SAP Knowledge Base Article - Public

3030935 - Undertaking Initiate IAS upgrade stops current SSO


When customer undertakes Initiate IAS upgrade from upgrade center the Current SSO configuration stops working.


BizX Provisioning

Reproducing the Issue

  1. Customer attempts to log in after just undertaking the initiate IAS upgrade and not to activate IAS upgrade.
  2. Login fails
  3. Customer is IDP initiated SSO
Image/data in this KBA is from SAP internal systems, sample data, or demo systems. Any resemblance to real data is purely coincidental


The IAS asserting party, although disabled, in provisioning has ticked the default issuer button in the "SAML v2 : SP-initiated login".


The issue in under investigation. We will keep this KBA updated on the progress.  In the meantime the following workaround can be applied: 

  1. In the IAS asserting party uncheck the default issuer button in "SAML v2 : SP-initiated login".
  2. Set "Enable sp initiated login (AuthnRequest)" to No.
  3. Set "Send request as Company-Wide issuer" to No.
  4. Click update the asserting party.

Note we have attached a video showcasing how to change the settings.


KBA , LOD-SF-PLT-IAS , Identity Authentication Services (IAS) With BizX , Bug Filed


SAP SuccessFactors HXM Suite all versions