Skip to Content

SSO between SAP systems - How to configure AS JAVA as Identity Provider?

Dear Experts,

We want to configure SSO between our Netwear AS ABAP, HANA DBs and AS JAVA. We prefer not use AD for any configuration so that Identity Provider and Service Provider all be SAP systems. Can a single system act as both Identity Provider and Service Provider?

If two systems are needed then, how it should be done with SAML? Any guides / how tos are much appreciated.

Thanks you in advance.

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

4 Answers

  • Sep 18, 2017 at 01:10 PM

    Hi there,

    You could use SAP IDM. Please take a look at the IDM documentation Page, there is information on IDM and how to implement SSO / Federation / Identity Provider.

    https://wiki.scn.sap.com/wiki/display/Security/SAP+Identity+Management+7.2+Documentation

    Matt

    Add comment
    10|10000 characters needed characters exceeded

  • Sep 19, 2017 at 03:26 AM

    Hi Matt,

    Thanks for the response. I actually went through the documentation but it is really confusing for a first time user who is trying to configure IDM in Portal.

    https://help.sap.com/viewer/27aa32ff2f5f4e7ebf59a9560205eca2/2.16/en-US/906ad8d0eb1a4cce850b15be0c757bf6.html

    Having Admin access to the Portal when going to configure IDM with SAML 2.0 it is confusing which way to proceed as per guide. Therefore, do you know any guide with screenshots which illustrate more clearly on how to configure SSO or rather IDM in AS JAVA portal. That will be very much appreciated.

    Thank you in advance.

    Add comment
    10|10000 characters needed characters exceeded

  • Sep 19, 2017 at 08:38 AM

    Hi Jones,

    If I am not mistaken, it is IDM FEDERATION 7.2, right? But I really want to know are the steps involve in configuring portal as Identity Provider. The guide is bit wage and is on very high level. Can you tell me the essential steps. Preferablly with screenshots please.

    Thank you in advance.

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Sep 19, 2017 at 07:06 AM

    Hi Sajith,

    Install IDP and SSO component on your JAVA system to make java support as identity provide. You can configure the rest of the system as Service provider (FIORI, ERP, and solution manager).

    Regards,

    Jones Seenivasan.

    Add comment
    10|10000 characters needed characters exceeded