Upload File

499386 - invalid logon ticket for ca certificates

  • Home
  • Documents
  • 499386 - Invalid Logon Ticket for CA Certificates
2
SAP Note Header Data Symptom When you log on using a "SAP Logon Ticket", the system rejects the logon (see Note 177895) and issues the following error message: "A logon ticket that could not be interpreted was received (syntax)" Previously, the ticket-based logon had correctly worked for approximately one year. Therefore, this is not a configuration problem. Other Terms MYSAPSSO2, workplace, SSO, Single Sign-On, ticket, logon, certificate, CA, Certification Authority, process flow, validity Reason and Prerequisites You use a certificate that was issued by SAP_CA (see also Note 389186). These certificates are issued with a validity period of only one year. Logon tickets are still issued after the validity period expires. However, when the system checks the logon tickets that it receives, the error that is mentioned above is triggered. This problem is not limited to CA certificates. However, self-signed certificates are generated with longer validity periods (up to the year 2038). Solution You must request the certificate again. To do this, you must use transaction PSEMAINT (or STRUST in newer releases) to generate a new PSE (with the same name) and resend a certificate request to SAP. Alternatively, you can send the certificate request to a different Certification Authority (CA). Other Attributes Validity This document is not restricted to a software component or software component version References This document refers to: SAP Notes 499386 - Invalid logon ticket for CA certificates Version 4 Validity: 23.03.2007 - active Language English Released On 23.03.2007 14:32:31 Release Status Released for Customer Component BC-SEC-SSF Secure Store and Forward BC-SEC Security EP-PIN-SEC-TIC Ticket Priority Correction with high priority Category Help for error analysis PSEMAINT SSO2 STRUST 912229 WEBAS Java: SSO Public Key Certificate expires every 2 years 588297 Warnings about security certificates in the system log Other Components Transaction codes

Upload: oscr-ccanihua

Post on 04-Dec-2015

217 views

Category:

Documents


4 download

Report

DESCRIPTION

499386 - Invalid Logon Ticket for CA Certificates

TRANSCRIPT

Page 1: 499386 - Invalid Logon Ticket for CA Certificates

SAP Note

Header Data

Symptom

When you log on using a "SAP Logon Ticket", the system rejects the logon (see Note 177895) and issues the following error message: "A logon ticket that could not be interpreted was received (syntax)" Previously, the ticket-based logon had correctly worked for approximately one year. Therefore, this is not a configuration problem.

Other Terms

MYSAPSSO2, workplace, SSO, Single Sign-On, ticket, logon, certificate, CA, Certification Authority, process flow, validity

Reason and Prerequisites

You use a certificate that was issued by SAP_CA (see also Note 389186). These certificates are issued with a validity period of only one year. Logon tickets are still issued after the validity period expires. However, when the system checks the logon tickets that it receives, the error that is mentioned above is triggered. This problem is not limited to CA certificates. However, self-signed certificates are generated with longer validity periods (up to the year 2038).

Solution

You must request the certificate again. To do this, you must use transaction PSEMAINT (or STRUST in newer releases) to generate a new PSE (with the same name) and resend a certificate request to SAP. Alternatively, you can send the certificate request to a different Certification Authority (CA).

Other Attributes

Validity

This document is not restricted to a software component or software component version

References

This document refers to:

SAP Notes

    499386 - Invalid logon ticket for CA certificates  

Version   4     Validity: 23.03.2007 - active   Language   English

Released On 23.03.2007 14:32:31

Release Status Released for Customer

Component BC-SEC-SSF Secure Store and Forward

BC-SEC Security

EP-PIN-SEC-TIC Ticket

Priority Correction with high priority

Category Help for error analysis

PSEMAINT

SSO2

STRUST

912229   WEBAS Java: SSO Public Key Certificate expires every 2 years

588297   Warnings about security certificates in the system log

Other Components

Transaction codes

Page 2: 499386 - Invalid Logon Ticket for CA Certificates

This document is referenced by:

SAP Notes (3)

572035   Warning about expired security certificates

389186   Services rendered by the SAP Trust Center Service

177895   Refitting the mySAP.com Single Sign-On capability

177895   Refitting the mySAP.com Single Sign-On capability

389186   Services rendered by the SAP Trust Center Service

572035   Warning about expired security certificates


Sap Logon Introduction

Mengganti Logon Screenlogout

Invalid argument

KIKOLIN LOGON TELESI TI GILO LOGON A CORONA VIRUS...1.5 mètre 1.5 mètre KIKOLIN LOGON TELESI TI GILO LOGON A CORONA VIRUS 1. Lalane könisi kulo, diŋitan liŋ ku pioŋ ku sabuni

DS Logon - Creating a DS Logon Account - Military … Start Guide: Creating a DS Logon Account. This guide can help you get started with DS Logon by . assisting you in understanding

Logon Optimization for XenDesktop and XenApp - · PDF fileWHITE PAPER | Logon Optimization i Optimization Guide: User Logon Understanding and Optimizing the Logon Process for XenApp

Smart card logon

Logon w2k3serv

Authentication of a WS Client Using a SAP Logon Ticket · 2019. 11. 12. · SAP Online Help 04.04.2005 Authentication of a WS Client Using a SAP Logon Ticket Task In this tutorial,

Corporate Logon Info

Crossmatch | DigitalPersona® Logon for Windows …docs.media.bitpipe.com/io_13x/io_137584/item... · Transform your Windows logon authentication protocol with DigitalPersona Logon

Stackstorm - inovex · StackStorm StackStorm matches SIEM Alert to Invalid Access rule, begins lockdown workflow O Remediation issue opened in Ticket tracking System StackStorm begins

SAP Screen Logon

Secure Windows logon with Rohos Logon Key

Sap Logon Group_v2

Troubleshooting smart card logon authentication on …...6 If the test fails, the string is transformed to "smart card logon : chain on smart card is invalid" To verify trust issues

Windows Logon Forensics 34132

How Interactive Logon Works

Disable windows logon password

How to Change the Windows 7 Logon BackgroundHow To Change The Windows 7 Logon Background.pdf

Microsoft Word - Offline Merchant Security Policy.doc  · Web viewACL violations. Invalid user authentication attempts. Logon and actions taken by any individual using privileged

Mastering Windows Network Forensics and Investigation Chapter 13: Logon and Account Logon Events

Invalid Ecj and Invalid Wa

Report Developer - LOGON

Authentication Using Logon Tickets

Smartcard Logon

Futronic Logon Enterprise Edition

Authentication of a WS Client Using a SAP Logon Ticket

0.SAP Logon & Navigation

Logon Proxis

logon|shanghai daily

SPHINX LOGON MANAGER JAPANESE - securetech-corp.com · SPHINX LOGON MANAGER JAPANESE USER'S MANUAL _____ SecureTech Peripherals, Inc

SAS Agent for Windows Logon 1.12 Configuration Guide · Installing SAS Agent for Windows Logon ... CHAPTER 3 Configuration ..... 22: SAS Agent for Windows Logon Configuration Management

Logon to deonizamabad

SELECTT User Guide - gov.uk...Add/Remove Programs icon in the Control Panel. 2.5 Obtaining Support ... tell you which part of your credentials were invalid.) If you are unable to logon