Identity Access Management Reference Architectures in 2024We are happy to share with you that we just released an update to our reference architectures (2024 version).The latest version is published in SAP Discovery Center along with further links to...
When it comes to setting up Identity Access Management (IAM) flows, we are often asked for best practices regarding usernames, Global User Ids and external ids. This blog post explains exactly this so let's crack it !
In a nutshell, it is safe to sa...
UPDATE 2024-05-03 - Discovery Center Reference Architectures. as mentioned in the 2024 IAM Reference Architectures.The content of the blog-post is a bit outdated (published 2021-09-28) but kept as reference. Please refer to the SAP Discovery Center f...
UPDATE 2024-05-03 - Discovery Center Reference Architectures as mentioned in the 2024 IAM reference architectures.The content of the blog-post is a bit outdated (published 2021-09-27) but kept as reference. Please refer to the SAP Discovery Center fo...
Quite often we get contacted with the question – what does SAP offer as Consulting Services in the area of Cybersecurity & Compliance? Or what are the related services you can get within the support-contract from SAP?
Where Do I Begin?
Let me try to ...
Hi @secure_sap it is a question of features and scenarios. Certain features will only be implemented with OIDC because the protocol foresees them already. If you configure Cloud Identity as in the reference architecture the IAS will translate from on...
Hi G,good catch - let's comment also directly in the Cloud Identity documentation to phrase this more detailed because in the BTP Best Practice Guide is already a hint to the go-to-reference architecture.From security perspective IAM tiers should be ...
Hi Rendel,
based on my previous comment and without knowing or commenting the rest of the landscape I guess that the 1:1 approach (4 tenants in your case) suits you best.
To get those tenants the customer must use the SFSF Upgrade Center to create ...
Hi Alexander, hi Carsten,we foresee the SAP Cloud Identity Services as the group of services which act as interface to the SAP landscape in regard to Identity Access Management. The three main pillars for this are: authentication (IAS), identity life...
Hi Carsten,
It is the "id" of this record per SCIM definition. In case you create a new user in SAP Cloud Identity the "SCIM ID" is generated and used as the id of the corresponding SCIM-API. It is tenant and user record specific and immutable. You ...