cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SapNwRfc NW RFC library and SAML

darcy_curtin
Explorer

on ‎07-28-2023 3:26 PM

0 Kudos

We use sapnwrfc NW RFC library version Release 750 Patch Level 9 (latest is patch 12) in C++ on Windows (if that matters) to connect to SAP. We now have requirement to use SAML/ SSO based authentication for connecting to SAP.

  1. Is there any inbuilt support for SAML based authentication in sapnwrfc library. If so how does it work? Any pointers to documentation will be appreciated.
  2. If not, if we can obtain SAML token by some other means (programmatically), is it possible to pass the token as connection parameter to sapnwrfc? The documentation (sapnwrfc.ini sample) indicates “SNC_MYNAME : Token/identifier representing the external RFC program”, not sure if it is referring to some other token or SAML token). This is in addition to specifying SNC_PARTNERNAME and SNC_LIB
Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

WolfgangJanzen
Product and Topic Expert
Product and Topic Expert
‎08-25-2023 5:15 PM

Is the program which is using the RFC library a desktop application (only used by a single person at a time) or is it a middleware / server component (i.e. processing requests of different persons)?

Only in the first case, SNC could be used in a similar fashion as with SAPGUI - to achieve a SSO experience - provided that the ABAP system you are connecting to is an on-premise system which is configured for supporting SNC. Same as for SAPGUI, you'd require a license for "SAP Single Sign-On" (SAP Secure Login Client).

Just for curiosity:
How do you came to think of SAML? Where do you obtain the SAML assertion from?
(SAML is defined for the http protocol, only)

Kind regards, Wolfgang

Show replies
Show replies
darcy_curtin
Explorer
‎08-30-2023 7:17 PM
0 Kudos

Thank you for responding.

There is a browser based component where users can enter credentials. We can support SNC based SSO for on premise SAP (where applicable).

Came across deployment where SAML based SSO was used to allow access to SAP, specifically SAP Business Client and question came up if we can support same. In this instance SAML IdP provider is Azure AD (could be other in future).

Since RFC library mentioned use of "Token/identifier" was wondering if SAP provides way to get token based on SAML assertion.

Show replies
Show replies
Ask a Question