Symptom
When using a custom SAML SSO Identity Provider (IdP), reverting back to the SAP Default Cloud Identity IdP is possible in case users are unable to authenticate or log into SAP Datasphere.
- Reverting Custom SAML SSO IdP to SAP Default Cloud Identity IdP.
- How to use the Identity Provider Administration Tool.
- How to update the IdP metadata used by SAP Datasphere.
Environment
SAP Datasphere
Resolution
Adjust the SAP Datasphere tenant's IdP Configuration using the self-service Identity Provider Administration Tool:
https://console.<data center>.sapanalytics.cloud/idp-admin/ !!Note the TRAILING slash after idp-admin!!
Examples:
- non-SAP Data Center (i.e. EU10 / US10) - Whenr tenant is hosted in EU10 the URL should look like https://console.eu10.sapanalytics.cloud/idp-admin/
- China non-SAP Data Center (i.e. CN40) - When tenant is hosted in CN40 the URL should look like https://console.cn40.analytics.sapcloud.cn/idp-admin/
This tool is accessible using a valid S-User or P-User with the same e-mail address associated with the tenant's system owner.
Note:
- Follow these steps only if access to SAP Datasphere cannot be done successfully, hence tenant is unaccessible.
See Also
- SAP Datasphere Help Identity Provider Administration
Keywords
not accessible, not available, unavailable, standard IdP, back, , KBA , DS-AUT , Authorizations (Locks, etc.) , How To