Error 403 Unauthorized happens when verifying account during enablement of custom SAML IdP (Identify Provider)
Missing mandatory attribute Groups with value "sac"
Follow SAP Help page Enabling a Custom SAML Identity Provider
In AIS, SAP Datasphere's configuration requires Default Attribute "Groups" with value "sac".
Attribute "Groups" as "sac" is a mandatory requisite for the configuration.
dwc, data warehouse cloud , KBA , DS-AUT , Authorizations (Locks, etc.) , Problem
SAP Datasphere all versions