cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SSO with SAML2.0

Former Member

on ‎09-04-2014 10:09 AM

0 Kudos

Hi,

We are looking for SSO solution with SAML 2.0 and it looks there are several ways available to achieve (http://wiki.scn.sap.com/wiki/display/Security/Single+Sign-On+with+SAML+2.0)

We already have SAP NW IdM 7.2 in place so thinking of making it as our identity provider and found following link as a good point to start with

http://help.sap.com/saphelp_nwidmic_72/helpdata/en/64/38385003ce4f2d88602fbf0de78f2f/frameset.htm

Can anyone please share your experience (Limitation/ practical challenges) that you have faced any ?

or

Is it better to go with SAP NW Single Sign-on ?

Thanks,

Karthik

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
‎09-05-2014 4:19 PM
0 Kudos

Hello Karthik

SAP NW Single Sign-on is a product that caters to all security requirements of your landscape. Its innovative and simple to use and configure. However, if you already have NW IdM 7.2 in your landscape, you can use that as well in SAML configuration.

Regards,

Tapan

Show replies
Show replies
Former Member
‎09-11-2014 6:46 AM
0 Kudos

Thanks Tapan for the info.

Then I could see following limitation though if we go with IdM

1. Supports only IDP lite

2. Supports auditing of transient pseudonym federation and Service provider should be inline with it

I hope SLO issue for IE 6 or 7 is common irrespective of if we go for SAP NW SSO or SAP IdM federation software.

Reference : Limitations of the Identity Provider - Identity Provider for SAP NetWeaver Single Sign-On and SAP Ne...

Is 1 & 2 are major setback ?

or

Does most of the service providers would support IDP lite and auditing of transient pseudonym federation ?

Also is there any other practical issues that we may face if we go with IdM in SAML configuration ?

donka_dimitrova
Contributor
‎09-11-2014 9:42 AM
0 Kudos

Hello Karthikeyan,

This documentation wiki is outdated and will be fixed soon.

This limitation is not valid since several releases. Please, find an article about the capabilities we cover with the IDP here:

Best regards,

Donka Dimitrova

Ask a Question