SAProuter: No credentials were supplied (Could’t acquire ACCEPTING credentials for name)

Posted by — August 15, 2021 in SAP BASIS Leave a reply

You are getting below error message while starting the SAProuter,

*** ERROR => SncPAcquireCred()==SNCERR_GSSAPI
GSS-API(maj): No credentials were supplied
Could't acquire ACCEPTING credentials for name=
"p:CN=ITSITI, OU=000123456, OU=SAProuter, O=SAP, C=DE"
<<- SncProcessInput()==SNCERR_GSSAPI

*** ERROR => NiSncIProcIn: SncProcessInput failed (sncrc=-4;0x55ece8548ef0;2256)
*** ERROR => NiBufReceive C10/17 '192.168.1.10' failed (rc=-17)
*** ERROR => SncPAcquireCred()==SNCERR_GSSAPI  [/bas/753_REL/sr 1465]
    
GSS-API(maj): No credentials were supplied
Could't acquire ACCEPTING credentials for name=
"p:CN=ITSITI, OU=000123456, OU=SAProuter, O=SAP, C=DE"

<<- SncProcessInput()==SNCERR_GSSAPI
*** ERROR => NiSncIProcIn: SncProcessInput failed (sncrc=-4;0x55ece854fbe0;2256)
*** ERROR => NiBufReceive C18/11 '192.168.1.10' failed (rc=-17)

Solution

Most probably the issue was due to below,

  • The environment variable for SECUDIR is not set
  • The cred_v2 file issue
    • Missing file
    • Missing credentials

You can refer to this SAP Note 1525059 – Troubleshooting problems with PSE credentials for more details.

Check and verify:

  • The environment variable SECUDIR is correctly set for the active user.
  • On UNIX systems: the environment variable USER is correctly set for the active user.
  • The container file for credentials (named ‘cred_v2’) is found in the directory indicated by SECUDIR.
  • A readable credential exists for the active user for the PSE in question.
  • The credential contains the correct PIN (password).

Commands for credentials maintenance:

##Run some basic checks, display the installed patch level of 
##SAPCRYPTOLIB/CommonCryptoLib as well as the current setting of 
##environment variable SECUDIR:

sapgenpse

##Check (list) credentials and display the active user:

sapgenpse seclogin -l

##Remove (delete) credentials:

sapgenpse seclogin -d [num] -p [PSE file name]

##Add credentials:

sapgenpse seclogin -p [PSE file name] [ -O [OS user name] ] [ -x [PIN] ]

##Show the full list of parameters (help):

sapgenpse seclogin -h

##Check the credentials as the system "sees" them by executing 
##the following command in report 'RSBDCOS0' (in transaction 'SE38'):

sapgenpse seclogin -l 2>&1

You May Also Like

Cannot find either column “sid” or the user-defined function or aggregate “sid.get_MSSQL_LANGU”, or the name is ambiguous

Service Processing Mode in ODATA Service

“Co-deployement only” cannot be used because of assigned system alias(es)

Transaction SM50 Always Shows System-Wide

Leave a Reply?