We are running BOBJ 4.0 SP5 patch 4 in a clustered environment of 4 Windows 2008 R2 servers.
When we tried to set up SSO using a keytab file, we could not get SSO to work properly.
When working with SAP Support, we added the java option -Dcom.wedgetail.idm.sso.password={password}, entering the non-expiring password for the service account that runs the BOBJ services, in the Tomcat java configuration. When we do that, SSO works.
If SSO works with the password entered into the Tomcat java configuration, is there a reason to resolve the problem with the keytab file? Is there any advantage to using a keytab file versus hardcoding a non-expiring password into Tomcat?
