Skip to Content
May 28, 2020 at 11:11 AM

Principal Propagation on Mobile Services in Cloud Foundry Environment


We are developing an Android SDK application from Mobile Services in a Cloud Foundry environment and we need to implement a Principal Propagation mechanism.

We followed different guides on Help SAP portal but we cannot able to achieve our goal.

Based basically on following guides:

We have configured the various actors in principal propagation mechanism as follow:


We have generated the below certificates to pass SAP side.

In Principal Propagation tab we noted the first difference between our configuration and guide’s tutorial:

Our cloud foundry:

NEO solution like guide’s references:


Certificates generated above is passed in SAP system, inserted in STRUST as in the official guide. Instance parameters have been added:

login/certificate_mapping_rulebased” parameter is setted to 1, so we mapped user using CERTRULE transaction:

SCP Cockpit

Cloud Connector is present and available in our cloud foundry subaccount:

Mobile Service:

We have configured our destination as follow:

But when we tries to ping, we received an unauthorized error and we cannot consume the OData service.

Important: We are able to consume OData service in Basic Authentication.

Why we received the error above? How we can resolve? There are some guides to follow?



1.jpg (129.7 kB)
2.jpg (40.4 kB)
3.jpg (114.8 kB)
4.jpg (72.9 kB)
5.jpg (71.7 kB)
6.jpg (50.4 kB)
7.jpg (157.6 kB)
8.jpg (91.9 kB)
9.jpg (97.9 kB)
10.jpg (41.6 kB)