I tried to create destinations for IoT application enablement in SAP full stack web IDE by choosing Tools-> Update IoT Destinations and enter credentials from service binding of SAP Leonardo Service as in the help portal .After entering the credentials and clicking Update, an authentication popup is appeared to enter SAP Cloud Platform Neo environment credentials. But the authentication failed with no error messages when entering the correct credentials as in the figure. I also assigned correct roles for web ide in SCP cockpit.
My neo subaccount is protected by an Identity Authentication Service (IAS) so I had to enter my P-user credentials to update the IoT Destinations.
Related
I try to create an external captive portal using HotSpot service on Ruckus ZoneDirectory ZD3050 (v10.1.2.0 build 210). How to authenticate clients? I have a web page as a portal, I have my custom authorization flow, but I don't know how to authenticate clients in ZoneDirectory (allow access to WiFi) after successful login.
Here is the documentation on how to do this.
https://webresources.ruckuswireless.com/pdf/appnotes/appnote-wispr.pdf
I have some problems to understand the Login with a SAPUI5 App connected with the OData to a SAP-Server.
First of all, the idea is like a time recognition where i login with the user id or username and password. than i check if it is in the SAP backend system and if it is. i want to show only the records for the staff number.
I am doing it with filters? or there are some other ways?
It should be a basic authentication, when I open the app there is a popup where I need to enter my sap-system username and password, but how I can make this as a login page and how can I get the parameters (every username has a staff number)?
first of all I think you need to understand some basic concepts/architecture settings.
There are two possibilities deploying SAPUI5 apps:
hosted on your SAP NW GW onPremise (no matter if central hub or not)
hosted on SAP Cloud Plattform
Case A: deploying on SAP NW GW onPremise
in this case you could override the ICF classes to achieve custom login and logout explained here: https://blogs.sap.com/2016/11/25/sapui5-application-with-custom-login-and-logout-option/ | I will not explain this is further depth
Case B: hosting a SAPUI5 App on SAP Cloud Platform
in this case your need to understand the architecture to determine what you want
If your SAP Cloud Platform hosts the SAPUI5 application your can read data from an SAP Backend using SAP Cloud Platform Destination Services (which means a destination, using the SAP Cloud Connector to connect to your SAP System)
In your case: First of all, the idea is like a time recognition where i login with the user id or username and password.. than i check if it is in the sapbackend system and if it is.. i want to show ONLY the records for the staffnumber..
--> I would recommend the following: If the app is hosted on SAP CP you need an S-User to access it or a respective single sign on mechanism to replace s-user. You will not be able to replace the login from Cloud Platform with anything individual not breaking security terms. Then you need a SAP NW GW OData Service in your SAP Backend. You further need SAP Cloud Connector paired with your SAP System and with your SAP CP instance. Having both things in place requires creating a destination pointing to your OData Service. If you got these things in place you could easily select the destination when creating an SAPUI5 Application via templates.
Help Links:
SSO for SAP CP:
https://blogs.sap.com/2017/04/13/configure-saml-sso-for-sap-cloud-platform-using-an-external-identity-provider/
Destinations in SAP CP:
https://www.sap.com/developer/tutorials/hcp-create-destination.html
https://blogs.sap.com/2018/03/09/understanding-destination-types-available-in-sap-cloud-platform-mobile-service/
https://www.sap.com/developer/tutorials/teched-2016-3.html
Cloud Connector Setup:
https://www.sap.com/developer/tutorials/hcp-cloud-connector-setup.html
SAP NW GW OData Service
https://blogs.sap.com/2016/05/31/odata-service-development-with-sap-gateway-code-based-service-development/
Have fun
New on Dynamics CRM 2013, Unified Service Desk, aka USD, is a composite application framework for the development of call center and, of course, service desk, applications.
The application has it's own login form. While very flexible for development scenarios, it's not what I'd expect to have on a production environment - for instance, it asks for the address of the CRM instance that you are going to connect to.
So far, I haven't found any way to change this login form.
The login form is of the Unified Service Desk client application, and cannot be changed. Moreover, Unified Service Desk requires an instance of Microsoft Dynamics CRM, so the login form will always prompt you to specify the connection information to a CRM instance where you have deployed the core USD solutions (DynamicsBase and UII). The things that you can customize in the agent desktop are the features and layouts within the application.
You can however configure the sign-in experience to pre-populate values in the sign-in dialog box. For more information, see the Configure sign-in information section in the Connect to CRM instance using the Unified Service Desk client topic.
