cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Access BOC from a third party application and maintain users

Go to solution
Colm
Explorer

on ‎03-07-2017 5:09 AM

Is there a way to access BOC from a third party application?

Scenario: Customer has an application where users are created and maintained.

They would like to provide a link on the application that will bring users to a BOC story

If a user is created they must be added to a role or team that will be used for row level security.

The application is also a hosted app used by multiple customers, no active directory.

BOC would fit the rest of their requirements but SSO from their app is and important one I'm not sure is possible at this stage.

Any ideas appreciated.

Colm.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

JohnL
Product and Topic Expert
Product and Topic Expert
‎03-08-2017 4:35 PM
0 Kudos

Hi Colm,

We support a custom identity provider (IDP). However, existing SAP BusinessObjects Cloud users must have a corresponding user account in your custom SAML Identify Provider (IdP).

See this link for more details:

https://help.sap.com/http.svc/rc/00f68c2e08b941f081002fd3691d86a7/release/en-US/3651184dad944aa2b361...

We support default roles allowing a user to request specific roles.

HTH

Show replies
Show replies
Colm
Explorer
‎03-13-2017 12:09 AM
0 Kudos

Thanks John,

How does this work for new users?

Initially there will be no users in BOC, if a new user is created in the Identity provider does it also have to be created in BOC?

Maybe I'm missing something obvious but I can't seem to get an answer to this from the documentation.

Colm.

JohnL
Product and Topic Expert
Product and Topic Expert
‎03-27-2017 9:19 PM
0 Kudos

Yes they need to be added to the Identity provider and they need to be added to BOC as well.

Answers (3)

Answers (3)

Colm
Explorer
‎03-13-2017 12:08 AM
0 Kudos

Thanks John,

How does this work for new users?

Initially there will be no users in BOC, if a new user is created in the Identity provider does it also have to be created in BOC?

Maybe I'm missing something obvious but I can't seem to get an answer to this from the documentation.

Colm.

Show replies
Show replies
JohnL
Product and Topic Expert
Product and Topic Expert
‎03-13-2017 3:02 PM
0 Kudos

Yes they need to be added to the Identity provider and they need to be added to BOC as well.

Colm
Explorer
‎03-08-2017 12:04 AM
0 Kudos

Thanks Tammy,

I'm thinking now in the lines of HANA, (Client is open to HANA as part of the solution)

Hana user creation and role assignment could be done via code(as far as I understand)

Security could then be managed with Hana views and leveraging row level data access mapping tables.

Then live SAML SSO between BOC and Hana, not sure if that would work or does the user need to be created first in the BOC side?

Import might be possible if we dump a csv file of all new users...Not sure if that will fly with the client.

Manual is just not an option, many many thousands of users.

Other Option is BO enterprise where anything is possible but I believe an SAP sales person has told the client BOC would work....

Show replies
Show replies
TammyPowlas
Active Contributor
‎03-07-2017 9:56 AM
0 Kudos

Colm,

I don't see how this is possible today; perhaps add this as a suggestion to Idea Place at https://ideas.sap.com/boc

Show replies
Show replies
Ask a Question