Hello Manuell,,
We are in the process of implementing a Web Service SSO between .net based web service and SAP ECC based on the SAP TECHED presented solution "SIM208 SSO for SAP NetWeaver Leveraging X.509 Certificate Auto Enrollment in Microsoft Active Directory"
The users have x.509 certificate are stored in the users personal store on each computer the user logs on.
We have modified the .net application to read the user x.509 cert from his personal certs and send to the SAP. Since we already imported this x.509 on SAP ECC , The expectation is that when the user trigger the web service from the browser , the server send the response asking who are you, then the .net application present the certificate stored in the user PC and then the communication established.
Based on the above scenario, I have the following questions:
1. I have received the cert from network folks which has the below details which I am planning to import on to ECC STRUST.
CN = My Company Root Certificate Authority
DC = mycompany
DC = org
When I create certrule in ECC? if I have to map the Active directory user to SAP user , is that above given details in certs are enough ?
Thanks
Krish