SAP Knowledge Base Article - Preview

1793521 - secExternal alias is not created and AD/LDAP users fail SSO when trusted authentication via SAML is enabled


  • LDAP or AD users cannot logon via their LDAP/AD username and password via SAML SSO (trusted authentication) when trusted.auth.namespace.enabled= true
  • Instead enterprise aliases need to be created and user must logon via enterprise to enable secExternal alias.
  • After secExternal alias is created then LDAP and AD users can SSO via SAML 
  • NOTE: this probably applies to any external authentication that is tied into using trusted auth but this issue and ADAPT were for a customer using SAML 



SAP BusinessObjects Business Intelligence Platform 4.0 SP 4


SAP BusinessObjects Business Intelligence platform 4.0


zie biauth pdkba single sign on sign-on silent automatic logon , KBA , BI-BIP-AUT , Authentication, ActiveDirectory, LDAP, SSO, Vintela , Bug Filed

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.