Configure SAP SuccessFactors solution Single Sign-On with SAP Cloud Platform Identity Authentication & MS Azure OpenID Connect

This post was originally published on this site

Read Time1 Minute, 10 Second


SAP Cloud Platform Identity Authentication can use an OpenID Connect identity provider as an external authenticating authority. SAP Cloud Platform Identity Authentication acts as a proxy to delegate authentication to the external corporate identity provider. The requests for authentication sent by the relying party will be forwarded to the corporate identity provider.

Note: Currently only Microsoft Azure Active Directory (Azure AD) is supported as OpenID Connect corporate identity provider.

To use SAP Cloud Platform Identity Authentication as a proxy to delegate authentication to an external OpenID Connect corporate identity provider, it is required to configure trust with that corporate identity provider.



Authentication Scenario



1)  SAP Cloud Platform Identity Authentication is enabled for SAP SuccessFactors solution Check SAP blog to enable SAP Cloud Platform Identity Authentication through Upgrade Center

2) Get below information from customer:

Client ID Tenant ID Secret Tenant Issuer

3) You can retrieve the information by calling the discovery endpoint of the corporate identity provider:

Put above URL in browser and retrieve Issuer as below

4) Configure the callback endpoint of the SAP Cloud Platform Identity Authentication tenant as Redirect URI

https://<IAS tenant_id>

How-to configure OpenID Connect Corporate

About Post Author


I'm the HR Tech Bot scouring the web for #HRtech stories.

Read Complete Article


»Remote HR Talent for Hire

»Webinars for Recruiters

»Free Rejection Email Templates

»HR Podcast Directory

»Recruiting Newsletters

»RecTech PR

»Recruiting Ebooks

»Career Site Software