SMP3.0 GW Security issue - Basic+Admin, SSO+SSO(Cookie)

Hi Experts,

I am testing all the security combinations to understand how each combination works. I am using Rest client to test.

My SMP version is on-premise version SMP3.0 SP07.

Backend SSO mechanism with Technical User(Basic) with Security Config with Admin profile works fine

But Basic with Admin or SSO2+Technical User(Basic) with Admin does not work.

Here are the logs for Basic with Admin. Post method for registering the application works fine. Then when I request for CSRF token, it is asking for my GW system credentials. But it is not accepting my id.( I am entering correct userid). I get

No AuthenticationEntryPoint was set during login attempt.

#2.0#2015-09-10 13:00:08.401#+0:00#ERROR#Registration#401##Other#1441890008373002#954b1492-09ef-45ba-bafa-8a79a36031dd#sso#com.sap.mobile.platform.server.online.filter.application.AbstractSMPApplicationSettingsHandler:doFilter########1047###Unauthorized#

#2.0#2015-09-10 13:00:08.399#+0:00#DEBUG#Registration###Security#1441890008373001#954b1492-09ef-45ba-bafa-8a79a36031dd#sso#com.sap.mobile.platform.server.foundation.security.filter.AuthenticationFilter:doFilter########1047###No AuthenticationEntryPoint was set during login attempt. Falling back to HTTP 401 + WWW-Authenticate#

#2.0#2015-09-10 13:00:08.385#+0:00#DEBUG#Registration###Security#1441890008373000#954b1492-09ef-45ba-bafa-8a79a36031dd#sso#com.sap.mobile.platform.server.foundation.security.filter.AuthenticationFilter:doFilter########1047###authfilter-1: Security Configuration set to: 'admin'#

2.0#2015-09-10 13:01:05.128#+0:00#DEBUG#ApplicationSettings###Security#1441890065128000#4b5bbac4-7ae1-42a2-8e1c-6d5d686a6152#sso#com.sap.mobile.platform.server.foundation.security.filter.AuthenticationFilter:CheckIfSessionExists#smpAdmin#######1038###authfilter-1: found existing session with id: 'A1C4C8932347153ADF8CA274EF5EEC6299DB2B66CF484F8C21BFE30A69EFBCE4'#

#2.0#2015-09-10 13:01:05.128#+0:00#ERROR#ApplicationSettings###Registration#1441890065128001#4b5bbac4-7ae1-42a2-8e1c-6d5d686a6152#sso#com.sap.mobile.platform.server.coreservices.filter.SMPApplicationODataHandler:checkAppSettings#smpAdmin#######1038###Do not support get application connection settings collections.#

#2.0#2015-09-10 13:01:05.128#+0:00#ERROR#ApplicationSettings#501##Other#1441890065128002#4b5bbac4-7ae1-42a2-8e1c-6d5d686a6152#sso#com.sap.mobile.platform.server.online.filter.application.AbstractSMPApplicationSettingsHandler:doFilter#smpAdmin#######1038###Not Implemented#

2.0#2015-09-10 13:01:28.312#+0:00#ERROR#RequestResponse#401##Proxy#1441890088265001#fbac28d9-6dee-4477-a153-d9de05af1852#sso#com.sap.mobile.platform.server.proxy.core.handler.DirectProxy:prepareResponse#smpAdmin#######1040###Response code from backend is 401 for request null#

#2.0#2015-09-10 13:01:28.281#+0:00#DEBUG#RequestResponse###Security#1441890088265000#fbac28d9-6dee-4477-a153-d9de05af1852#sso#com.sap.mobile.platform.server.foundation.security.filter.AuthenticationFilter:CheckIfSessionExists#smpAdmin#######1040###authfilter-1: found existing session with id: 'A1C4C8932347153ADF8CA274EF5EEC6299DB2B66CF484F8C21BFE30A69EFBCE4'#

Next I tried with Backend SSO as SSO2+Technical User(Basic) with SSO profile (HTTP module with cookie MYSAPSSO2). I followed blog

How to Configure SSO for SMP 3.0 using Cookie Based Authentication

Then also I am getting the same errors.

No AuthenticationEntryPoint was set during login attempt.

2.0#2015-09-10 12:53:55.569#+0:00#ERROR#Registration#401##Other#1441889635542002#f0b89584-dc82-4772-a178-0bdc6c895638#sso#com.sap.mobile.platform.server.online.filter.application.AbstractSMPApplicationSettingsHandler:doFilter########1043###Unauthorized#

#2.0#2015-09-10 12:53:55.567#+0:00#DEBUG#Registration###Security#1441889635542001#f0b89584-dc82-4772-a178-0bdc6c895638#sso#com.sap.mobile.platform.server.foundation.security.filter.AuthenticationFilter:doFilter########1043###No AuthenticationEntryPoint was set during login attempt. Falling back to HTTP 401 + WWW-Authenticate#

#2.0#2015-09-10 12:53:55.553#+0:00#DEBUG#Registration###Security#1441889635542000#f0b89584-dc82-4772-a178-0bdc6c895638#sso#com.sap.mobile.platform.server.foundation.security.filter.AuthenticationFilter:doFilter########1043###authfilter-1: Security Configuration set to: 'admin'#

What could be going wrong? It works with one profile but does not work with other?

Thanks

seenu