How To Recover Login Module Stack when login to NWA or Visual Administrator is impossible

Similar documents
How To... Reuse Business Objects and Override Operations of a Business Object

How to Use Function Keys in Mobile Applications for Handhelds

How To Set up NWDI for Creating Handheld Applications in SAP NetWeaver Mobile 7.1

How To... Configure Integrated Configurations in the Advanced Adapter Engine

SAP NetWeaver How-To Guide

How To... Master Data Governance for Material: BADI USMD_SSW_SYSTEM_METHOD_CALLER to create successor change request

How To... Promote Reports and Input Schedules Through Your System Landscape

How To... Master Data Governance for Material: BADI USMD_SSW_PARA_RESULT_HANDLER to merge result of parallel workflow tasks

How To...Configure Integration of CUP with SPM

How-To... Add Sensitive Content into an Area

Simplified Configuration of Single System Update in Maintenance Optimizer

How To...Use a Debugging Script to Easily Create a Test Environment for a SQL-Script Planning Function in PAK

SAP NetWeaver How-To Guide

SAP NetWeaver How-To Guide How to use Process Execution Manager Using SAP Test Data Migration Server

How To Generate XSD Schemas from Existing MDM Repositories

How To... Master Data Governance for Material: File Down- and Upload

Setting Up an Environment for Testing Applications in a Federated Portal Network

Install TREX for CAF Version 1.00 March 2006

How To...Custom BADI for rounding off values in SAP BUSINESSOBJECTS Planning and Consolidation, version for SAP NetWeaver.

MDM Syndicator Create Flat Syndication File

configure an anonymous access to KM

How To Integrate the TinyMCE JavaScript Content Editor in Web Page Composer

How To... Use the BPC_NW Mass User Management Tool

SAP Composite Application Framework. Creating a Content Package Object

SAP - How-To Guide MDG Custom Object Data Replication How to Configure Data Replication for MDG Custom Objects (Flex Option)

Visual Composer - Task Management Application

SAP GRC Access Control: Configuring compliant user provisioning (formerly Virsa Access Enforcer) into CUA Systems

Process Control 2.5 Implementation Checklist

How To Configure the Websocket Integration with SAP PCo in SAP MII Self Service Composition Environment Tool

SAP NetWeaver How-To Guide. SAP NetWeaver Gateway Virtualization Guide

Access Control 5.3 Implementation Considerations for Superuser Privilege Management ID-Based Firefighting versus Role-Based Firefighting Applies to:

How To Customize the SAP User Interface Using Theme Editor

Do Exception Broadcasting

Consuming Web Dynpro components in Visual Composer.

How to Set Up and Use the SAP OEE Custom UI Feature

How To... Configure Drill Through Functionality

How To Extend User Details

link SAP BPC Excel from an enterprise portal Version th of March 2009

How to Create a New SAPUI5 Development Component

What s New / Release Notes SAP Strategy Management 10.1

How To Enable Business Workflow for SAP NetWeaver Gateway 2.0

SAP Composite Application Framework. Creating an External Service type Callable Object in Guided Procedures

Integrate a Forum into a Collaboration Room

A Step-By-Step Guide on File to File Scenario Using Xslt Mapping

How to Upgr a d e We b Dynpro Them e s from SP S 9 to SP S 1 0

Web Page Composer anonymous user access

Enterprise Portal Logon Page Branding

Configure SSO in an SAP NetWeaver 2004s Dual Stack

Quick Reference Guide SAP GRC Access Control Compliant User Provisioning (formerly Virsa Access Enforcer): HR Triggers

How to Set Up and Use the SAP OEE Custom KPI Andons Feature

How to View Dashboards in the Self Service Composition Environment with Additional Metadata

How to Browse an Enterprise Services Registry in Visual Composer

SOA Security Scenarios: WebAS Java, Message Level Security with no Transport Guarantee

Create Partitions in SSAS of BPC Version 1.00 Feb 2009

SAP Composite Application Framework. Creating a Callable Object in Group: Miscellaneous

Data Validation in Visual Composer for SAP NetWeaver Composition Environment

Integrating a Web Service in a Composite Application. SAP Composite Application Framework

