3442802 - Error 400 To Upload IDP Metadata

Error to upload IDP Metadata: Http failure response for {tenantURL}/sap/c4c/api/v1/iam-service/saml2Idps: 400 OK.

• SAP Service Cloud v2
• SAP Sales Cloud v2

1. Open Settings.
2. Go to Identity provider screen.
3. Click on +.
4. Type your alias and fill the other details.
5. Upload the the IDP XML file.
6. Click on save.
7. Result: Http failure response for {tenantURL}/sap/c4c/api/v1/iam-service/saml2Idps: 400 OK

Metadata file format was not correct.

This initial part (<?xml version='1.0' encoding='UTF-8'?>) and the EntityDescriptor tag are mandatory in metadata file.

Below you can find an example of how the XML file should be:

<?xml version='1.0' encoding='UTF-8'?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" validUntil="2025-06-19T05:15:36Z" cacheDuration="PT604800S" entityID="@TENANT_ID">
<md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="XXX">
<ds:X509Data>
<ds:X509Certificate>@SIGNING_CERT</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="@SLS_URL"/>
<md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="@ACS_URL" index="1"/>
</md:SPSSODescriptor>
</md:EntityDescriptor>

Help documentation: Configure Identity Provider

SSO, XML, IDP, Identity Provide, Metadata, 400, Failure, Upload , KBA , CEC-CRM-IAM , Identity and Access Management for SAP Sales/Service Cloud , Problem