global settings are ignored so we have to copy them to each service!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
hi,
please check the below parameter is activated in your system.
ms/server_port_1 = PROT=HTTPS, PORT=80$$
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
80 | |
9 | |
9 | |
7 | |
7 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.