on 04-26-2019 3:16 AM
Hello Experts,
I have a need to set up Active Directory Authentication for SAP FIORI with third party IDP using SAML2 authentication. It would look something like this -
User logs in to the corporate network and types in the FIORI launchpad url in the browser which directs them to the third party IDP for authentication and lands to the FIORI launchpad home page.
Here our third party IDP is already integrated with AD.
My questions is do we need to integrate our NW GW server as well to the AD or the AD integration of third party IDP is sufficient for this?
Regards,
Sourabh Majumdar
The users in your SAP Gateway / SAP Fiori Frontend Server (FES) must have at least one attribute (Username, Alias or E-Mail) matching with what is maintained in the Active Directory. Such attributes can be provided by the IdP using SAML assertions and then matched to the SU01 user attribute. You only have to get the SAML authentication between the AS ABAP and 3rd Party IdP going.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sourabh,
See blog below for detailed steps on how to do this:
https://blogs.sap.com/2018/01/26/fiori-launchpadsso-made-easy-by-saml-2.0-with-adfs/
I hope this helps.
Aziz
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
87 | |
10 | |
10 | |
9 | |
7 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.