SAP Knowledge Base Article - Preview

3021900 - HANA Single Sign-On Authentication (Kerberos) fails with error


Single Sign-On authentication with Kerberos fails with the error

Error connecting to database [523 92[SAP AG][LIBODBCHDB SO][HDBODBC] Communication link failure;-10709 Connection failed (RTE:[200106] Protocol error, invalid authentication packet)

Enhancing tracing on [authentication] as per SAP Note: 2083682 - How to Enhance Tracing for SAP HANA SSO Login Issues shows the following

w Authentication Context.cpp(00277) : GSS_S_FAILURE: The routine failed for reasons that are not defined at the GSS level. The minor_status return parameter contains a mechanism-dependent error code describing the reason for the failure.
w Authentication MethodGSSAcceptor.cpp(00268) : processGssToken: accept security context failed
w Authentication MethodGSSAcceptor.cpp(00087) : evaluate: process GSS token failed
w Authentication : Authentication failed! client address=<ip_addr:port>
e Authentication AbstractMethodGSSAcceptor.cpp(00032) : Error during Kerberos: Major: "unspecified [851968]", minor: "Clock skew too great [2529638949/-1765328347]"



 SAP HANA all versions


SAP HANA 1.0, platform edition


kerberos, SSO, major unspecified, minor, clock, skew, NTP , KBA , HAN-DB-SEC , SAP HANA Security & User Management , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.