Technical Articles
How to implement SAML SSO to access Dashboard from Solution Manager
Introduction:
I am taking this opportunity to write this blog post to for Solution Manager Community. Solution manager offers Dashboard capability to monitor SAP systems availability. This Dashboard gives us Key metrics on our systems availability. With this blog post I am trying to demonstrate how ADFS (Active Directory Federation services) can be used to setup SAML SSO to access these Solution manager dashboards.
Objective – To setup SAML SSO to SAP uptime availability Dashboard
Prerequisite :
- Dashboard is setup in solution manager. For more information
https://blogs.sap.com/2017/02/28/sap-solution-manager-7.2-dashboard-builder/
- Activate below services
/default_host/sap/public/bc/sec/saml2
/default_host/sap/public/bc/sec/cdc_ext_service
/default_host/sap/bc/webdynpro/sap/saml2
- Role require to access the dashboard : SAP_SM_DSH_DISP
Steps :
We already have setup SAML in reference system and we can reuse/import the same configuration in Solution manager system.
Please refer below steps
Log into system that already has keys set up
Transaction SAML2
Export Configuration
Check Export signature and encryption PSEs
Click Download Configuration and save the file somewhere
Import the config
Click Trusted providers tab -> in edit mode select below Identity provider
Import the primary signing certificate
In Signature tab import Token certificate from your Ad administrator
- Click on Authentication Requirements tab and change
- Assertion Consumer Service to Application url
- Binding to HTTP POST
- Restart ICM
Testing
- Cleanup the browser cookies
and open the Dashboard url
Conclusion – ADFS can be used to setup SAML SSO to access Solution manager Dashboards