Part I of this blog series described a federated approach for cross-domain identity and access management by using the groups claim in the OAuth access token sent by Microsoft Entra ID to the SAP Cloud Identity Services (CIS) Identity Authentication ...
Part I of this two-part blog post series explains how to setup Multi-Factor-Authentication (MFA) for SAP GUI with Microsoft Entra ID (formerly known as Microsoft Azure Active Directory, AAD) and SAP Secure Login Service (SLS) for SAP GUI. In this sce...
SAP and Microsoft have announced their collaboration to modernize identity and access management (IAM) for SAP customers. SAP recommends its SAP Identity Management (IDM) customers transition to Microsoft Entra (formerly known as Microsoft Azure Acti...
Part I of this blog post series guides you through the setup of an end-to-end scenario for implementing multi-factor authentication (MFA) for SAP GUI with Microsoft Entra ID (formerly known as Microsoft Azure Active Directory, AAD). The integration w...
Part I of this blog series introduced a reference architecture for SAP Digital Manufacturing (DM) business process extensions on Azure. Part II applies this reference architecture to a visual inspection (VI) scenario that supports the production oper...
Hi @dyaryura ,thank you for your feedback. SCIM is definitely an important standard on both sides, and SAP and Microsoft support it across many components as seen in this scenario.Regarding your question on the concept of "source system" and enrichme...
Hi @gabi_maier_ethz ,I can think of ways already today to create groups and assign users in SAP CIS Identity Directory from Entra, for example by calling the Identity Directory SCIM API from an Azure Logic App that hooks into the lifecycle events of ...
Hi @Sgemert,thanks for posting your solution and great to hear that it works with $.LOGONDATA.CODVN.Since the scenario in this blog post also aims to avoid password-based login, I will give it a try in my setup and enhance the blog post accordingly.T...
Hi @Sgemert ,thank you for your feedback.Regarding the use of "PASSWORDDETAILS" to deactivate the user's password, I don't see that field in BAPI_USER_CREATE1 (see also steps 9.13-9.16). Have you seen SAP Note https://me.sap.com/notes/0003115094 on t...
@ncktz, @H_Ettelbrueck ,good news : Just finished part II of this blog post series which covers user provisioning in a hybrid scenario using Entra Cloud Sync, Entra ID Governance, SAP Cloud Identity Service Provisioning Service, & SAP Cloud Connecto...