cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Bypassing SAML authentication on a ABAP System

Go to solution
shuvendu
Explorer

on ‎03-04-2016 5:50 AM

0 Kudos

Hello Friends,

We have enabled SAML between our SAP CRM ABAP system and ADFS 2.0 so that users can directly go into CRM_UI WebUI without their credentials. However for some specific scenarios we need to bypass SAML while using the WebUI.

Could you please let me know how can I do that?

Regards,

Shuvendu

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

former_member182254
Active Participant
‎03-04-2016 7:47 AM
0 Kudos

Hello,

You can disable SAML 2.0 authentication for a specific request by either using URL parameter (saml2=disabled) or HTTP header (x-sap-saml2: disabled). The latter one is suitable in case you use a reverse proxy (Web Dispatcher, Apache or other) and you can configure it to set this header for specific path).

Best regards,

Dimitar Mihaylov

Show replies
Show replies
LutzR
Active Contributor
‎03-04-2016 10:20 AM
0 Kudos

Hi Dimitar, great to know that there also is a HTTP header for this. Are there more HTTP headers around SAML? I cannot find any documentation even on x-sap-saml2. Do you have a reference?

I am specifically looking to replace saml2idp parameter by a HTTP header.

Regards,

Lutz

former_member182254
Active Participant
‎03-04-2016 4:56 PM
0 Kudos

Hello Lutz,

I think it should work with HTTP header "x-sap-saml2idp" but I will be able to confirm this on Monday. Perhaps the HTTP headers are not documented yet. I will notify the info developers about this.

Best regards,

Dimitar Mihaylov

Former Member
‎03-08-2016 9:32 AM
0 Kudos

Hi Dimitar,Lutz,

Header x-sap-saml2idp is supported in ABAP SAML 2.0 since the following SPs:

7.02 SP 16

7.30 SP 12

7.31 SP 13

7.40 SP 08

7.50 SP 01

Best regards

Angel

LutzR
Active Contributor
‎03-09-2016 8:11 AM
0 Kudos

Great! This is really helpful. We will try this soon.

Thanks

Answers (0)

Ask a Question