Hi,

We have configured multi domain sso using the help.sap link.

The issue we are having now is given below:

1. User logs into SAP EP on http://A.B.C

2. At this instance the entire portal page is loaded, and the MYSAPSSO2

cookie will be generated for A.B.C domain.

3. The hidden iframe will pass the MYSAPSSO2 cookie via POST parameter to

the receiver software in 3rd party portal

http://E.F.G/sendSSO2Cookie.asp, which is mentioned in the

ume.login.mdc.hosts property.

4. 3rd party portal will use this MYSAPSSO2 cookie to create a new

MYSAPSSO2 cookie for the E.F.G domain and send to the end user's browser.

5. At this instance, the end user will see 2 MYSAPSSO2 cookies - one

for A.B.C and another for E.F.G

6. Now if I click on the navigation menu link to open the 3rd party

portal http://E.F.G/index.html in a NEW window, the MYSAPSSO2 cookie with

E.F.G domain will be passed to http://E.F.G/ portal to resolve and

authenticate the user.

7. User LOGS OFF from 3rd party portal. This will invalidate the

MYSAPSSO2 cookie for 3rd party domain E.F.G.

8. User comes back to SAP portal in the old window. MYSAPSSO2 cookie for the A.B.C domain is still alive.

9. Please note that there is no portal page refresh. Now if I click on

the navigation menu link to open the 3rd party

portal http://E.F.G/index.html in a NEW window, there won't be any

MYSAPSSO2 cookie for E.F.G domain as this would only be generated during Portal page refresh. The authentication will fail in this case.

Is there some way we can pass this MYSAPSSO2 cookie as a URL parameter or

call the hidden iframe to generate the cookie for all domains without

page refresh?

Thanks,

Ajay