Getting Data In

HTTP 401 Error seen in splunk logs while connecting to SAP middleware application

New Member

Hello Experts,

Please see the details below:
Flow: Web Services partner interface (Client application) => invokes SAP Middleware URL => Webseal/TAM junction URL
SAP middleware URL starts with Webseal/TAM junction url followed by interface specific details. SAP Middleware uses LDAP for authentication
Intermittent calls are failing with 401 error even though same interface using same user ID / password combination is
working fine for majority of the calls.

When we check the splunk logs, we can see the error code for some calls like HTTP 401 but it does not show the user id which is sent from the web service partner interface (source) to SAP Middleware/Webseal. is there any way or query which can display or let us know what is the used id used in the request sent by the source to SAP. We have checked but did not see any such field which could tell about this.

And also the error simply says HTTP 401 unauthorized, it does not give any logs what caused that error to happen. Need to know what is going wrong here and how we can resolve this intermittent error. Please do the needful.

Tags (2)
0 Karma

New Member

Any pointers please?

0 Karma
Get Updates on the Splunk Community!

Getting Started with AIOps: Event Correlation Basics and Alert Storm Detection in ...

Getting Started with AIOps:Event Correlation Basics and Alert Storm Detection in Splunk IT Service ...

Register to Attend BSides SPL 2022 - It's all Happening October 18!

Join like-minded individuals for technical sessions on everything Splunk!  This is a community-led and run ...

What's New in Splunk Cloud Platform 9.0.2208?!

Howdy!  We are happy to share the newest updates in Splunk Cloud Platform 9.0.2208! Analysts can benefit ...