07-29-2010 6:38 PM
Based on some of the Experts recommendation I am creating test scenarios for SSO using SAML
Julius explained all the steps/Process very well : I forgot to ask one question earlier "
If my EP is pointing to its own UME = configured to corporate Active directory ( for users )
Next the the ECC ( NW AS ABAP + AS JAVA ) the backend is pointing to (ABAP database for users)
will the single sign on authentication fail?
Major doubt Are there any dependencies of SAML with respect to userdatabase when one SYSTEM is pointing to JAVA(UME) and the other is configured with users from the ABAP side.
Edited by: Franklin Jayasim on Jul 29, 2010 8:36 PM
07-30-2010 2:33 AM
Hi,
Basically, you have identity provider and service provider. Obviously, the user accounts migh not be same on these systems. Therefore you need to somehow map identity provider account to service provider user account which is called identity federation. Check [this document|http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/c01e7a05-1956-2d10-53a9-9501c6b620ee] for more info. It contains a list of solutions for your problem. It's dedicated to SAP IdM Identity Provider but it's a good reference for basic principles.
Cheers
07-30-2010 2:33 AM
Hi,
Basically, you have identity provider and service provider. Obviously, the user accounts migh not be same on these systems. Therefore you need to somehow map identity provider account to service provider user account which is called identity federation. Check [this document|http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/c01e7a05-1956-2d10-53a9-9501c6b620ee] for more info. It contains a list of solutions for your problem. It's dedicated to SAP IdM Identity Provider but it's a good reference for basic principles.
Cheers
08-01-2010 12:16 AM
Martin,
Thanks for the document , I will go through it and update the outcome