SAP Knowledge Base Article - Preview

3280746 - How to enforce all web-based login to use SAML2 in ABAP system

Symptom

SAML is enabled for web-based login to ABAP system.
According to KBA 2945880, end-users are able to bypass SAML by adding 'saml2=disabled' in accessed URL.
The requirement is that all web-based login should be forced to use SAML, and anyone who tries to use 'saml2=disabled' should be denied.


Read more...

Environment

SAP NetWeaver ABAP system

Product

ABAP platform all versions

Keywords

saml2=disabled, ?saml2=disabled, &saml2=disabled, enforce SAML, force SAML, bypass SAML, by-pass SAML, avoid bypassing SAML , KBA , BC-SEC-LGN-SML , SAML 2.0 for ABAP , BC-CST-IC , Internet Communication Manager , BC-SEC-LGN , Authentication , BC-MID-ICF-LGN , ICF System Login , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.