- You have an external Identity Provider set up for SAP Cloud Platform, or an Identity Authentication tenant that delegates authentication to a Corporate Identity Provider.
- The users are able to authenticate, but they do not get access to the Service Provider resources.
- The external Identity Provider has encryption enabled for the SAML assertions. You can see that in a SAML trace:
- SAP Cloud Platform
- SAP Cloud Platform Identity Authentication Service
SAP Cloud Platform Identity Authentication all versions ; SAP Cloud Platform all versions
ssl saml2.0 EncryptedAssertion , KBA , BC-NEO-SEC-IAM , Identity and Access Management , Problem
About this pageThis is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).
Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.