cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

portal sessions sharing error

Go to solution
ro9
Participant

on ‎04-23-2015 12:25 PM

0 Kudos

Hi!
When a user logoff the portal - the session doesnt seem to terminate,

eg:

User A: Logon to the portal, run som applications from the backend (WDA), Logoff.

User B: Logon - using the same browser window as User A - now user B get the backend session of user A.

in the the backecn SICF_SESSIONS show that session management is activated,

In the portal - i have checked Session Management.

We have established trust between the portal and the backend.

Can i do something to assure that the user gets locked off?

i have implemented note:1717945

Br

Ronni

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎04-27-2015 6:45 AM
0 Kudos

Hi Ronni,

Request you to check below OSS notes they might help you in this case.

1660720 - Session remains open after the logoff on enterprise portal

1717945 - Portal Logoff Does Not Logoff the Backend When Using HTTP Security Session Management


And for below OSS note there are few parameter checks in backend and backend services so you might need to get the help from your basis team to check on the Session managment in BAckend ABAP system and parameters.


1322944 - ABAP: HTTP security session management

1777513 - WebGUI logoff does not work


Let us know if this helps you.


Regards,

Ram

Show replies
Show replies

Answers (3)

Answers (3)

ro9
Participant
‎04-30-2015 8:06 AM
0 Kudos

Hi All!

Thanks alot for your inputs.
I looks like the problem has something to do with the users browser not allowing popup - and maybe som cookie issues.

Because it looks like it works on some machine but not all.

I wasnt able to install the HTTP trace tool due to rights. and the developer tools in IE did not show any call to the termination service.

But for now we will keep closing the browser window before logging in again.

Best regards

Ronni

Show replies
Show replies
Former Member
‎04-30-2015 8:21 AM
0 Kudos

Hi Ronni,

Good day. You can check below notes about the session release agent and pop-up block issue this might help you more.

Regards,

Ram

ro9
Participant
‎04-27-2015 7:15 AM
0 Kudos

Hi All!


Thanks alot for all you replies,

i will try them out / read the notes,

and see if i can fix it.

I will update this thread afterwards

br

Ronni

Show replies
Show replies
Former Member
‎04-23-2015 2:20 PM
0 Kudos

Make sure the ICF logoff service is active in the backend. Use developer tools to trace network activity for other possible problems. Also make sure popups are not blocked for the portal nor the backend URLs.

Show replies
Show replies
ro9
Participant
‎04-24-2015 8:04 AM
0 Kudos

Hi Samuli -

the service is active,

and i tried the following:

  • Logged on with user A
  • Logged off user A
  • In same browser - logon with user B
  • Kill All User A sessions in backend (SM04)
  • When user B "hits" the first WDA application a new User A session is spawned.

So even if user A sessions are killed - they wil be recreated once a WDA application is run again. So somehow the client side / browser can reanbled the session - even though the previus user has been logged out..

Pretty strange..

br Ronni

Former Member
‎04-24-2015 2:28 PM
0 Kudos

That's expected with HTTP Security Session Management switched on. As long as the browser has a valid security context in the cache, a new session can be opened without re-authentication. I suggest you use developer tools to find out why the call to the ICF logoff service fails. Please share the exact versions of involved systems (portal, backend) including EHPs, SPs and patches.

Former Member
‎04-26-2015 3:07 PM
0 Kudos

Hi Ronny,


This blog covers common session termination issues,

please review it as it may assist here.

Best regards,

Etay

Ask a Question