/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- An error occurs when attempting to authenticate to a service on an S/4 Hana system using oauth using SAML bearer Assertion flow authentication
- Traces reveal the error message displayed : "invalid_grant", "Provided authorization grant is invalid. Exception was Attribute 'Recipient' of element 'SubjectConfirmationData' is invalid. For more information, consult the kernel traces or the OAuth 2.0 trouble shooting SAP note 1688545"
- the SAML assertion is not accepted by the token endpoint, because the recipient in SAML assertion does not match the called token endpoint URL. Token endpoint URL must be identical to the recipient in the SAML assertion.
Read more...
Environment
- SAP S/4Hana
- SAP Netweaver
Product
SAP S/4HANA all versions
Keywords
SAP S/4HANA, SSO, Azure token, invalid grant error, OAuth 2.0, SAML bearer token authentication, Postman test , KBA , BC-SEC-LGN-OA2 , OAuth 2.0 for ABAP , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)