Skip to Content

In this doc we explain how to  link serveur smp (frrmurb-smp-105.urb.labo.local) with SAP ABAP instance T2J hosted on sapt2j.

1.  Check SSO2 configuration of SAP

RZ10 :

Go to url:

https://sapt2j.rm.corp.local:8100/sap/bc/bsp/sap/system_test/test_sso2.htm?sap-user=sap*&sap-password=pass&sap-client=100

/wp-content/uploads/2013/08/image001_259699.png

Log in and you have this page :

/wp-content/uploads/2013/08/image003_259727.png

/wp-content/uploads/2013/08/image005_259728.png

In the same IE windows, change url to

https://sapt2j.rm.corp.local:8100/sap/bc/ping?sap-client=100.

If you have a popup which ask you to re log it is wrong, else you have :

/wp-content/uploads/2013/08/image007_259729.png

2.  Generating a PSE file for SUP Server :

sapgenpse.exe get_pse  -p SNCTEST.pse –r abc.req –x abcpin “CN=frrmurb-smp-105.urb.labo.local,OU=TOTALM_S,C=FR”

/wp-content/uploads/2013/08/image009_259731.png

·         Generate credential file  to initialize a new keystore for usage :

Sapgenpse seclogin –p SNCTEST.pse –O myuser -x mypassword

/wp-content/uploads/2013/08/image011_259732.png

3.  Import the Sup PSE certificate into the SAP

On the SUP system, export the certificate from the PSE that was just created.

sapgenpse export_own_cert -v -p SNCTEST.pse -x abcpin -o SUP.crt

/wp-content/uploads/2013/08/image013_259733.png

Strust:

/wp-content/uploads/2013/08/image015_259734.png

/wp-content/uploads/2013/08/image017_259735.png

/wp-content/uploads/2013/08/image019_259736.png

Click on : /wp-content/uploads/2013/08/image021_259737.png

/wp-content/uploads/2013/08/image023_259738.png

Save.

4.  Import the SAP certificate into SUP PSE

Strust :

/wp-content/uploads/2013/08/image025_259739.png

/wp-content/uploads/2013/08/image027_259740.png

Go on sup server.  Copy SAPT2J.crt in Sapcryptolib folder.

sapgenpse.exe maintain_pk -v -p SNCTEST.pse -x abcpin –a SAPT2J.crt

/wp-content/uploads/2013/08/image029_259741.png

A SUP application restart will be needed here.

5.  Create a “Connections” profile for sup

Login into SUP SCC with an administrative account.

• Navigate to “Connections” node:

/wp-content/uploads/2013/08/image031_259743.png

• Create a new connection by clicking on the “New…”

/wp-content/uploads/2013/08/image033_259744.png

In order to test :

GW_ADMIN/GWADMIN

/wp-content/uploads/2013/08/image035_259745.png

SNC Name

p: CN=frrmurb-smp-105.urb.labo.local,OU=TOTALM_S,C=FR

SNC Libray Path

C:\sapcryptolib\sapcrypto.dll

SNC Partner

p : CN=T2J, OU=URBTOTALMS, O=SAP, C=FR

SNC Level

1

If ok remove user and password :

/wp-content/uploads/2013/08/image037_259746.png

OK

/wp-content/uploads/2013/08/image039_259747.png

6.  Token provider URL

http://sapt2j.rm.corp.local:8000/sap/bc/bsp/sap/system_test/test_sso2.htm?sap-client=100

/wp-content/uploads/2013/08/image043_259750.png

/wp-content/uploads/2013/08/image041_259748.png

Remove NoSecLoginModule on all tab and validate:

/wp-content/uploads/2013/08/image045_259751.png

/wp-content/uploads/2013/08/image047_259752.png

If ok Apply: 

/wp-content/uploads/2013/08/image049_259753.png

To report this post you need to login first.

1 Comment

You must be Logged on to comment or reply to a post.

Leave a Reply