Following is not our standard SAP Best practices for connecting SAP applications from Out Of Office Network. However, few SAP customers use AirWatch as their MDM tool and in such scenarios, if customer decided to leverage SAP Authenticator SSO functionalities then following information might be helpful.
Using the AirWatch browser, any corporate mobile user outside of the corporate network will have provision to connect internal SAP resources such as SAP Portal, Fiori, etc. For iOS devices, SAP Authenticator by default opens Safari browser and so cannot connect to the network.
With a small change, you can use SAP Authenticator in conjunction with AirWarch browser – No coding is required! Following is the simple example for Fiori Scenario:
Standard http scenario
for AirWatch http Scenario, replace http with awb:
Standard https scenario
for AirWatch Secured Scenario, replace https with awbs:
- SAP Authenticator multi-factor authentication scenarios (X.509 Cert with Passcode) and X.509 certificate based authentication will not work with AirWatch Browser
- AirWatch Browser is not in SAP UI5 supported browser list so there is no 100% guarantee that if everything from SAP UI perspective will work
- TOTP based Passcodes for SSO is supported
SAP UI5 Supported Browsers: