SAP Knowledge Base Article - Public

2405158 - OAuth authentication via chrome extension



Successfactors system


  • Admin Center->Manage OAuth2 Client Applications-> Register
  • Application name: Test Deepa; Application URL: https://localhost/
  • Generate X509 certificate
  • Common Name(CN): SF and then “Generate”
  • Download the .pem file. It contains private key and certificate. (Can be seen in notepad++)
  • Save the configuration
  • Now go back to Postman REST Client for SAML Assertion and create a new http POST call. Set the url to ''. Set Authorization = 'no Auth', goto Body, select the media type as 'x-www-form-urlencoded' and then you can enter values in key-values format. Enter the values in it as follow:

    • client ID: OAuth Client ID: API Key generated (YTJlZGJlMDUwYWMzYmViZDI2MGRhYWNiZDYxOA)

    • user_id = admin3
    • token_url =
    • private_key = everything between -----BEGIN ENCRYPTED PRIVATE KEY----- and -----END ENCRYPTED PRIVATE KEY----- in the Certificate.pem file.


  • POST 
    • grant_type: urn:ietf:params:oauth:grant-type:saml2-bearer
    • company_id:ace89z
    • assertion:PD94....
  • click on send. It generates token.
  • Copy the access token
  • Execute:   GET'cgrant1')?select=userId, firstName Parameter:

    • Authorization: Bearer <access token>

    • Accept: application/json



KBA , LOD-SF-INT-API , SF API & Adhoc API Framework , LOD-SF-INT , SF Integrations - EC Payroll, Boomi/ HCI, API , Problem


SAP SuccessFactors HCM Core 1511 ; SAP SuccessFactors HCM Core 1602 ; SAP SuccessFactors HCM Core 1605 ; SAP SuccessFactors HCM Core 1608 ; SAP SuccessFactors HCM Core 1611