The requirement is to be able to combine the direct and live user access to internal SAP HANA systems [within corporate firewalls] and when users are not connected to the corporate network [from outside of corporate firewalls].
|
Nowadays, users would rather be connecting to corporate assets from public internet with SAML Single Sign On [SAML SSO]. When it comes to SAC it means that the internal backend HANA systems InA endpoint must be somehow accessible in that context; otherwise access to SAC models and stories may be denied. Thus for a direct connection to work from outside of the corporate firewall the InA endpoint of the internal SAP HANA system must have been published to the outside context (public internet or another corporate network) Even if there are ways to have the HTTPS InA endpoint published outside of corporate firewall they all require intimate knowledge of networking and having in place the InA endpoint publication mechanism. Good to know:
|
In order to alleviate the burden of using SAP Analytics Cloud [SAC] :
SAP has released a new type of a SAC HANA Live connection called tunnel connection. The tunnel connection leverages the SAP Cloud Connector [SCC] to establish a secured communication tunnel between SAC and your SAP HANA on-premise system(s); |
Account Information
Subaccount
647eea61-5e1e-4c8c-8d1e-xxxxxxxxxxxx
Region Host
cf.xx10.hana.ondemand.com
Subaccount User
firstname.lastname@domain.com
Add Subaccount
Region:
cf.xx10.hana.ondemand.com
Subaccount:
647eea61-5e1e-4c8c-8d1e-xxxxxxxxxxxx
Subaccount User:
firstname.lastname@domain.com [this is your SAP ID user from Step1 above]
Password: [SAP ID user password]
Tunnel HANA live connection:
https://<SAC-host-name><domain name>/lcs/scc/tunnel/HANATUNNEL/sap/bc/ina/service/v2/GetServerInfo
{"ServerInfo":{"BuildTime":"2019-12-06 15:29:38","Client":"000000000000000000","ServerType":"SAP HANA","SystemId":"HXE","UserLanguageCode":"EN","Version":"2.00.045.00.1575639312"}
where HANATUNNEL is the SAC connection name.
Direct HANA live connection:
https://<HANA-host-name><Port Number>/sap/bc/ina/service/v2/GetServerInfo
{"ServerInfo":{"BuildTime":"2019-12-06 15:29:38","Client":"000000000000000000","ServerType":"SAP HANA","SystemId":"HXE","UserLanguageCode":"EN","Version":"2.00.045.00.1575639312"}
Please check the guided answers topic if you happen to encounter issues when trying to add a SAC's BTP sub-account: https://ga.support.sap.com/dtp/viewer/#/tree/2183/actions/27936:28765:28777. |
SAP Analytics Cloud [SAC] offers direct connectivity to a number of SAP applications including SAP HANA. A direct connection is always established between the context of the SAC web application [webapp] running on a client side in a browser and the backend system [via the InA endpoint exposed on the SAP HANA backend]. Generally speaking, the only requirement for the direct communication to work is that the SAC webapp browser and the InA endpoint of HANA backend system can communicate securely over HTTPS with each other. A simple use case is when SAC in-browser webapp runs in the same network as the backend system. This is a typical scenario when a user browser is directly hooked to the corporate network [or when the user dials-into the network via VPN]. Good to know:Direct connectivity to SAP HANA is implemented with the SAP Information Access (InA) HTTPS protocol that requires the EPM-MDS plugin on HANA side. The EPM-MDS plugin is included out-of-the-box with the recent SAP HANA on premise or cloud offerings. A single InA endpoint is required of the following format: <FQDN><Port>/sap/boc/ina/version/v2/. It can be configured either with the XS classic webdispatcher or with the XSA HAA (XS Advance runtime Hana Analytics Adapter). Thus this can be any flavour of SAP HANA: on premise or cloud managed HANA service including the latest SAP HANA Cloud. SAC webapp will simply add /sap/boc/ina/version/v2/ resource suffix to whatever host name and port number you have entered in the SAC connection definition. Chrome or Edge browsers are fully supported. |
You may want to get familiar with the official SAP Connectivity guide online (pdf enclosed for convenience). The guide in the section, The Importance of Managing a Connectivity Project, will tell what kind of persona may be needed for a specific task. |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
38 | |
19 | |
14 | |
12 | |
10 | |
10 | |
10 | |
8 | |
8 | |
8 |