Skip to Content
avatar image
Former Member

SAP HANA XS SAML SSO error

Hi All,

I configured SAML SSO for our SAP HANA XS but I get the following error message:

Error in IE - StatusCode in ResponseMessage != OK; please refer to the database trace for more information

Error in XS Trace - Assertion authentication failed with reason: Subject of assertion has to be provided using NameID

I've followed the steps on this blog (http://scn.sap.com/community/developer-center/hana/blog/2015/03/14/use-saml-to-enable-sso-for-your-xs-app-on-sap-hana-sps-09-rev-92-or-later)

While talking to our ADFS admin, he says that he suspects that we need to add mapping rules in the ADFS Relying Party Trust for this to work correctly. Anyone familiar with the error and the mapping rules required? I can't find any in the SAP Marketplace nor here in the SCN site so any help would be more than appreciated.

Thanks a lot.

Robert

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

2 Answers

  • avatar image
    Former Member
    Oct 29, 2015 at 03:12 AM

    Hi All,

    Has anyone made SAML SSO for SAP HANA XS work? If yes, can you please send me tips on how to configure the ADFS part of it? Unfortunately, SAP Support came back on my incident saying that my issue is a consulting issue and not a product issue hence they can't help which is unfortunate.

    Thanks a lot for the help.

    Robert

    Add comment
    10|10000 characters needed characters exceeded

    • Hi Robert, I have the same issue here.

      I'm trying to consume xsodata and xsjs services from my HTML5 application with destination.

      Did you find a way to avoid this error?

      Sincerely,

      Severin

  • Jun 10, 2016 at 08:58 PM

    HANA's SAML defaults to SHA-1 encryption.  ADFS (and a lot of others) default to SHA-256.  Make sure both HANA & your IdP are set to the same strength.  That's the most common mistake I see.

    Add comment
    10|10000 characters needed characters exceeded