Online Help

SafeNet Trusted Access for SAP Cloud Platform

Overview

Configuring SafeNet Trusted Access for SAP Cloud Platform is a three-step process:

1.SAP Cloud Platform setup

2.SafeNet Trusted Access setup

3.Verify Authentication

SAP Cloud Platform Setup

As a prerequisite, download the Identity Provider metadata from the SafeNet Trusted Access console by clicking on the Download metadata file button.

You will need this metadata in one of the steps below.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in SAP Cloud Platform:

1.Log in to the SAP Cloud Platform administrator account using the SAP Cloud Platform login URL (for example, https://accounts.sap.com/saml2/idp/sso/accounts.sap.com).

2.On the SAP Cloud Platform console, click on the region of your SAP account.

3.In the left pane, click Applications and then deploy your preferred application.

4.Click Security > Trust.

5.Under Trust Management, on the Local Service Provider tab, click Edit.

6.Perform the following steps:

a.In the Configuration Type field, select Custom.

b.Click Generate Key Pair.

c.Click Save.

7.Click the Application Identity Provider tab and then, click Add Trusted Identity Provider.

8.On Trusted Identity Provider window, in the Metadata File field, click Browse to search and select the IDP metadata that you downloaded earlier from the SafeNet Trusted Access console.

9.Perform the following steps:

a.In the Assertion Consumer Service field, select Assertion Consumer Service.

b.In the Single Sign-On Binding field, select HTTP-POST or HTTP-REDIRECT.

c.In Single Logout Binding field, select HTPP-POST or HTTP-REDIRECT.

d.In Signature Algorithm field, select SHA-256.

e.Click Save.

Obtaining Metadata

Perform the following steps to download the metadata file of your application:

1.Under Trust Management, on the Local Service Provider tab, click Get Metadata.

2.Save the metadata file on your local machine.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in SAP Cloud Platform, the second step is to activate the SAP Cloud Platform application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the SAP Cloud Platform application that you added previously is currently in inactive state by default. To configure and activate this application, click the application (for example, SAP Cloud Platform) and proceed to the next step.

2.Under STA Setup, click Upload SAP Cloud Platform Metadata.

3.On the Metadata upload window, click Browse to search and select the SAP Cloud Platform metadata that you downloaded earlier in Obtaining Metadata.

Under Account details, the service provider metadata information is displayed.

4.Under User Portal Settings, in the SERVICE LOGIN URL field, enter the application login URL (for example, www.example.com) that is hosted on SAP Cloud Platform.

5.Click Save Configuration to save the details and activate the SAP Cloud Platformapplication in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the SAP Cloud Platform application URL. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the SAP Cloud Platform support portal after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the SAP Cloud Platform application icon, you should be redirected to the SAP Cloud Platform support portal after authentication.

 

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.