cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to configure SSO for Unidirectional Login(only from EP to ABAP or Java)

Former Member

on ‎12-14-2012 1:36 PM

0 Kudos

How to configure SSO(single sign on) for Unidirectional Login(only from EP to ABAP or Java). I Knew how to configure SSO for bidirectional . So kindly suggest the changes i have to do it for unidirectional ?

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
‎12-16-2012 8:18 PM
0 Kudos

HI

Configuring SSO from EP to ABAP it is a unidirectional configuration.

If you want ABAP to JAVA it belongs to another configuration.

If u configure SSO b/w EP and ABAP it work from EP to ABAP only not from ABAP to EP

Thanks.

Show replies
Show replies
Former Member
‎12-17-2012 6:09 AM
0 Kudos

Thanks Marri. ok can anyone tell the below method will work out or not for unidirectional(EP to abap)

SOLUTION:

Configure single Sign-on using sap logon tickets

Procedure:

1) Export the certificate from the portal(verifyder and verifypse)

Navigate to system administration>>system configuration>key store admin

In content select “sap Logon ticket key Pair-cert” and download  verifyder and verifypse files.

2) Check the existence of SAPJSF user in target system.

             If not please create RFC with roles listed below

>SAP_BC_JSF_COMMUNICATION

>SAP_BC_USR_CUA_CLIENT_RFC(if you have CUA)

3) Check the Profile Parameters

Goto RZ11 > give the parameter name as login/create_sso2_ticket=2 and login/accept_sso2_ticket=1

Other possible cases:

                  login/create_sso2_ticket = 0 : Ticket generation deactivated

                  login/create_sso2_ticket = 1 : SSO ticket including certificate  

                  login/create_sso2_ticket = 2 : SSO ticket without certificate

    login/accept_sso2_ticket=1 :permit logon

    login/accept_sso2_ticket=0 :lock logo

4)     Export the certificate from target(the system to which you need to connect using SSO from portal)

  1. a) Got to Transcation STRUSTSS02(only in client 000)
  2. b) Double click on”own Certficate” on “CN=” part.
  3. c) Press on “Export Certifiacate “ button in the middle of the screen and provide file name and path , Where to save Certificate file

5) Import portal certificate to target system

a)Use transcation STRUSTSSO2 in target system

b) click import certificate

C)give the path of cert of portal

d)enter

e)Press’ADD to certificate list” button and then “add to ACL(access control list)

6) Create an JCO RFC provider in J2EE engine of the portal system

7) Add target system to security Providers list

😎 Import Target system certificate to J2ee of portal system(from step 4)

a)open J2EE Administrator and logon to portal instance

b) Navigate to server >>services >> key storage

c)in “Ticket Keystore” view press “load” select the certificate of target system.

9) Restart j2ee instance

10) Create rfc in target system

Reference:

http://wiki.sdn.sap.com/wiki/display/EP/How+do+I+test+SSO

Former Member
‎12-14-2012 6:07 PM
0 Kudos

Hmm.. not sure what you are asking but let me try. Just setup the trust in one way meaning system A trusts system B but not the other way around.

Show replies
Show replies
Former Member
‎12-15-2012 8:25 AM
0 Kudos

yup what you said is right. from EP to any of the sap system. It will

great if you help me on this case. Thanks in advance

Former Member
‎12-16-2012 2:39 AM
0 Kudos

I'm still not sure I understand what you want to do but see the attached link for configuring SSO between the portal and any ABAP backend. You didn't mention what version you are using so the link is for the most recent version.

http://help.sap.com/saphelp_nw73ehp1/helpdata/en/4b/031904ea162593e10000000a42189b/frameset.htm

Ask a Question