Using Multiple Identity Providers in SAP HANA Cloud Administration Tooling
source link: https://blogs.sap.com/2021/09/09/using-multiple-identity-providers-in-sap-hana-cloud-administration-tooling/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Using Multiple Identity Providers in SAP HANA Cloud Administration Tooling
Recently, we introduced support for multiple identity providers (IdPs) in the SAP HANA Cloud administration tools (SAP HANA Cloud Central, SAP HANA cockpit, and SAP HANA database explorer). The benefit of using a custom IdP is that SAP HANA Cloud users can now be authenticated by their company’s IdP, as opposed to authentication via SAP ID Service. An identity providercreates and manages an organization’s user identity and associated identity attributes. With the user’s consent, IdPs offer authentication services to websites, applications, and other services by federating the identity and authenticating an end-user to the service provider using the identity the IdP manages, but without sharing actual login details. The basic mechanism of using custom IdP is as follows:
- User tries to access Application1 or Application2.
- Application1 or Application2 sends an authentication request to the Identity Authentication Service.
- Identity Authentication acts as a proxy and forwards the request to corporate IdP.
- Corporate IdP logs on the user.
- Corporate IdP returns authentication response to Identity Authentication.
- Identity Authentication returns authentication response to Application1 or Application2.
Prerequisites for the setup (This is a customer-specific procedure. Steps are going to be different depending on the IdP you use. In my setup, I followed the following steps to configure custom IdP to login to the cockpit. So, please be informed that these steps are just for reference and you may need to do it differently to configure custom IdP in your environment):
- Request an Identity Authentication Service (IAS) tenant.
- Establish Trust of Custom Identity Providers: Establish Trust and Federation of Custom Identity Providers for Platform Users in Multi-Environment Subaccounts [Feature Set A] – SAP Help Portal
- Login to the IAS you created.
- Go to Users & Authorizations -> User Management -> Add User. Fill in the information and choose the way to activate the account.
- You will receive an email. Follow the steps to activate the account.
- Sign in to SAP Business Technology Platform (BTP) using your custom IdP.
Let’s conclude with an example by logging into the SAP HANA cockpit tool with the custom IdP that I’ve created:
- Complete the space setup as mentioned above and then go to the SAP BTP Cockpit.
- Create an SAP HANA database instance in your space.
- Go to actions and open the instance in the SAP HANA cockpit.
- Sign in using your custom IdP.
- Enter the username and password you used to activate the account and there you go.
Congratulations! You have successfully logged in using your custom IdP.
Summary
All SAP HANA Cloud users can now configure multiple IdPs to login to the SAP HANA Cloud administration tools and can be authenticated by their own custom IdPs. This would provide users a unified authorization layer and help them design solutions to their unique business problems.
If you’ve found this blog post useful, feel free to give it a like or comment. Questions are welcome in the comment section below or on the community questions page.
Recommend
-
12
SPIDlibraryIOS SPIDlibraryIOS is a library for logging in via SPID through several different identity providers. Requirements iOS 11.0+ Xcode 11+ Swift 4+ Usage Add th...
-
12
Identity verification software for your in-house KYC teamJoin the exclusive waitlist and learn how to leverage industry-leading, AI-powered identity verification software with your in-house review team for an end-to-end...
-
4
README.md A reverse proxy and...
-
10
Securing an Angular app which uses multiple identity providers Sometimes Angular applications are required to authenticate against multiple identity providers. This blog post shows how to implement an Angular...
-
3
Not FoundYou just hit a route that doesn't exist... the sadness.LoginRadius empowers businesses to deliver a delightful customer experience and win customer trust. Using the LoginRadius Identity...
-
12
Press Release BalkanID Unveils AI-Powered Identity Governance and Administration Solution for SaaS and Public Cloud Environments ...
-
7
ASP.NET Core Api Auth with multiple Identity Providers This article shows how an ASP.NET Core API can be secured using multiple access tokens from different identity providers. ASP.NET Core schemes and policies can...
-
8
Use multiple identity providers from a Blazor WASM ASP.NET Core App secured using BFF This post shows how to implement a Blazor WASM UI hosted in an ASP.NET Core application using multiple identity providers to aut...
-
11
Sonia Petrescu March 31, 2023 1 minute read...
-
8
Introduction Customers and Partners leveraging SAP S/4HANA Cloud, public edition are also provided with SAP Cloud Identity Services by-default with the subscription of the software. As the SaaS world and the Public Cloud...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK