on 04-27-2012 3:51 AM
Hi,
We have configured multi domain sso using the help.sap link.
The issue we are having now is given below:
1. User logs into SAP EP on http://A.B.C
2. At this instance the entire portal page is loaded, and the MYSAPSSO2
cookie will be generated for A.B.C domain.
3. The hidden iframe will pass the MYSAPSSO2 cookie via POST parameter to
the receiver software in 3rd party portal
http://E.F.G/sendSSO2Cookie.asp, which is mentioned in the
ume.login.mdc.hosts property.
4. 3rd party portal will use this MYSAPSSO2 cookie to create a new
MYSAPSSO2 cookie for the E.F.G domain and send to the end user's browser.
5. At this instance, the end user will see 2 MYSAPSSO2 cookies - one
for A.B.C and another for E.F.G
6. Now if I click on the navigation menu link to open the 3rd party
portal http://E.F.G/index.html in a NEW window, the MYSAPSSO2 cookie with
E.F.G domain will be passed to http://E.F.G/ portal to resolve and
authenticate the user.
7. User LOGS OFF from 3rd party portal. This will invalidate the
MYSAPSSO2 cookie for 3rd party domain E.F.G.
8. User comes back to SAP portal in the old window. MYSAPSSO2 cookie for the A.B.C domain is still alive.
9. Please note that there is no portal page refresh. Now if I click on
the navigation menu link to open the 3rd party
portal http://E.F.G/index.html in a NEW window, there won't be any
MYSAPSSO2 cookie for E.F.G domain as this would only be generated during Portal page refresh. The authentication will fail in this case.
Is there some way we can pass this MYSAPSSO2 cookie as a URL parameter or
call the hidden iframe to generate the cookie for all domains without
page refresh?
Thanks,
Ajay
Any help would be appreciated, as we are really looking to make this multi domain SSO work.
Thanks,
Ajay
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
85 | |
10 | |
10 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.