Translate

Setting up SAP SSO using the Security Token Service (STS)

Setting up SAP SSO using the Security Token Service (STS)

But using SAP Single Sign-On (SSO) through the Security Token Service (STS), you can schedule reports that use SSO connections to an SAP data source.

Workflow

  • Create the certificate and keystore files.
  • Add the certificate to the Business Warehouse system.
  • Configure the CMC to use the SAP SSO Service.

To create the certificate and keystore files

  1. Log in to the machine with administrative permissions, and use a command prompt window to go to C:\Program Files (x86)\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\win64_x64\sapjvm\bin.
  2. Type and run the following command: java -jar "C:\Program files (x86)\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\java\lib\PKCS12Tool.jar" -alias PATTERNSTS -storepass pattern123 -dname CN=PATTERNSTS.
  3. Type and run the following command: keytool -exportcert -keystore keystore.p12 -storetype pkcs12 -file cert.der -alias PATTERNSTS.
  4. When prompted to enter the keystore password, type pattern123.
  5. To view the newly created files, in Windows Explorer browse to C:\Program Files (x86)\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\win64_x64\sapjvm\bin.

To add the certificate to the BW system

  1. Open a SAPGUI connection to the BW server you will be connecting to, and log in with an administrator account.
  2. Run the transaction /nstrustsso2.
  3. On the menu bar, click Certificate – Import.
  4. Next to the File path box, click the Browse icon, find the file cert.der (created in the previous task), and click Open.
  5. Ensure the Binary format is selected.
  6. Click the green check box.
  7. Verify the certificate is loaded on the screen as shown here:
  8. To add the certificate to the BW servers Certificate List, click Add to Certificate List.
  9. Click Add to ACL.
    The "Add Entry to Single Sign-On Access Control List" dialog box opens,
  10. In the System ID box, type PATTERN.
  11. In the Client box, type 000.
  12. To return to Trust Manager, select the green check box (execute).
    “Trust Manager” displays both keystore entries.
  13. To save the entries, on the toolbar click the Save icon.

To configure the CMC to use the SAP SSO Service

  1. In the "Authentication" management area of the CMC, double-click SAP.
  2. On the Options tab, select the default system.
  3. In the SAP SSO Service area, in the System ID box type PATTERN.
    The System ID field is a single entry that identifies all nodes in the cluster. Multiple certificates should not be added to the BW system. Please refer to SAP Note 1695870 for further details.
  4. In the Key Store Password box, type pattern123.
  5. In the Private Key Password box, type pattern123.
  6. In the *Private Key Alias*box, type PATTERNSTS.

    Note that the system indicates the following: "No key store file has been uploaded".
  7. Click Browse, find the file keystore.p12, and click Open.
  8. Click Update to commit the settings.
    Note that the system indicates the following: "A key store file has been uploaded".
  9. Restart the SIA.
Posted by

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Labels

sap hana hana database aws s4 hana hana db s4hana conversion steps sap hana azure bw4hana hana migration s4hana migration sap cloud migration steps sap hana migration steps sap hana migration to azure s4hana sap fiori fiori performance fiori erp s4 hana fiori sap fiori app sap fiori client sap fiori launchpad sap s4 hana fiori cisco ecc AI SAP AI abap dumps hana sap S/4HANA S/4HANA Conversion best sap ui5 & fiori training configuration database fiori tutorial on webide free sap ui5 & fiori training s/4 hana sap dumps sap fiori tutorial sap ui5 sap ui5 & fiori sap ui5 & fiori tutorial sara ui5cn 2367245 - Troubleshooting performance issues with SAP BPA Amazon free tier for SAP AWS setup Experience CALL_FUNCTION_NOT_FOUND CCMS Configuration and Use Create New Data Class in SAP (Oracle) Critical top SAP Abap dumps DHCP Clients Not Receiving IP Addresses Download Stack.xml HAN-DB HAN-DB-ENG High CPU Usage Due to Excessive Process Switching How To How to Start and Stop SAP Hana Tenant Database How to change SAP Hana Sql Output results are limited to 5000 Records How to perform SAP Dual Stack Split - Netweaver Inactive Objects in SAP Intercompany transactions in SAP AP / AR : Cross Company Code Transaction Interface Flapping Due to Duplex Mismatch KBA LOAD_PROGRAM_LOST MSSQL shrinking transaction log file Migrating to SAP hana database NAT Overload Causing Internet Access Failure Note 500235 - Network Diagnosis with NIPING OSPF Adjacency Not Forming PRINCE2 Foundation Sample Questions Preparing for S/4HANA Conversion and the MUST know items Push to Download Basket S/4HANA Migration Cockpit S/4JANA SAP BI Support Data Load Errors and Solutions SAP BI/BW Landscape SAP BPA SAP Basis SAP Basis Automation SAP Business Objects SAP CPS SAP Certification SAP FI Certification SAP FI Certification Sample Questions SAP HANA Admin - Cockpit SAP HANA DB Engines SAP HANA Database SAP HANA terminate session connection disconnect cancel kill hang stuck SAP Hana DB restore SAP Hana Numeric Error Codes SAP Landscape SAP Language installation SAP MM and Purchase Order Tables SAP Maintenance Planner SAP Note 500235 SAP R/3 Glossary SAP Readiness Check SAP S/4HANA 1709 Installation Files SAP S/4HANA 2023 SAP S/4HANA 2023 Installation SAP S/4HANA 2023 running SAP S/4HANA Installation SAP Scheduling SAP Solman 7.2 CHARM: SAP Support Package Stack Strategy SAP Support package SAP Upgrade SAP support stack upgrade SP stacks STORAGE_PARAMETERS_WRONG_SET SUSE/SLES/Kernel versions Setup of S/4hana 2023 TSV_TNEW_PAGE_ALLOC_FAILED TSV_TNEW_PAGE_ALLOC_FAILED error Transaction ID Unable to download an SAP Note Unix/Linux Command That Are Helpful For SAP Basis Upgrading SAP Kernel Without Downtime Upgrading windows server 2008 to windows server 2019 What is OSS Notes? SAP SNOTE Tutorial accounting agile ale idoc ale/edi archive FI documents audit auditing auditor aws aws cloud basic type bluefield approach ccms ccmsidb charm copilot datavard dbacockpit download sap note download snote edi idoc electronic data interchange enable sap archiving objects erpprep ffid firefighter fraud functional hana admin how to apply sap security note https://www.erpprep.com/ idoc install install sap fiori installation interfaces intermediate document internal control license key linux version materials management messsage niping test order type port prince2 agile prince2 agile practitioner purchasing quick info s4 hana sap abap dumps sap abbreviations sap activate certification sap activate project manager sap authorization sap aws sap brownfield sap ccms sap ccms configuration sap erp sap error sap grc sap greenfield sap internet demo system sap license sap maintenance certificate sap material management sap meaning sap mm sap mm consultant sap monthly security note sap netweaver sap network diagnostic sap niping sap note sap oss sap patch day sap performance sap performance issue sap purchase order sap s/4hana sap sales and distribution sap sap otc sap sd sap sd certification training sap sd course sap sd jobs sap sd module sap sd online training sap sd training sap sd tutorial sap sd tutorial for beginners sap security sap security note sap snote sap snote tutorial sap solution manager sap sql segregation of duties separation of duties sles slicense smc snote snote in sap system sod conflict solution manager solution maneger stop start hana database suse linux techie trex two step upgrade required waterfall