To avoid manual login and authentication, Single Sign-On (SSO) can be configured to authenticate a user between the Digital Sales Platform and a company’s Identity Provider (IDP).
Configuration / Setup
SSO capabilities are provided by the SAP Cloud Platform which supports SAML 2.0 and enables authentication using a certificate exchange. For the handshake with a company’s IDP such as Microsoft Active Directory, the following steps need to be configured in the SAP Cloud Platform Cockpit:
- Adding a Trusted Identity Provider. Here, the IDP can be added:
- Once the IDP has been added, the following parameters can be maintained according to the company's settings:
These are the necessary steps to enable SSO capabilities. Additional information can be found directly at SAP help pages: https://help.sap.com/viewer/ea72206b834e4ace9cd834feed6c0e09/Cloud/en-US/625f2c3e1ac541b39985e867d6b8a605.html
SSO Login Support for Commerce
The commerce application will offer Single Sign-On (SSO), enabling users to access it with existing external credentials. This simplifies logins and enhances the user experience.
- SSO Integration: The commerce application will seamlessly integrate with external identity providers that support the industry standard SSO protocol SAML 2.0
- Authentication Process: When users attempt to access the commerce application, they will be redirected to the identity provider's authentication page. Upon successful authentication, users will be automatically redirected back to the application, granting them access without requiring a separate login.
- Deep Link Support: SSO functionality will be compatible with deep linking. For example, if the Customer portal navigates a user to a specific product detail screen, after successful authentication, the user will be taken directly to the intended product detail screen.