Symptom
SAML is enabled for web-based login to ABAP system.
According to KBA 2945880, end-users are able to bypass SAML by adding 'saml2=disabled' in accessed URL.
The requirement is that all web-based login should be forced to use SAML, and anyone who tries to use 'saml2=disabled' should be denied.
Read more...
Environment
SAP NetWeaver ABAP system
Product
Keywords
saml2=disabled, ?saml2=disabled, &saml2=disabled, enforce SAML, force SAML, bypass SAML, by-pass SAML, avoid bypassing SAML , KBA , BC-SEC-LGN-SML , SAML 2.0 for ABAP , BC-CST-IC , Internet Communication Manager , BC-SEC-LGN , Authentication , BC-MID-ICF-LGN , ICF System Login , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.