Introduction:
We are in digital world and the core strategy of SAP for 2020 is “Be the Experience Company powered by the Intelligent Enterprise”. All end to end processes are carried out via various systems/platforms/applications. There is a need of integration between these various systems/applications for ease and efficiency. Users should be able to login to any application with a single click rather than entering their credentials multiple times. SAP cloud Platform Identity and authentication service provides solution to address it.
SAP Cloud Identity Authentication service is a cloud solution for identity life-cycle management. SAP Cloud Platform Identity Authentication Service is a full featured Identity Management tool. It controls authentication into systems such as SAP SuccessFactors solutions, as well as for SAP Cloud Platform applications and on-premise applications (and even Non-SAP products). SAP Cloud Platform Identity Authentication service includes sending and receiving logins and filtering users to various login methods including password two-factor authentication, Corporate IDP and others.
The Fundamental principle of this SAP Cloud Platform Identity Authentication Service upgrade is to replace the basic SAP SuccessFactors solutions login with SAP Cloud Platform Identity Authentication Service login. SAP’s vision is to make SAP Cloud Platform Identity Authentication as central IDP (Identity provisioning or user store) for accessing all SAP Cloud applications.
This blog post focus on enabling Single Sign on between SAP SuccessFactors solutions and SAP Cloud Platform Identity Authentication Service via Upgrade Center.
Pre-requisites to enable this feature:
1. Availability of S-User to enable SSO between SAP SuccessFactors solutions and SAP Cloud Platform Identity Authentication
2. Access to IAS Tenant
Step by Step Process:
1. Login into SAP SuccessFactors solutions
2. Go to Admin Center -> Upgrade Center and search for “Initiate SuccessFactors SAP Cloud Platform Identity Authentication service integration” under “Optional Upgrades”.
3. Click on “Learn More & Upgrade Now” link
4. Maintain S-User name and Password and click on Validate button.
Note: The upgrade center will confirm/validate the S-User is with the company.
5. New pop-up window will appear to maintain SAP Cloud Platform Identity Authentication tenant URL.
Update SAP Cloud Platform Identity Authentication tenant URL and click on Submit button
6. Click on ‘Yes’ to confirm
7. Request is submitted. Wait for couple of minutes to get this process completed
8. Status can be Verified from Admin Center -> Upgrade Center -> Completed Upgrades
9. Login into SAP Cloud Platform Identity Authentication and check the configuration.
Under Applications, select right SAP SuccessFactors solutions and check the configurations.
10. Click on “SAML 2.0 Configuration” to see the metadata details.
11. Login into SAP SuccessFactors Provisioning. Go to “Single Sign-On (SSO) Settings” and check settings.
12. Once the Single Sign-on (SSO) setup between SAP SuccessFactors solutions and SAP Cloud Platform Identity Authentication is completed, then the login page for SAP SuccessFactors would appear as below
Few key points to consider:
- IPSADMIN user will be created in SAP SuccessFactors solutions
- API permissions and employee export permission will be assigned to IPSADMIN user
- API Exception Loginsetup for IPS IP addresses on SAP SuccessFactors Password & Login Policy Settings will be updated.
Conclusion:
With this process users would be authenticated by SAP Cloud Platform Identity Authentication service, when they login into SAP SuccessFactors solutions and they can navigate to any other application which is integrated using SAP Cloud Platform Identity Authentication service.
- SAP Managed Tags:
4 Comments
| User | Count |
|---|---|
| 2 | |
| 2 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 | |
| 1 |
