cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP HANA On-Premise Database and AWS Cognito

timm_parameswaran
Discoverer

on ‎09-12-2023 2:01 PM

0 Kudos

Hi,

we are currently hosting a HANA On-Premise database instance on an AWS Suse EC2 instance, including several tenant databases.

Our application is using AWS Cognito to authenticate. For almost 1 year I have been searching for a solution to combine HANA DB authentication and AWS Cognito.

Is there a way to use AWS Cognito as an authentication service directly on the HANA DB Instance (SSO)?
To e.g. :

- Connect the Database via hdbcli (python) ODBC and use ID Token as authentication
- The database extracts the user and tenant information from the ID token and decides if the user is allowed to connect to the tenant database.

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

jyotsana_gupta
Advisor
Advisor
‎09-13-2023 6:17 PM
0 Kudos

Hi Timm,

AWS Cognito would probably only work if you could configure it as a JWT or SAML provider from HANA.

Please see:

https://help.sap.com/docs/SAP_HANA_PLATFORM/b3ee5778bc2e4a089d3299b82ec762a7/9dca00b893274570a7c1cce...

Hope this helps,

Jyotsana

Show replies
Show replies
timm_parameswaran
Discoverer
‎09-29-2023 11:16 AM
0 Kudos

Hi,
I was already trying to configure it as a JWT provider.
But if I am trying to connect to the DB using python hdbcli (forwarding a bearer token), then an error will be returned:

Error: (1033, 'error while parsing protocol')

dyaryura
Active Participant
‎09-29-2023 1:05 PM
0 Kudos

Hi Timm

That's a very generic issue. I've found the same also configuring Kerberos for HANA.

You should be able to find more detailed info in the logs if you enable the traces (see for example https://me.sap.com/notes/0002472944)

those traces should provide you more detailed info to trobleshoot the issue.

Ask a Question