Hy
i have a problem in SSO configuration from sap portal and sap SRM 7.01 .
All worked ok until SapLogonTicketKeyPair expired 3 days ago.
I've regenerated it using lenght field 2048 with DSA algorithm.
I've exported it in x.509 format (crt) and imported in client 000 strustsso2 in sap system (ACl , etc) .. .
I've restarted smicm but "sso logon not allowed" continued to exist.
Some collegues told me about a problem of lenght field and try with a 1024 instead of a 2048.
I tried to generate in this manner but portal doesn't recognize it in NWA:
SSO Certificate : not found
From default trace i had a Java.security.NoSuchAlgorithmException:
#1.5^H#24B6FD785C7B00680000000A000063E20004E34A91EED7BB#1375809322276#com.sap.engine.services.security.authentication.loginmodule.ticket.CreateTicketLoginModule#sap.com/irj#com.sap.engine.services.security.authentication.loginmodule.ticket.CreateTicketLoginModule#J2EE_ADM_PQW#106##n/a##55181753febb11e2b7b70000090f317a#SAPEngine_Application_Thread[impl:3]_34##0#0#Error##Java###Authentication stack: [{0}].
[EXCEPTION]
{1}#2#ticket#java.security.NoSuchAlgorithmException: ID21109: Remote call errored
at com.sap.engine.services.keystore.spi.EBSDKSKeyStoreSpiImpl.engineGetKey(EBSDKSKeyStoreSpiImpl.java:162)
at java.security.KeyStore.getKey(KeyStore.java:320)
at com.sap.security.core.server.jaas.CreateTicketLoginModule.commit(CreateTicketLoginModule.java:390)
at com.sap.engine.services.security.login.LoginModuleLoggingWrapperImpl.commit(LoginModuleLoggingWrapperImpl.java:211)
So nobody user could connect to the system. So i tried to regenerate a new keystore 2048 to permit access by the users.
How can i try to generate a 1024 key now? Or Have i missing something to regenerate a SapLogonTicketKeyPair exipred?.
Thanks
Nick