SAP Biztalk SSO RRS feed

  • Question

  • Hi all,

    We are using Biztalk Adapter Pack 2.0 and Biztalk Server 2009 to communicate with our SAP ECC system using Wcf-Custom as transport type.

    We have now found out that using a user account and specifying SAP username and password in the Wcf-Custom Other tab and export it in the binding is not supported for security reasons: 

    You only need to provide the credentials for the port to connect to the SAP system. While the binding file does retain the user name with which to connect, for security reasons the binding file does not contain the password.

    We have only just starting implement the integrations towards the new ERP system, and when we go to production we will have approximately 100 integrations each with it's own send or receive port. We don't want to have to set the password manually everytime we deploy an integration to an environment.

    We therefore looked into SSO instead. For receiving from SAP ECC using 'Get credentials from affiliate application' it works just fine. However when sending to SAP ECC you can only choose 'Use Single Sign On' and it demands a ticket, we get the error:

    'Unable to redeem the ticket, no ticket exists in the message'

    How come there is this difference between receive and send port configurations? Why not use credentials from affiliate application when sending as well? Do we really have to do like this post below suggest?

    Or this as we try to avoid orchestrations:

    Looking forward to answers!


    Best regards





    Thursday, October 20, 2011 6:36 AM


  • Hi

    As a writer of the blog post that you are referring to. I can only verify that I haven't found any other way to do it.

    Torben Christiansen
    • Marked as answer by Viveca Friday, October 21, 2011 11:00 AM
    Thursday, October 20, 2011 7:14 AM