-
Products and Technology
By Category
-
Groups
Activity Groups
Industry Groups
Influence and Feedback Groups
Interest Groups
Location Groups
Customer Only Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
Products
Learning and Support
-
- Products and Technology
- Groups
- Developers
- Partners
- Events
- Help Center
- Topic Pages
-
Explore SAP
- Explore SAP
-
Products
- Products
- SAP Business Suite
- Artificial Intelligence
- Business applications
- Data and analytics
- Technology Platform
- Financial Management
- Spend Management
- Supply Chain Management
- Human Capital Management
- Customer Experience
- SAP Business Network
- View products A-Z
- View industries
- Try SAP
- Partners
- Services
- Learning and Support
- About
- SAP Community
- Products and Technology
- CRM and Customer Experience
- CRM and CX Q&A
- Merge users in CDC after signed in to Azure AD via...
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Merge users in CDC after signed in to Azure AD via OIDC
- Subscribe to RSS Feed
- Mark Question as New
- Mark Question as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 2022 Jan 22 1:58 PM
- SAP Managed Tags
- SAP Customer Data Cloud
Hi Experts!
We are trying to set up user authorization in CDC through Azure Active Directory using OIDC RP.
We manually created a user in CDC with an email and password, just like in AzureAD. But when we try to sign in via AzureAd, it creates a new user in CDC with the same email address. Here says that it must be linked to an existing account with the same email address.
We checked this with ScreenSet (added a custom social provider "oidc-<our_oidc_id>") and with WebSDK using gigya.socialize.login method with loginMode="standard".
Login Identifier: email, Link Accounts Support: Site identities only
What additional configuration needs to be done?
Any help or information would be extremely helpful!
Thanks in advance,
Need more details?
Request clarification before answering.
Accepted Solutions (0)
Answers (1)
Answers (1)
igal_mi
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You need to change Link Accounts Support policy to All Identities
You can read more about it here:
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Igal, thank you for your answer. In our case, we want to merge AzureAD user (OIDC identity) to existing CDC user (site identity). I think we can use "Site identities only" policy. Anyway, we also checked with "All identities" - the result was the same.
Our problem was invalid data from AzureAd. On the AAD side, the "username" field is an email address. But we had to add the same email address to the additional "email" field on the AAD side in order to be able to link the accounts.
But in order to link accounts, the user must additionally enter a password for the CDC user, which he does not know in our case. We wanted to migrate AzureAd accounts to CDC (initial import), but AAD does not have the ability to migrate passwords.
Bluesky- Part 2 - Building the MCP Server and client for SAP Commerce in Local in CRM and CX Blog Posts by SAP
- Emarsys Order/Sales Data Upload Fails with “Missing header” in CRM and CX Q&A
- LINK Headless storefront in GCP with API layer in SAP Commerce cloud in CRM and CX Q&A
- Link Headless Storefront in GCP with API layer in SAP Commerce Cloud in CRM and CX Q&A
- Data Migration: Socket Timeout Exception in CRM and CX Q&A
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.