cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Authenticate HCP apps using the Corporate User Store without any Identity Provider

Former Member

on ‎01-20-2017 10:26 AM

0 Kudos

Hello all,

We have a customer who are not having Cloud Identity Service.

They would like to use the Hana Cloud Platform, by connecting their AD(note: no on-premise Identity Provider as well)

But, all the information that I have suggests that for AD user authentication to take place, one needs the Cloud Identity Service or an Identity Provider on-premise which is SAML 2.0 compliant.

We referred https://archive.sap.com/discussions/thread/3709349

https://help.hana.ondemand.com/cloud_identity/frameset.htm?461d71c148594608b9c8b6d016e0a0c5.html#loi...


Is there any way I can integrate AD user store with HCC and from there, it will connect to HCP??

I found there is switch to LDAP authentication in Configuration section of HCC; but I believe that option is only for logging onto the HCC console using LDAP credentials only.(please correct if wrong)

Could this authentication work for taking user information?

Please suggest!

BR

Suraj N

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

BeGanz
Product and Topic Expert
Product and Topic Expert
‎02-01-2017 1:38 PM
0 Kudos

Dear Suraj Nair,

you should take a look at the very new SAP HANA Cloud Platform Identity Provisioning Service and see whether it fulfills your client's business requirements:

Wishes, Bertram Ganz

Show replies
Show replies
radostkassova
Discoverer
‎01-27-2017 9:51 AM
0 Kudos

https://help.hana.ondemand.com/help/frameset.htm?28a03e44bb2f49278e0fecc246726d5c.html

Show replies
Show replies
Former Member
‎01-27-2017 10:58 AM
0 Kudos

Hi Radostina,

We have tried using https://help.hana.ondemand.com/help/frameset.htm?28a03e44bb2f49278e0fecc246726d5c.html

for this and deployed an app , but with no luck..

The deployed app was not asking for any login

in the screenshot attached you can see is after that step.

I believe using AD user store still requires an Identity Provider with SAML 2.0 compliance on top of AD.Your thoughts?

radostkassova
Discoverer
‎01-26-2017 11:57 AM
0 Kudos

Plese find the information here:

https://help.hana.ondemand.com/help/frameset.htm?71fdf1c0aaf141d18dd5ae2b41c86da3.html

A drawback of this scenario is that you won't have SSO.

Show replies
Show replies
Former Member
‎01-27-2017 6:35 AM
0 Kudos

Hi Radostina, many thanks for your reply.

The link that you shared is for

'Using an SAP System as an On-Premise User Store' but my use case is 'Using an Microsoft Active Directory as an On-Premise User Store'.

Is it applicable?

Ask a Question