on 09-01-2022 1:59 PM
After reading a blog from denys.kempen, I'm curious if the SAP Identity Authentication Service configuration (as a proxy) is "re-usable" within multiple SAP BTP subaccounts.
Meaning, can I set this up once and then use the same SAML configuration for all of my BTP subaccounts?
Link to blog:
SAP Business Technology Platform Security | Hands-on Video Tutorials | SAP Blogs
After you have configured in your Identity Authentication tenant a corporate identity provider you may choose a Default Identity Provider for an Application in the admin cockpit of IAS. Each application has an own representation in IAS. In Identity Authentication you can have three types of applications. Bundled and charged applications (SAML 2.0 or OpenID Connect), and system applications. Bundled applications are recognized by Identity Authentication as SAP applications, while charged applications are third party application. Identity Authentication identifies the type of the application by the URI or SAML 2.0 endpoints. Meaning: For end-user Applications running on BTP you can decide for each application how to authenticate.
For the BTP cockpit and the subaccounts there will be one application. In this application you may set conditional authentication rules. You may Select the identity provider to delegate authentication to when all conditions specified are met.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
70 | |
8 | |
8 | |
6 | |
6 | |
6 | |
5 | |
5 | |
5 | |
5 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.