cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP Cloud Platform Identity Authentication and optional 2-Factor-Authentication (2FA)

Frank_Haschick
Explorer

on ‎03-11-2019 8:56 PM

Hi everbody,

we can enable the two-factor-authentication in SAP Cloud Platform Identity Authentication.

And based on a few criteria (like employee role or IP range), we can make this optional.

But we want to let the user decide if he wants to use the two-factor-identification or not.

This means: if he has not activated (in his user profile) the two-factor-identification, then the Identity Provider will not ask for it. If it is activated, then the system asks for it. Similar to google or any other webservice, where the user can decide his authentication mechanism.

Any chance to do that as well with SAP Cloud Platform Identity Authentication? Or is just the "all or no" option, as the rules does not help here?

Thanks!

Best regards,

Frank

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

former_member99753
Product and Topic Expert
Product and Topic Expert
‎03-13-2019 9:24 AM

Dear Frank,

You can set following rules for 2FA in Identity Authentication Service: IP range, authentication method, user type and user group.

You can fill in the attributes from a drop-down list too.

Further information can be found in the official documentation: Configure Risk-Based Authentication.

For now, there is no option for the user to decide if he wants to use the two-factor-identification or not.

You can refer to SAP Customer Influence program to implement this in the future at the following page : http://influence.sap.com.

Best Regards,

Zsuzsa

Show replies
Show replies
Ask a Question