Académique Documents
Professionnel Documents
Culture Documents
Applies to:
SAP Business Object XI 3.1 SP3 FP 4, Data Federator 3.0 SP3. For more information, visit the Business
Objects homepage.
Summary
Part 1: Configure Web Intelligence for Windows AD-based authentication
Part 2: Configure for SSO against SAP data source using Crypto
Part 3: Configure Data Federator to use Windows AD authentication
Part 4: Configure Data Federator Universes for SSO using Crypto
Know issue and Troubleshooting
Author:
Hemant Kumar
Author Bio
Hemant Kumar is an SAP Basis Consultant. He is SAP Certified and has over seven years of experience in
implementing SAP products. As an SAP technical architect, he helps customers design, build and implement
SAP applications.
Table of Contents
Introduction ......................................................................................................................................................... 3
Product Version ............................................................................................................................................... 3
Configure BusinessObjects XI (InfoView) for Windows AD-based Authentication ............................................. 4
Create the Configuration File .......................................................................................................................... 4
Change the Local Security Policy ................................................................................................................... 4
Run BOE Application under Windows AD Service Account ........................................................................... 5
Configure CMC and Prepare for Windows AD Authentication........................................................................ 6
Related Content .................................................................................................................................................. 9
Disclaimer and Liability Notice .......................................................................................................................... 10
Introduction
This document covers configuring InfoView for Windows Active Directory (AD) based authentication. It is
assumed that the reader required this to allow users to log in to the Central Management Console (CMC)
and Web Intelligence InfoView.
Product Version
Following product versions are using for this demo and during the preparation of this document:
bscLogin.conf
com.businessobjects.security.jgss.initiate {
com.sun.security.auth.module.Krb5LoginModule required debug=true;
};
Enter the required details as shown on the following screenshots. Use unique and meaningful names.
The command sets the Service Principal name. In the above example, svc-edw-winad is used as a sample.
Replace it with the actual service account name. Replication between different domain controllers might take
15-30 minutes. After that, try to log in to BOE using Windows AD as the authentication method.
If it is taking time, open a command promt and run the set command. Find the server name under
LOGONSERVER. Work with the Windows AD administrator to have the SETSPN command run on this
server first.
Related Content
How to map SAP users and AD users in XI3.1 CMC
How to configure SNC in XI3.1 CMC
How to setup XI3.1 WebIntelligence SSO with SAP BW
For more information, visit the Business Objects homepage.