Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

SAP IdP per application force 2FA

Go to solution
roderick_oliver
Advisor
Advisor

on ‎2023 Jun 06 9:49 AM

0 Likes
850

In SAP IdP, is it possible to enforce 2FA on a per application basis or is this only set per tenant for all applications?

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (1)

Accepted Solutions (1)

istvanbokor
Product and Topic Expert
Product and Topic Expert
‎2023 Jun 16 1:35 PM
0 Likes

Hi,

On IAS it is possible to set it on application level: Configure Risk-Based Authentication for an Application

Or on the whole tenant level: Configure Default Risk-Based Authentication for All Applications in the Tenant

Kind regards,
István

Show replies
Show replies

Answers (2)

Answers (2)

roderick_oliver
Advisor
Advisor
‎2023 Jun 07 6:15 AM
0 Likes

I should have spent a bit more time exploring the tenant interface. Since posting the question I found my answer.

For tenant-wide enforcing of 2FA, there is a setting under "Risk-Based Authentication/Tenant Settings/Risk-Based Authentication". Here either a rule to require 2FA can be set, either a default or based on client conditions.

The same menu option is available under the "Authentication and Access" for the individual application and setting this here changes the scope to that of the application.

Show replies
Show replies
George_Yu1
Product and Topic Expert
Product and Topic Expert
‎2023 Jun 06 2:15 PM
0 Likes

Hi Roderick,

Since all apps are authenticated from the same IAS, the same policy applies. So it is the later.

Regards,

George

Show replies
Show replies
Ask a Question