on 05-05-2014 6:23 PM
Hello,
We have a J2EE portal running under IBM Webspher connected to ECC 6.0. Currently, we use a user/pwd to connect to SAP ECC with a specific RFC.
Now, we are setting up an SSO mecanism using SAP Logon Tiocket but when are unable to send this ticket by IBM JCO connecter using RFCs calls. We are getting this error all the time (in ST22):
The user "SAPSYS" in the client 000 attempted to execute the function
"RFCPING" from the function group "SYST", but does not have the approp
RFC authorization.
Error in the ABAP Application Program
The current ABAP program "SAPLSYST" had to be terminated because it ha
come across a statement that unfortunately cannot be executed.
I have added the object authorization S_RFC into the role SAP_BC_WEBSERVICE_SERVICE_USER but we still have the same dumps.
Someone can help please ?
BR,
Saeed
When a trace the WP called, i have this result, some one can help please ?
N Secure | St | orage Record Version 3 | ||
N RSEC: < |
| "rsecxdb__read_and_migrate" [rsecxdb.c 1594] | ||
N RSEC: |
|
| > | "rsecxdb__read_and_migrate" [rsecxdb.c 1206] |
N RSEC: |
| > "rsecxdb__ReadEncryptedContents" [rsecxdbi.c 256] | ||
N RSEC: | < |
|
| "rsecxdb__ReadEncryptedContents" [rsecxdbi.c 378] |
N RSEC: |
|
| > | "RSecAcGetRights" [rsecxacl.c 470] |
N RSEC: | < |
|
| "RSecAcGetRights" [rsecxacl.c 589] |
N RSEC: |
|
| > | "rsecxdb__GetKeyLegacy" [rsecxdb.c 601] |
N RSEC: |
| > "rsecxdb__GetKeyLegacy" [rsecxdb.c 491] | ||
N RSEC: |
| > "rsecxdb__getGlobalKeyFromLegacyKeyfile" [rsecxdb.c 313] | ||
N RSEC: | Ke | y file at location "I:\usr\sap\SBX\SYS\global\security\data\SecStoreDBKey.pse" does not exist. Using default key. | ||
N RSEC: < |
| "rsecxdb__getGlobalKeyFromLegacyKeyfile" [rsecxdb.c 461] | ||
N RSEC: < |
| "rsecxdb__GetKeyLegacy" [rsecxdb.c 538] | ||
N Secure | St | orage Record Version 3 | ||
N RSEC: < |
| "rsecxdb__read_and_migrate" [rsecxdb.c 1594] | ||
N SAML20 | SP | (client 000): 0 expired assertions were deleted | ||
N Wed Aug 20 13:54:42 2014 | ||||
N dy_signi_ext: PASSWORD logon w/o ticket request | ||||
N DyISigni: client=300, user=POCPM2 , lang=E, access=R, auth=P | ||||
N usrexist: effective authentification method: <client,username,password> | ||||
N chckpass: client=300, user=POCPM2 , accesstype=R | ||||
N password logon is generally enabled (default) | ||||
N productive password is still valid (expiration period=0 / days gone=12) | ||||
N codvn=I => password is case-sensitive and up to 40 chars long | ||||
N fallback_check_cpassB: password contains more than 8 characters (-> no downwards-compatible password) | ||||
N chckpass: incorrect password ==> increase lock counter:1 | ||||
N send_usr02_refresh_req : send info | ||||
N save user time zone = > < into spa | ||||
N DyISigni: return code=1 (see note 320991) | ||||
A TH VERBOSE LEVEL FULL | ||||
A ** RABAX: level LEV_RX_PXA_RELEASE_MTX entered. |
A |
A ABAP Program SAPLSYST . |
A Source LSYSTU04 Line 7. |
A Error Code RFC_NO_AUTHORITY. |
A Module $Id: //bas/721_REL/src/krn/rfc/abrfcfun.c#10 $ SAP. |
A Function RabaxRfcNoAuthority Line 7841. |
A ** RABAX: level LEV_RX_STDERR completed. |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Thanks for your answer.
Yes, i did. The user has the required authorizations for RFC Calls but it's still not working.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Have you tryed to add S_RFCACL?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
any help please ?
thanks.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
107 | |
12 | |
11 | |
6 | |
5 | |
4 | |
4 | |
3 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.