Single Sign On (SSO) is good documented in the SAP world. This guide
to give you a complete working example of how you can enable SSO in your
environment.
Step 1 - Setting the logon method as Single Sign on
1.1 Log in to your Portal as a System Administrator.
1.2 Choose System Administration --> System Configuration --> System Landscape
1.3 Find the system you want to assign Single Sign on to and open it
1.4 Choose User Management as Property Category
1.5 Set Logon Method to SAPLOGONTICKET
What we have done now is to set the system you want to use as a
Single Sign On logon method. Do this to each system you want to connect.
Step 2 - Create a Portal Certificate
1.1 Log in to the Visual Administrator
1.2 Choose Server --> Services --> KeyStorage --> TicketKeystore
1.3 Delete SAPLogonTicketKeypair-cert and SAPLogonTicketKeypair
1.4 Choose Create (Create button in the Entry field) and
type in the following information:
a. mark Store Certificate
b. Common Name: Your <SID> (just example)
c. Entry Name: SAPLogonTicketKeypair
d. Store Certificate: Mark it
e. Key Length: 1024
f. Algorithm: DSA
g. Press Generate
Now you will have two entries in the TicketKeyStore:
SAPLogonTicketKeypair
SAPLogonTicketKeypair-cert
Step 3 - Export the Portal certificate
3.1 Choose Server --> Services --> KeyStorage --> TicketKeystore
3.2 Choose SAPLogonTicketKeypair-cert and press Export (Export button in the Entry field)
a. Fill in a name of the Certificate
To keep track of your certificate, call it the SID of the Portal
b. Choose either X.509 or Base64 Encoded Format
Step 4 - Import the Portal certificate to the Backend System
4.1 Log in to the Backend System
In my example, I log in to ERP 2004
4.2 Run transaction STRUSTSSO2
4.3 Press Import Certificate (Button in the Certificate field)
a. Open the generated certificate from step 3 with the right file format that you choosed in step 3.4
4.5 Press Add to Certificate List button (Button in the Certificate field)
4.6 Press Add to ACL button (Button in the Certificate field)
a. Enter the <SID> of your Portal
b. Enter Client 000
4.7 Press Save
Step 5 - Export the Backend certificate to your Portal
5.1 You are still in the transaction STRUSTSSO2. Doubleclick the
Owner Certificate and choose Export and store in on the file system
5.2 Log into Visual Administrator
Choose Server --> Services --> KeyStorage --> TicketKeystore and press Load and choose the Certificate
5.3 Set the Backend System as "ACL" in the Portal
Choose Server --> Services --> Security --> Provider --> Ticket
Choose the Authentication tab and add the following on the com.sap.security.core.server.jass.EvaluateTicketLoginModule:
�› trustedsys<Number>=<ABAP_SID>, <CLIENT> (for example, ABA, 200)
�› trustediss<Number>=<ISSUER_DISTINGUISHED_NAME> (for example, CN= ABA)
�› trusteddn<Number>=<SUBJECT_DISTINGUISHED_NAME> (for example, CN=ABA)
You have set up a trusted relationship between your portal and the
backend system. To do so with several system, run this guide again from
step 4.
