Course Overview

ENROLL TO THE COURSE HERE (in case you haven’t, yet): Course: Next Steps in SAP HANA Cloud Platform

You can find a list of the course guides for each week of this course in the corresponding parent project of this blog post.

Currently there is not much to add with regards to additional information. But once more questions pop-up in the forums I’ll add FAQs into here.

Please use the SAP HANA Cloud Platform Developer Center or the corresponding openSAP forum for week 3 of this course to post your questions regarding the openSAP course.

Week 4: Advanced Identity Management

This course week is all about advanced identity management and extends the know-how around security management and security you’ve already build-up during the course Introduction to SAP HANA Cloud Platform.

To get deeper into the topics you can look into some additional material provided to you by Martin Raepple via SCN:

• Cloud Single Sign-On and On-Premise Identity Federation with SAP HANA Cloud Platform
  This whitepaper provides guidance for IT architects and developers about designing and deploying integrated solutions on the SAP HANA Cloud Platform that support Single Sign-On and Identity Federation with existing On-Premise Identity Management technology. It explains the key concepts, protocols and technologies, and introduces the enterprise leave request scenario being used in the tutorials for specific IAM solutions.
• SAP HANA Cloud Platform Security Tutorial – Single Sign-On and Identity Federation with SAP NetWeaver Identity Management:
  In this tutorial, the xLeave application running on SAP HANA Cloud Platform will be configured for SSO and Identity Federation with SAP NetWeaver Identity Management 7.2.
• SAP HANA Cloud Platform Security Tutorial – Single Sign-On and Identity Federation with Microsoft Active Directory Federation Services (ADFS) 2.0
  This guide walks you through the federation setup between SAP HANA Cloud Platform with Microsoft Active Directory Federation Services (ADFS) 2.0.
• SAP HANA Cloud Platform Security Tutorial – Single Sign-On and Identity Federation with ForgeRock OpenAM
  This tutorial provides step-by-step instructions for configuring the sample identity federation scenario between SAP HANA Cloud Platform and OpenAM from ForgeRock, the successor of the popular Open Source solution OpenSSO.

Unit 1 – Working with User Profile Attributes

This unit is about the different classes of user account information, how you configure user attributes with the local IdP and in the Cloud Cockpit and how one can access the the user attributes in Java-based apps.

Important/additional information

• official documentation: Enabling authentication

Unit 2 – Group Management

In unit 2 of this week you learn how to use groups in the SAP HANA Cloud Platform and how to assign users to groups.

Unit 3 – Federated Authorization with Groups

In this unit you learn how to define mapping rules to groups.

Important/additional information

• official documentation: Identity federation with the Corporate Idendity Provider

Unit 4 – Custom Roles

Learning how use and define custom roles at runtime.

Unit 5 – Working with Multiple Identity Providers

In this week’s last unit you learn how to setup multiple identity providers per account in the SAP HANA Cloud Platform Cockpit