on 01-20-2019 3:58 AM
Hi all,
We have a UI5+ABAP system and we are using principal propagation authentication in connective service.
I have a question about principal propagation. Please take a look at the below picture.
My question is, does Cloud Connector interact with SAP idp service when data transfers from UI5 application to on-premise SAP system?
Besides, I would be very appreciate if someone can explain "principal propagation" in some simple words.
Hi Ming
Not sure what you mean about Cloud Connector interacting with the SAP iDP service - the userid would be passed through to the Cloud Connector essentially if the X509 certificate setting is made in the Access Control settings.
In simple terms I would say Principal Propagation is the security method of identifying the user from the Cloud (the iDP being utilised to authenticate into the Fiori Launchpad or HTML5 applications) all the way through to backend systems (SAP Business Suite, S/4HANA, SAP HANA DB's etc).
Plenty of information on the various security methods here -> https://cloudplatform.sap.com/scenarios/techguides.html
Hope this helps!
Thanks
Phil Cooley
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
After going through "https://cloudplatform.sap.com/scenarios/usecases/principal-propagation.html", I think I figure it out.
The IdP service and Cloud Connector do have connection.
"Once the user has been verified against an identity provider (IdP), a SAML assertion token is passed to the cloud connector to generate a short-lived certificate, that can be passed along with the request to the back-end system."
User | Count |
---|---|
86 | |
10 | |
10 | |
9 | |
7 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.