Subscribe to:
Post Comments (Atom)
Labels
sap hana
hana database
aws s4 hana
hana db
s4hana conversion steps
sap hana azure
bw4hana
hana migration
s4hana migration
sap cloud migration steps
sap hana migration steps
sap hana migration to azure
s4hana
sap fiori
fiori
performance
fiori erp
s4 hana fiori
sap fiori app
sap fiori client
sap fiori launchpad
sap s4 hana fiori
cisco
ecc
AI
SAP AI
abap dumps
hana
sap
S/4HANA
S/4HANA Conversion
best sap ui5 & fiori training
configuration
database
fiori tutorial on webide
free sap ui5 & fiori training
s/4 hana
sap dumps
sap fiori tutorial
sap ui5
sap ui5 & fiori
sap ui5 & fiori tutorial
sara
ui5cn
2367245 - Troubleshooting performance issues with SAP BPA
Amazon free tier for SAP AWS setup Experience
CALL_FUNCTION_NOT_FOUND
CCMS Configuration and Use
Create New Data Class in SAP (Oracle)
Critical top SAP Abap dumps
DHCP Clients Not Receiving IP Addresses
Download Stack.xml
HAN-DB
HAN-DB-ENG
High CPU Usage Due to Excessive Process Switching
How To
How to Start and Stop SAP Hana Tenant Database
How to change SAP Hana Sql Output results are limited to 5000 Records
How to perform SAP Dual Stack Split - Netweaver
Inactive Objects in SAP
Intercompany transactions in SAP AP / AR : Cross Company Code Transaction
Interface Flapping Due to Duplex Mismatch
KBA
LOAD_PROGRAM_LOST
MSSQL shrinking transaction log file
Migrating to SAP hana database
NAT Overload Causing Internet Access Failure
Note 500235 - Network Diagnosis with NIPING
OSPF Adjacency Not Forming
PRINCE2 Foundation Sample Questions
Preparing for S/4HANA Conversion and the MUST know items
Push to Download Basket
S/4HANA Migration Cockpit
S/4JANA
SAP BI Support Data Load Errors and Solutions
SAP BI/BW Landscape
SAP BPA
SAP Basis
SAP Basis Automation
SAP Business Objects
SAP CPS
SAP Certification
SAP FI Certification
SAP FI Certification Sample Questions
SAP HANA Admin - Cockpit
SAP HANA DB Engines
SAP HANA Database
SAP HANA terminate session connection disconnect cancel kill hang stuck
SAP Hana DB restore
SAP Hana Numeric Error Codes
SAP Landscape
SAP Language installation
SAP MM and Purchase Order Tables
SAP Maintenance Planner
SAP Note 500235
SAP R/3 Glossary
SAP Readiness Check
SAP S/4HANA 1709 Installation Files
SAP S/4HANA 2023
SAP S/4HANA 2023 Installation
SAP S/4HANA 2023 running
SAP S/4HANA Installation
SAP Scheduling
SAP Solman 7.2 CHARM:
SAP Support Package Stack Strategy
SAP Support package
SAP Upgrade
SAP support stack upgrade
SP stacks
STORAGE_PARAMETERS_WRONG_SET
SUSE/SLES/Kernel versions
Setup of S/4hana 2023
TSV_TNEW_PAGE_ALLOC_FAILED
TSV_TNEW_PAGE_ALLOC_FAILED error
Transaction ID
Unable to download an SAP Note
Unix/Linux Command That Are Helpful For SAP Basis
Upgrading SAP Kernel Without Downtime
Upgrading windows server 2008 to windows server 2019
What is OSS Notes? SAP SNOTE Tutorial
accounting
agile
ale idoc
ale/edi
archive FI documents
audit
auditing
auditor
aws
aws cloud
basic type
bluefield approach
ccms
ccmsidb
charm
copilot
datavard
dbacockpit
download sap note
download snote
edi idoc
electronic data interchange
enable sap archiving objects
erpprep
ffid
firefighter
fraud
functional
hana admin
how to apply sap security note
https://www.erpprep.com/
idoc
install
install sap fiori
installation
interfaces
intermediate document
internal control
license key
linux version
materials management
messsage
niping test
order type
port
prince2 agile
prince2 agile practitioner
purchasing
quick info
s4 hana
sap abap dumps
sap abbreviations
sap activate certification
sap activate project manager
sap authorization
sap aws
sap brownfield
sap ccms
sap ccms configuration
sap erp
sap error
sap grc
sap greenfield
sap internet demo system
sap license
sap maintenance certificate
sap material management
sap meaning
sap mm
sap mm consultant
sap monthly security note
sap netweaver
sap network diagnostic
sap niping
sap note
sap oss
sap patch day
sap performance
sap performance issue
sap purchase order
sap s/4hana
sap sales and distribution
sap sap otc
sap sd
sap sd certification training
sap sd course
sap sd jobs
sap sd module
sap sd online training
sap sd training
sap sd tutorial
sap sd tutorial for beginners
sap security
sap security note
sap snote
sap snote tutorial
sap solution manager
sap sql
segregation of duties
separation of duties
sles
slicense
smc
snote
snote in sap system
sod conflict
solution manager
solution maneger
stop start hana database
suse linux
techie
trex
two step upgrade required
waterfall
3 comments:
Hi,
Nice to share information here.The best sap hana online trainers are providing online training on sap hana through with real time projects by experienced experts
sap hana online training
also with real time projects and provides server access to practice
Really awesome blog. Your blog is really useful for me. Thanks for sharing this informative blog. Keep update your blog.
SAP Solution Manager | SAP Support Portal
Great Blog!! You have given all the list about various single sign on solutions.
Post a Comment