cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAC IOS App Live Connections stopped working

gthomson
Explorer

on ‎05-25-2022 9:38 PM

0 Kudos

Hi we have been using BW Live connections with SAC for over 3 years using SSO via SAP IDP and a separate MFA solution. When using the SAC App the SSO does not work as we are not using certificate exchanges but you could still login using a browser token.

In the last month our users on IOS can no longer log into our live connections via the SAC app however Android users and Desktop users works fine. Has anyone else experienced the same? We are getting errors from the SAC App noting that the Web Page cannot be opened. CORS has been configured and Cross Origin has been enabled.

Thanks in advance!

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

DebjitSingha
Active Contributor
‎05-25-2022 10:26 PM

Hello gthomson,

SAC objects have dedicated option to enabled for iOS devices. Can you check iOS optimization options is checked or not (under story details)

  • Recent changes on how auth work with respect to iOS app may restrict access based on auth type setup for connection. For instance certificate import is required for first time access via SAML SSO setup. In past system may have given second manual attempt option.
  • Trusted Apple's App Transport Security (ATS) is another requirement. (This is recent update)
  • None authentication option is no longer supported.

I am assuming you have already checked the limitations and support auth type with respect to BW live connection - iOS Mobile App Feature Compatibility

Viewers / readers : If you find shared info helpful, feel free to vote (voting arrows on left) for it.

Thanks,

Debjit

Show replies
Show replies
gthomson
Explorer
‎05-30-2022 4:32 PM
0 Kudos

Hi debjit.singha

Thanks so much for getting back to me on this. Our Apple users have been happy for some time through the process and we have previously checked the limitation on BW Live connectivity. So in theory everything was compliant and working well. Stories are set to IOS Optimised since last year.

We are using an HTTPS connection, TLS 1.2 and the like as far as possible. We used Browser Token based authentication which talks to the same IDP platform as our SAC tenant does.

If I understand correctly your comment: For instance certificate import is required for first time access via SAML SSO setup

This means if the User does not install a Certificate on their device (which we have avoided through Token based auth), the login will not work? Our certificates between SAC, IDP and BW are all in place from a server perspective but we have opted to not do certificates for users.

Looking into the ATS details mentioned this could be something to look at but I think if we need a User certificate in this regard we no longer can use our Token based auth for BW and may need to consider using a Cloud Connector.

Any further thoughts? Thanks for the great insight!

Ask a Question