Hi,
We are facing issue with SSO when multiple portals are opened in same browser session. All the portals belong to same domain or subdomain.
For example, consider portals P1 & P2 and ECC systems E1 & E2.
SSO is configured between system P1 & E1 and P2 & E2.
Trust relationship does NOT exist between P1 & E2 and P2 & E1.
Suppose user logs in to P1 & P2 in same browser session, SSO with one of the backend systems (E1 or E2) fails.
I understand this is because MySAPSSO2 cookie is common for domain and when user login to P2 , cookie for P1 also exists in cache which is also sent to E2. E2 does not accept this cookie and throws error "SSO logon not possible; browser logon ticket cannot be accepted"
One possible solution I can think of is adding additional logon module to login stack and delete all the cookies in cache belonging to portal domain/subdomain.
I have written test portal component to achieve this.
However, I am facing two issues with this approach:
1. I read all the cookies. However, I can see only one MySAPSSO2 cookie
2. Domain of the cookie is not getting captured. Its captured as 'null'
Environment: SAP NW Portal 7.31
Any ideas/suggestions?
Regards,
Apurva