Received a query from a customer related to the possibility to implement a single-sign-on on their current on-premise SAP ECC as well as integrating with SAP FIORI Cloud that is a new requeriment for them, moreover they use OKTA globally and need to integrate it, too.
- The relationship between SAP environments is performed via a trusted RFC (see reference link).
- Zurich will use the OKTA platform as a second authentication factor and it will pass the credentials of the authenticated user to the FIORI platform that will use it for communication with the on-premiseSAP ECC.
- Considering that OKTA will use the users of the "AD" of ZURICH.COM as a base, so it would be possible to close the triangulation of the accesses.
This means that the users that are in FIORI have to be the same one that is in the on-premise SAP ECC and there will not be a need for a password because they will use a reliable RFC as mentioned on item 1.
Is it feasible?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.