Unified Service Desk uses the XRM tooling common login control to define the login form. If you are building your "own" Windows client application for CRM, you can use the XRM tooling common login control, which provides The code for CRM authentication, credential storage and retrieval, and diagnostic logging so that you can quickly leverage these capabilities in your Windows client applications for CRM. More information about this: Use the XRM tooling common login control in your client applications.
Thanks,
Vivek
There was a login control provided in XRM.Tooling.connector namespace. This might be a start point to give it a thought..
Please refer to ..https://msdn.microsoft.com/en-gb/library/dn689071.aspx
You can default the configuration information for the connection experience in USD. The documentation on how to do that is in the Microsoft.Xrm.Tooling.Connector SDK Doc's. Effectively you need to add the default settings to the UnifiedServiceDesk.exe.config before you provide the client to your users. that will preload the dialog with connection information, and in the case of OnPremise / AD it can attempt an autologin and never show this dialog.
Also,
Regarding the comment above about storing passwords for login. USD does do this. it uses the Windows Credential vault to store the Password data and other encrypted stores to store other aspects of its configuration. The Windows Credential vault can be managed by Windows Admin's and flushed if necessary.
You can also tell USD to not store passwords with a setting in the UnifiedServiceDesk.exe.config file. The byproduct of which is that the user is required to key their password each and every time the shell connects to CRM.
I'm trying to write a C# console app that will register an application in Azure Active Directory. It should work just as the web application project creation wizard in VS 2013 when you Change Authentication and select Organizational Accounts in Azure.
Following the fiddler trace, I can see that it authenticates the user using wsfederation and an oauth2 token and then uses the graph.windows.net graph api to configuration the AAD directoryObjects service principal and application.
I have tried to use the sample Graph API app, but it requires the app be registered first so that I have the clientId (application id) and password (key) to send in the Acquire Token request using the Windows Azure AD Authentication Library for .NET.
I've tried using a bunch of the different Azure APIs but they all have my chicken and egg problem, I want to use an unregistered client application to register an application in AAD. I need to avoid Configuring Application Authentication and Authorization for the Graph API so that the user has no manual steps.
Does anyone know how Visual Studio does it, using just the user login with browser prompt or if there is a standard application id and password that can be used to access the graph API, like there is the standard login URL, https://login.windows.net/common? Some C# samples would be greatly appreciated.
This post does the Application creation, but requires a clientId and password, which I don't think I have.
You can't register a new application using the Graph API from an unregistered client. The only reason the VS2013 flow works is because VS2013 is already registered in a special way within Azure AD -- it's a first party application and has unique permissions. In my Fiddler trace, VS2013 uses a client ID of 872cd9fa-d31f-45e0-9eab-6e460a02d1f1. Technically you can use this client ID and the redirect URI of VS2013 to initiate sign-on with Azure AD. This still involves user interaction (the user has to authenticate via browser pop-up) so it doesn't meet your requirement for "no manual steps," but it's somewhat helpful for understanding the protocol flows and how registration works.
The bottom line is that if you want to call the Graph API without user interaction (client credential flow), the client needs to be registered with the proper application permissions.
I am developing a BlackBerry application in which I need to use PUSH API. I already have registered with RIM and they have sent me the credentials for evaluation service. In my BlackBerry device, I installed sample push API application just to test that the push messaging works. After setting the content provider URL which is publicly accessible, I entered all the details for the sample application to register the it for receiving notification messages. When trying to register it asks for username and password but I don't know what they are for. In the email received from RIM, there are passwords for server application and content provider admin portal applications but not for the push client.
When I added an arbitrary username and password it fails with the message that java.lang.Exception Registration with Push API failed, caused by port is unavailable. But when I unregister it successfully unregisters the user with the given arbitrary username and password. By the I use the port given in the RIM's email.
I have no idea why this happens and I appreciate immediate response from you. Thank you.
The first thing to point out is that the RIM sample push application is ridiculously overcomplicated. The username and password you are referring to are used to authenticate against the sample push initiator web application which runs on your tomcat server. It doesn't matter what you put in there, they are not used for authentication. I can only assume they were added to show you that you can send a username and password to a web based service.
The only things you need in your BlackBerry app to register for the push service are:
Push Application ID (e.g. 2672-c870l6c924r1i298O4o33cc5391y0e75134)
Push Port (e.g. 31940)
BlackBerry Push Server URL (e.g. http://pushapi.eval.blackberry.com)
The port is unavailable message you're receiving is probably because the device you're using has not been provisioned for BlackBerry Internet Services (BIS). Make sure it has a SIM with an active BlackBerry data plan.