SAP Knowledge Base Article - Preview

3510823 - Security measures for the refresh token in service key under "apiaccess" Plan

Symptom

  • Refresh Tokens of an instance can be downloaded without further security mechanism.

  • If user left the organization or no longer have access to the instance. Tokens cannot be renewed without considerable additional effort and impairments.


Read more...

Environment

  • SAP Business Technology Platform - Cloud Foundry Environment.

Keywords

Security, security measures, service key, service, key, instance, subscription, instance and subscription, mechanism, apiaccess, plan, apiaccess plan, XSUAA deprecation, XSUAA, secret token, refresh token, token, secret, refresh, authorization, trust management service. , KBA , BC-CP-CF-SEC-IAM , UAA, Authentication, Authorization, Trust Mgmnt , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.