cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Multiple IdPs along with SAP Id Service

sandeep_joseph
Explorer

on ‎12-19-2014 6:58 AM

0 Kudos

Dear All,

My usecase is to use a third party idP for certain users and the default SAP Id service for some others. The application knows when to use what. To achieve this I configured the third party IdP in the trusted IdP section. However I don't find the option to have the SAP Id service together with this. Is there a possibility to configure the SAP Id service the same way you define a third party IdP? If yes, how do I get the metadata file? Or is there a simpler way to always have the SAP IdP?

As per the documentation, when you have multiple IdPs, you could choose by using the parameter saml2idp, as follows.

https://<app name>.hana.ondemand.com/index.jsp?saml2idp=<idp name>

Where do I get the <idp_name> from? Is it the name that you find in the metadata file (which is a URL!)? . And could there be a special value for the SAP Id service?

Thanks,

Sandeep

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

GregTutt
Explorer
‎08-01-2015 2:24 AM
0 Kudos

By any chance, did you find a way to do this ?

I have the same need... we are using IDP from an external system but would like to connect to the application using our developer accounts on HCP.

Show replies
Show replies
ChrisPaine
Active Contributor
‎08-01-2015 2:42 AM
0 Kudos

It is possible to set up multiple IdP s and then specify which one to use in the URL that you use to access the system. As mentioned above. But you'll need to pay for using the SAP IdP at that point as you can't keep the default. Not worth it for a couple of users I'd think

GregTutt
Explorer
‎08-01-2015 3:11 AM
0 Kudos

Thanks Chris it solves the mistery

gregorw
Active Contributor
‎05-09-2015 8:21 AM
0 Kudos

Also others have the same question:

Show replies
Show replies
gregorw
Active Contributor
‎05-09-2015 8:21 AM
0 Kudos

Hi Sandeep,

I facing the same issue with SAML2 authentication to an ABAP System. The documentation described the URL parameter saml2idp but I have tried to use the IDP Alias which I can maintain in the WebDynpro application started with transactin code SAML2. But that does not work :-(. Have you found a solution for your requirement on the cloud platform?

Best regards

Gregor

Show replies
Show replies
LutzR
Active Contributor
‎03-10-2016 4:57 PM
0 Kudos

Hi Gregor, did you solve your issue with saml2idp on an ABAP system? I am facing the same issue. Using saml2idp seems to switch off the default SAML2 IDP but does not activate the one stated in the parameter.

Thanks,

Lutz

Message was edited by: Lutz Rottmann

Sorry bothering anybody for reactivating this old thread. I just found out this moment that documentation is wrong. The necessary value for saml2idp is not from the Alias but from the Name attribute of an IDP. Regards, Lutz

Ask a Question