How to do Breakdown Validation in SAP BPC 7.0 for the SAP NetWeaver Platform

How To Configure IDoc Adapters

Cache Settings in Web Page Composer

How to Translate a Visual Composer Model Part I

How to... Build a Planning Function that Deletes Comments in BW

How To Troubleshoot SSL with BPC Version 1.01 May 2009

Visual Composer Build Process

Authentication of a WS Client Using a SAP Logon Ticket

SDN Contribution HOW TO CONFIGURE XMII BUILD 63 AND IIS 6.0 FOR HTTPS

How To Develop a Simple Web Service Application Using SAP NetWeaver Developer Studio & SAP XI 3.0

Setup an NWDI Track for Composition Environment Developments

Building a Tax Calculation Application

Configure UD Connect on the J2EE Server for JDBC Access to External Databases

Transport in GP. How-to Guide Beginning with SAP NetWeaver 2004s SPS06. Version 2.00 January 2006

Create Monitor Entries from a Transformation routine

Configure TREX 6.1 for Efficient Indexing. Document Version 1.00 January Applicable Releases: SAP NetWeaver 04

SAP How-To Guide. Master Data Governance for Material. How To... Adjust MDG Homepage. Applicable Releases: EhP6, MDG 6.1

How to Fast-Switch Integration Scenarios between SAP PI Runtimes Part II: Web Dispatcher

Using Business Graphics

Create Monitor Entries from an update routine

How To... Transport Forum Content Between SAP NetWeaver Systems

View Time Security for crystalreports.com

WDA - Custom themes for Web Dynpro ABAP applications without SAP Enterprise Portal integration

SAP MII: Leveraging the Data Buffering Feature for Connection Error Handling.

Extract Archived data from R3

Installation Guide Business Explorer

How To Use Surveys with Mobile Sales for handheld Version 1.00 January 2007

Work with Variables in SAP NetWeaver Visual Composer Version 1.00 May 2006

SAP Centralized Electronic Funds Transfer 1.8

Building a Composite Business Process from Scratch with SAP NetWeaver BPM Guide 2

Use Business Objects Planning and Consolidation (version for the Microsoft platform) BPF services in Xcelsius

Setting up Single Sign On Between xmii and Enterprise Portal

Introducing SAP Enterprise Services Explorer for Microsoft.NET

xmii UDS Overview and Troubleshooting

Configure Peripheral Drivers with Mobile Infrastructure

Value Help in Web Dynpro ABAP - Tutorial.

How To Create Publications with SAP NetWeaver MDM Using MDM Publisher- Advanced Topics

SAP NetWeaver 04. Unification Terminology

Preview of Web Services Reliable Messaging in SAP NetWeaver Process Integration 7.1

Extracting Product Attributes in XML using Web Service

Web Dynpro for ABAP: Tutorial 4 - Display Bookings of Selected Flight

Visual Composer for NetWeaver CE: Getting Started with a Typical Workflow

Line Items in BI Integrated Planning

Transcription:

SAP NetWeaver How-To Guide How To Recover Login Module Stack when login to NWA or Visual Administrator is impossible Applicable Releases: SAP NetWeaver 7.0 SAP NetWeaver CE 7.1 Topic Area: Security & Identity Management Capability: Identity & Access Management Version 1.0 March 2009

