Hi,
we are try sapssext java example to generate sso ticket and save to sapshortcut file to sso abap server, but server responses "Issuer of SSO ticket is not authorized" .
We has config server parameters e
login/accept_sso2_ticket = 1
login/create_sso2_ticket = 2
and import certificate and set acl ok.
On target ecc system, I switched on the sm50(level 3) trace and found the following error:
M PfSetActDBConRec: record found for dbcon <>
M PfStatBegin: open DBCON rec with opcode 10
M PfStatEnd: close DBCON rec after opcode 10
B } db_xrtab( fcode = 'RT_READ_ONLY', retcode = 64 )
N No entry in TWPSSO2ACL for SYS and CLI .
N CheckSubject failed (rc=19). Verifying if ticket was issued by me.
N *** ERROR => System ID and client from ticket are not the same than mine. [ssoxxkrn.c 1065]
N {root-id=56F2022A1D251EE484B95DA770743FB6}_{conn-id=00000000000000000000000000000000}_0
N Data from ticket: sysid= , client=
N My system data: sysid=ITS , client=001
N *** ERROR => Neither was ticket issued by myself nor can I find issuer in TWPSSO2ACL (see note 1055856). [ssoxxkrn.c 1071]
N {root-id=56F2022A1D251EE484B95DA770743FB6}_{conn-id=00000000000000000000000000000000}_0
N dy_signi_ext: ticket issuer not trusted
B { db_rtab( fcode = 'RT_READ_ONLY', tname = 'TSL1D' ) {rsauwri2.c:398}
B NTAB: db_ntab(): NT_RDTDESCR: tabname: TSL1D , fieldname: , fieldnumber: 0
B NTAB: procure_2(): art: 3, tabname: TSL1D
B NTAB: fetch_entry(): art: 3, tabname: TSL1D
B NTAB: T_search(): tabname: TSL1D , hval: 26883
B NTAB: db_ntab(): returning 0
data from ticket sysid and client are empty, so the server can not match in TWPSSO2ACL.
Thanks in advance,
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.