on 06-03-2020 9:49 PM
Hi Everyone,
I am working on AD manual and SSO configuration for users from multiple domains in single forest.
BI version is 4.2 SP6 Patch 8 & Tomcat 8 deployed on Windows Server 2012R2
Windows Server : IDC.XYZ.NET
Service account : GAMMA.XYZ.NET
I have completed the configuration as per the KBA 2629070 and SSO is working for the users from all the domains (DELTA, ALPHA, & GAMMA domain which all are subdomain of XYZ.NET). However the users are not able to login manually to BI launchpad/CMC except for the users from GAMMA domain.
The users from all the domain are able to login to CCM->Manage servers and UDT.
Based on troubleshooting and errors found in stdout.log file found 2337643 - Java AD fails for multi domain multi forest environment, which mentions to be the bug with java1.8.
I am currently trying to configure the AD plugin with IDC domain to check if it works.
Want to know if there is any workaround apart from reconfiguration.
Regards,
Omkar
Hi Tim,
Got it working by making changes in the krb5.ini file.
Thank you.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
To note that bug is a multi forest issue not multi domain (in the same forest) most likely the problem is just the specific domain in the krb5.ini https://apps.support.sap.com/sap/support/knowledge/preview/en/1245178
Is everything entered in all CAPS?
-Tim
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
77 | |
9 | |
9 | |
7 | |
7 | |
6 | |
6 | |
6 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.