Copyright 2009 SAP AG. All rights reserved. No part of this publication may be reproduced or transmitted in any form or for any purpose without the express permission of SAP AG. The information contained herein may be changed without prior notice. Some software products marketed by SAP AG and its distributors contain proprietary software components of other software vendors. Microsoft, Windows, Outlook, and PowerPoint are registered trademarks of Microsoft Corporation. IBM, DB2, DB2 Universal Database, OS/2, Parallel Sysplex, MVS/ESA, AIX, S/390, AS/400, OS/390, OS/400, iseries, pseries, xseries, zseries, z/os, AFP, Intelligent Miner, WebSphere, Netfinity, Tivoli, Informix, i5/os, POWER, POWER5, OpenPower and PowerPC are trademarks or registered trademarks of IBM Corporation. Adobe, the Adobe logo, Acrobat, PostScript, and Reader are either trademarks or registered trademarks of Adobe Systems Incorporated in the United States and/or other countries. Oracle is a registered trademark of Oracle Corporation. UNIX, X/Open, OSF/1, and Motif are registered trademarks of the Open Group. Citrix, ICA, Program Neighborhood, MetaFrame, WinFrame, VideoFrame, and MultiWin are trademarks or registered trademarks of Citrix Systems, Inc. HTML, XML, XHTML and W3C are trademarks or registered trademarks of W3C, World Wide Web Consortium, Massachusetts Institute of Technology. Java is a registered trademark of Sun Microsystems, Inc. JavaScript is a registered trademark of Sun Microsystems, Inc., used under license for technology invented and implemented by Netscape. MaxDB is a trademark of MySQL AB, Sweden. SAP, R/3, mysap, mysap.com, xapps, xapp, SAP NetWeaver, and other SAP products and services mentioned herein as well as their respective logos are trademarks or registered trademarks of SAP AG in Germany and in several other countries all over the world. All other product and service names mentioned are the trademarks of their respective companies. Data contained in this document serves informational purposes only. National product specifications may vary. These materials are subject to change without notice. These materials are provided by SAP AG and its affiliated companies ("SAP Group") for informational purposes only, without representation or warranty of any kind, and SAP Group shall not be liable for errors or omissions with respect to the materials. The only warranties for SAP Group products and services are those that are set forth in the express warranty statements accompanying such products and services, if any. Nothing herein should be construed as constituting an additional warranty. These materials are provided as is without a warranty of any kind, either express or implied, including but not limited to, the implied warranties of merchantability, fitness for a particular purpose, or non-infringement. SAP shall not be liable for damages of any kind including without limitation direct, special, indirect, or consequential damages that may result from the use of these materials. SAP does not warrant the accuracy or completeness of the information, text, graphics, links or other items contained within these materials. SAP has no control over the information that you may access through the use of hot links contained in these materials and does not endorse your use of third party web pages nor provide any warranty whatsoever relating to third party web pages. SAP NetWeaver How-to Guides are intended to simplify the product implementation. While specific product features and procedures typically are explained in a practical business context, it is not implied that those features and procedures are the only approach in solving a specific business problem using SAP NetWeaver. Should you wish to receive additional information, clarification or support, please refer to SAP Consulting. Any software coding and/or code lines / strings ( Code ) included in this documentation are only examples and are not intended to be used in a productive system environment. The Code is only intended better explain and visualize the syntax and phrasing rules of certain coding. SAP does not warrant the correctness and completeness of the Code given herein, and SAP shall not be liable for errors or damages caused by the usage of the Code, except if such damages were caused by SAP intentionally or grossly negligent. Disclaimer Some components of this product are based on Java. Any code change in these components may cause unpredictable and severe malfunctions and is therefore expressively prohibited, as is any decompilation of these components. Any Java Source Code delivered with this product is only to be used by SAP s Support Services and may not be modified or altered in any way.

Document History Document Version Description 1.00 First official release of this guide

Typographic Conventions Icons Type Style Description Icon Description Example Text Words or characters quoted from the screen. These include field names, screen titles, pushbuttons labels, menu names, menu paths, and menu options. Caution Note or Important Example Recommendation or Tip Cross-references to other documentation Example text Emphasized words or phrases in body text, graphic titles, and table titles Example text File and directory names and their paths, messages, names of variables and parameters, source text, and names of installation, upgrade and database tools. Example text User entry texts. These are words or characters that you enter in the system exactly as they appear in the documentation. <Example text> Variable user entry. Angle brackets indicate that you replace these words and characters with appropriate entries to make entries in the system. EXAMPLE TEXT Keys on the keyboard, for example, F2 or ENTER.

