on 02-08-2017 12:55 PM
I finished setting up SAML2 for our ERP ABAP AS system.
Using a SAP Web Dispatcher it is required to access the SAML setup page through the web dispatcher in order to get the correct URL's in the metadata export.
I now want to configure our other ABAP AS system to use SAML and this system is used over the same SAP Web Dispatcher. The problem now is that both ABAP AS servers are using the same relative paths for the SAML (SICF) services.
Below you can see the SAP Web Dispatcher config that we have in place. Using the URL prefix we can distinguish between EIC (crm_ui_start) and ERP (Fiori, Web GUI, HR Renewal).
wdisp/system_0 = SID=DHE, MSHOST=hostname_eic,
MSPORT=8150, SSL_ENCRYPT=0,
SRCURL=/sap/bc/bsp/sap/crm_ui_start;/sap(*)/bc/bsp/sap/crm_ui_start
wdisp/system_1 = SID=DHC, MSHOST=hostname_erp,
MSPORT=8120, SSL_ENCRYPT=0, SRCURL=/sap
wdisp/system_2 = SID=DHP, MSHOST=hostname_portal,
MSPORT=8131, SSL_ENCRYPT=0, SRCURL=/
First issue is I can't access the SAML2 config page (/sap/bc/webdynpro/sap/saml2) on the EIC system since the path /sap is leading to the ERP system. I could manually change all the hostnames in the exported metadata file, but I cannot see how we can get both systems to work with SAML since the Identity Provider will have the exact same SAML endpoints for both systems. e.g. https://hostname_webdisp/sap/saml2/sp/acs/010
User | Count |
---|---|
77 | |
10 | |
9 | |
7 | |
6 | |
5 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.