cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

yM can use any other authentication tool other than SAP IdP?

Go to solution
former_member576423
Participant

on ‎08-09-2018 7:00 AM

Hello Experts,

Can yM use any other idp tool other than SAP Idp? Our client has already existing SAML2.0 authentication mechanism, Can it be used for authentication ?if Yes, do we have any guidelines? I am using yM cloud.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

former_member576423
Participant
‎10-09-2018 12:12 AM
0 Kudos

maik.offerle / anton.peters : I have achieved integrated Cloud application with my C4C test system with On Prem Active Directory. SAP IDP acts as a proxy.

I have written a blog please refer. hope it helps:

https://blogs.sap.com/2018/10/03/single-sign-on-for-sap-cloud-applications-using-active-directory-cr...

Show replies
Show replies
former_member245698
Active Participant
‎10-09-2018 6:37 AM
0 Kudos

Nice Mayank 🙂

former_member267312
Contributor
‎10-09-2018 8:05 AM
0 Kudos

Hi Mayank,

Great! Kindly mark this thread as answered/closed.

Thanks,

Theo

Answers (3)

Answers (3)

Kunal_Bansal
Active Contributor
‎08-09-2018 7:06 AM

Hey Mayank,

The only way of authentication is SAML 2.0 assertions (SSO), based on SAP Cloud Identity

Thank you.

Best Regards,

Kunal

Show replies
Show replies
former_member576423
Participant
‎08-09-2018 7:34 AM
0 Kudos

Hi Kunal,

So yM has a limitation to use only SAP idp? Can we integrate SAP idp to any other idP system?

former_member245698
Active Participant
‎08-09-2018 10:09 AM
0 Kudos

Hi Mayank,

yes, that is from my point of view how you can do it. Set up the SAP Cloud IdP just in way to forward the authentication message. Like a proxy...

See the below links for Azure Active Directory:

Azure to SAP Cloud IdP

Best regards

Maik

former_member576423
Participant
‎10-02-2018 7:08 AM
0 Kudos

Hello anton.peters / johannes.hirling ,

I have configured the On Prem Active directory and the IDP as a proxy to authenticate the Users.

So what we is achieved is- A user can login into C4C or marketing application without his id created in IdP. Once the user challenges for the credentials, the user will be created in idP and hence he can login into cloud application such as C4C with the credentials maintained in AD.

My next query - Is there any possibility that if I open the C4C link when I am in VPN network then it should automatically open the C4C screen without asking the password.

The password was already entered when we enter into the network and hence therefore if we click any application which is accepting the AD password shouldn't be asking for password again?

Any thoughts?

thanks

Show replies
Show replies
former_member222458
Active Participant
‎10-05-2018 9:32 AM
0 Kudos

Hi,

I have no clue. Never done it this way.

maik.offerle Any idea?

Best, Anton

former_member245698
Active Participant
‎10-05-2018 1:41 PM
0 Kudos

Hi Mayank,

please find here the explanation how to set up single sign on for azure active directory.

I guess something similar should be possible for onprem.

https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/sap-hana-cloud-platform-identity-a...

Best regards

Maik

former_member222458
Active Participant
‎08-09-2018 7:29 AM
0 Kudos

Hi johannes.hirling ,

if I am not mistaken, you validated using another IDP at one of our EU clients.

Is this correct? If yes, can you please briefly share your findings.

Thanks, Anton

Show replies
Show replies
former_member576423
Participant
‎08-09-2018 8:05 AM
0 Kudos

Thanks anton.peters .

johannes.hirling : Can we have a small discussion on how we can use any other idP for marketing apart from SAP idP?

Thanks,

Mayank

former_member245698
Active Participant
‎08-09-2018 12:17 PM

Hi Mayank,

yes, that is from my point of view how you can do it. Set up the SAP Cloud IdP just in way to forward the authentication message. Like a proxy...

See the below links for Azure Active Directory:

Azure to SAP Cloud IdP

Best regards

Maik

former_member247020
Active Participant
‎08-09-2018 7:59 PM

Maik answered this already. In the case of Microsoft Azure IDP, Microsoft Azure AD and be configured to build trust with SAP Cloud Platform Identity Authentication. Microsoft Azure AD is used as the main IdP where SAP Cloud Platform Identity Authentication acts as a proxy IdP.

former_member222458
Active Participant
‎08-09-2018 9:10 PM

Hi mitmayank_bluleader ,

if the above helped, please mark the question as answered.

Thanks, Anton

former_member576423
Participant
‎08-10-2018 12:09 AM

Thanks anton.peters , johannes.hirling , maik.offerle .

I will check with client's current Active Directory and let you know. Hopefully this should resolve our query.

Thanks,

Mayank

Ask a Question