Table of Contents 1. Business Scenario... 1 2. Background Information... 1 3. Prerequisites... 1 4. Step-by-Step Procedure... 3 4.1 Use the configtool or the offlinecfgeditor... 3 4.2 Create a copy of the configuration for future use.... 12

1. Business Scenario The authentication to the NetWeaver Application Server Java is done though the authentication templates. If the authentication template has an improperly set authentication stack, the authentication to the Java Engine is impossible. 2. Background Information The Java Stack of the Web Application Server is up and running. However it is not possible to authenticate in the Visual Administrator (NW 7.0). The web access to the NWA returns blank page. (NW CE 7.1) There is no error message in the log and trace files. Remote clients like Visual Administrator or NWDS Error while connecting com.sap.engine.services.security.exceptions.baseloginexception: Access Denied. 3. Prerequisites NetWeaver 7.0 The template is located under: Visual Administrator: Server -> Services -> Security Provider -> Runtime tab -> Policy Configurations tab SAP-J2EE-Engine in the Components panel. In the Authentication tab the "Authentication template:" should be "no". The BasicPasswordLoginModule should be the only login module stack listed and the Flag should be set to SUFFICIENT. March 2009 1

NetWeaver CE 7.1 The template is located under: NWA: Configuration Management -> Security -> Authentication -> Components tab -> Template SAP-J2EE-Engine in the List of Policy Configuration panel. Under the Policy Configuration Details Panel -> Authentication Stack -> The BasicPasswordLoginModule should be the only login module stack listed and the Flag should be set to SUFFICIENT. March 2009 2

... How To Recover Login Module Stack when login to NWA or Visual Administrator is impossible 4. Step-by-Step Procedure Apparently due to the fact that the authentication to the Visual Administrator or the NetWeaver Administrator is impossible, the problem cannot be fixing with modification of the authentication stack using these tools. For resolving the problem, please use one of the tools: configtool or the offlinecfgeditor. Tools located under /usr/sap/<sid>/<instanceid>/j2ee/configtool/ folder. 4.1 Use the configtool or the offlinecfgeditor 1. Click on the icon If using the offlinecfgeditor just proceed with the next step. March 2009 3

2. Choose tab Display Configuration Navigate to Configurations -> security -> authentication -> UME User Store If no additional login modules are installed you should see only too sub-notes: Sub-note called 0 and sub-note called: size=1 As well as 3 sub-notes under 0 called: options, classname and flag. Note The above screenshot represents the correct minimal requirement for a login module structure, and this is what you have to make your configuration look like in order to recover the logging. 3. Switch to edit mode: CAUTION Be aware that any change of configurations with the configtool or the offlineconfigeditor is making modifications directly to the WAS database so any wrong modification might brake the engine March 2009 4

Switch to edit mode by pressing the pencil icon. Click Yes on the Switch to edit mode popup window. 4. Delete all sub-notes under the UME User Store Go to security -> authentication -> UME User Store: Choose a sub-note under the UME User Store from the context menu (right click) choose Delete. March 2009 5

5. Create the sub-note 0 Choose the note UME User Store and from the context menu choose Create sub-note A new window will pop up Choose the Sub-configuration from the drop down Enter 0 for Name And press the create button. March 2009 6

6. Repeat the same step of creating a sub-folder Choose Value-entry from the drop down Name: size Value Type: Integer Value: 1 March 2009 7

7. Repeat the same steps for creating the sub-structure for the 0 Choose the newly created 0 structure and create this sub-structure under it: a. Create a new sub-folder: Choose Sub-configuration from the drop-down menu Name: options March 2009 8

b. Create a new sub-folder for the login module class name: Choose Value-entry from the drop-down menu. Name: classname Value Type: String Value: com.sap.engine.services.security.server.jaas.basicpasswordloginmodule March 2009 9

c. Create a new sub-folder Choose Value-entry from the drop-down menu Name: flag Value Type: String Value: SUFFICIENT March 2009 10

8. The final structure should like this: 9. Close the ConfigTool, offlineconfigeditor. 10. Restart the WAS March 2009 11

... How To Recover Login Module Stack when login to NWA or Visual Administrator is impossible 4.2 Create a copy of the configuration for future use. 1. You can create a copy of the new created configuration into a file for easy restore if required in the future. 2. Before closing the configtool, choose the UME User Store sub-note and click the Export configuration to a file icon. March 2009 12

3. On the new pop up window, enter a file name and click Start Export. Store the configuration for future needs. 4. You can import the configuration using the Import configuration icon Choose the UME User Store and import content Directly into the selected configuration March 2009 13

www.sdn.sap.com/irj/sdn/howtoguides

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback