Skip to Content

SAP Analytics Cloud SSO Configuration - Clarification for Step 4 account verification

We are planning to enable SAML SSO with Azure Active Directory. Once the Azure portal metadata has been uploaded into SAC and a user attribute has been mapped, there is a verification step before saving the configuration in the SAC.

We have a question about the account used for the verification step: is the verification a one-time use of the current owner who is performing the configuration? Or is this a persistent setting that has to be maintained in the case the account is changed in the future? We want to take into consideration any consequences of changes to the account that was used for the configuration, either in Azure or in the SAP Analytics Cloud tenant.

Add comment
10|10000 characters needed characters exceeded

1 Answer

  • Best Answer
    Posted on Jun 03, 2019 at 10:43 AM

    Hi Ann,

    this verification is simply a test authentication with a user that exists both in your SAML2 IDP (Azure AD) and in SAC. This is to avoid full activation of a broken SAML2 configuration which would lock everyone out of the SAC tenant.

    So there is no long term kind of technical dependency or whatsoever with this test account.

    Add comment
    10|10000 characters needed characters exceeded