SAP Knowledge Base Article - Preview

2613465 - SAP Cloud Platform does not support encrypted SAML assertion


  • You have an external Identity Provider set up for SAP Cloud Platform, or an Identity Authentication tenant that delegates authentication to a Corporate Identity Provider.
  • The users are able to authenticate, but they do not get access to the Service Provider resources.
  • The external Identity Provider has encryption enabled for the SAML assertions. You can see that in a SAML trace:




  • SAP Cloud Platform
  • SAP Cloud Platform Identity Authentication Service


SAP Cloud Platform Identity Authentication all versions ; SAP Cloud Platform all versions


ssl saml2.0 EncryptedAssertion , KBA , BC-NEO-SEC-IAM , Authentication, Authorization(Cloud Platform Neo) , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.