on 07-31-2012 1:10 PM
Hi All,
We have just upgraded our BO setup from 3.1 SP3 to SP5. We are using SiteMinder as the authentication mechanism. We are facing problem after upgrade wherein SSO is not working when trying to login to infoview through browser. We always receive below error message :
We have opened a case in SAP 3 days back but couldn't get any help till now . Request you all experts to provide some help so that we can fix the issue (if at all there is no bug in the release)
Below are the test cases we have performed so far :
1) Double checking web.config file -- Everything is fine, this has been confirmed by the SAP consultant who is working on ticket.
2) CMC Plug is configured properly -- Received confirmation from the SAP Consultant working on the ticket.
3) Agent 4.x exists in Policy Server.
4) Policy Server is configured to protect the infoview application.
One strange fact here is whenever I restart my IIS Server , the very FIRST time I am able to login successfully (without any error) , Now if I close the browser and open a new browser and try accessing the inforview app I get SiteMinder Challenge page -> On providing my credentials I am successfully authenticated but I get above mentioned error:
Account Information Not Recognized: Security plugin error: Failed to set parameters on plugin.
I am attaching the snapshot for reference please. Request all experts for their help as it is affecting all the customers.
Have you went thru Admin guide to see if any of your previously setup changes related to Trusted Authentication and Siteminder are still present in web.xml files and CMC after upgrade ?
Have you searched thru SAP Knowledge base, there are couple Siteminder How To KB's there, like this one : https://service.sap.com/sap/support/notes/1310002
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Dennis,
Many thanks for your response.
Yes I confirmed from the admin guide that all the settings were same. I however have reapplied all the settings in the plugin and the web.config file (we are using .NET IIS so no web.xml) but still the issue persists.
One very strange thing is that if I configure my LDAP for non SSL it works perfectly fine.. only when i configure my LDAP to be on SSL (using Server Authentication) then only I am facing this issue. Ihave tried recreating cert7, secmod, key3 and cacerts but no luck .. Still the issue persists
Also whenever I restart my IIS servive the first login always work ... and all other logins after that shows this behaviour.
Please note that we are using Sun Java Enterprise Directory Server as the back end LDAP.
Hi Dennis,
Unfortunately things are not helpful this side. The website worked for one night but then next day again it started showing the same behaviour.
I haven't changed anything anywhere, the website user was not having permission n the folder and I added the user with full rights on the folder -> it started working fine -> but next day morning it again showed the same behaviour.
I deeply analysed all the logs and found that whenever there is a call to /PlatformServices/Shared/Logon.aspx -> The +InfoViewdotnetPLATFORMSVC_COOKIE_TOKEN is set to blank.
The time it worked fine this token is set to something like cmsserver.domain.com%3a6401%2c8P%2635%3dstyagi003%2c0P%263k%3d%40
Request you all to please help me with this. Please let me know who is responsible for creating the +InfoViewdotnetPLATFORMSVC_COOKIE_TOKEN cookie.
Experts..... any response, please.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
81 | |
24 | |
11 | |
9 | |
7 | |
5 | |
5 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.