SAP Knowledge Base Article - Preview

1793521 - secExternal alias is not created and AD/LDAP users fail SSO when trusted authentication via SAML is enabled


  • LDAP or AD users cannot logon via their LDAP/AD username and password via SAML SSO (trusted authentication) when trusted.auth.namespace.enabled= true
  • Instead enterprise aliases need to be created and user must logon via enterprise to enable secExternal alias.
  • After secExternal alias is created then LDAP and AD users can SSO via SAML 
  • NOTE: this probably applies to any external authentication that is tied into using trusted auth but this issue and ADAPT were for a customer using SAML 



SAP BusinessObjects Business Intelligence Platform 4.0 SP 4


SAP BusinessObjects Business Intelligence platform 4.0


zie biauth pdkba single sign on sign-on silent automatic logon , KBA , BI-BIP-AUT , Authentication, ActiveDirectory, LDAP, SSO, Vintela , Bug Filed

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.