Sign in to confirm you’re not a bot
This helps protect our community. Learn more

Intro

0:00

Starting from API Management

1:30

Create OData API

2:00

Using Basic Authentication in the APIM Policy

2:30

Testing the API

3:10

Creating a Power Automate Flow

4:00

Register Application in Entra-ID

5:20

Maintaining properties in HTTP REST Client field

6:10

Creating the Application ID

6:55

Creating a Scope for user_impersonation

7:15

Power Automate - Creating connection with Application ID

8:05

Add Client application to registered application

8:50

Testing the OData Service from Power Automate

9:20

Adding Trace in APIM Policy

11:30

Looking at Named Values for APIM

13:50

Testing Flow with APIM Tracing

14:15

Adding Redirect URIs for registered application

15:50

Fetching access token via Browser call

16:15

Inspecting the JWT access token

17:20

Create Client secret for on-behalf of flow

18:20

SAML2 - Setting up local provider

19:35

Creating an Enterprise Application in Entra-ID

20:40

Configure Single Sign-on with information from SAP

21:15

Testing from REST Client, Request SAML assertion from Entra-ID

22:45

Signed in users are blocked

23:30

Assign Users and groups

23:50

Add API Permissions for enterprise app in registered app

24:30

Grant admin consent

25:10

Getting Access token / assertion for SAP

25:55

Adding additional Named values in APIM

27:30

extending the APIM Policy with assertion request

28:20

Run Power Automate call

31:20

Exporting Metadata from Enterprise up

33:10

Adding Entra-ID as a trusted provider in SAP

33:35

OAuth configuration - create system user

34:30

Create OAuth 2 client

35:30

Adding Oauth 2 scope / identifying SAP OData Service

36:40

REST client - Request access token from SAP backend

39:00

No user with email found - usermapping

39:35

Getting access token for SAP OData Service

40:45

Calling the SAP Business Partner API

41:15

Adding remaining Named values in APIM

42:30

Extending the policy in APIM with token request to SAP system

43:15

Calling again from Power Automate

45:15

Final updates to APIM policy

45:55

Caching issue in Power Automate

46:45

Creating a new connection

48:05
Power Platform + SAP OData - Single Sign-On - Step by Step
15Likes
628Views
Jan 152025
After walking the happy path in this video,    • Power Platform + SAP OData - Single S...   we now take a closer look at setting up SSO with Power Platform and SAP. The APIM Policy https://github.com/Azure/api-manageme... is amazing, but can be a little intimidating. So in this video we will leverage smaller and simpler policy. We will also start step by step and slowly build-up the policy. On the way we will use the same names and variables as in the more sophisticated policy, so that you can easily switch over. All the links, snippest and more information can be found on the GitHub repo, https://github.com/hobru/Single-Sign-... ➡️ GitHub Repo: https://github.com/hobru/Single-Sign-... ➡️Power Platform + SAP Playlist:    • Power Platform and SAP   ➡️Power Platform + SAP Playlist - Getting Started with the SAP OData Connector:    • Power Platform + SAP: Consuming SAP O...   🙎🏻‍♂️  / holger-bruchelt  
  • 0:00 Intro
  • 1:30 Starting from API Management
  • 2:00 Create OData API
  • 2:30 Using Basic Authentication in the APIM Policy
  • 3:10 Testing the API
  • 4:00 Creating a Power Automate Flow
  • 5:20 Register Application in Entra-ID
  • 6:10 Maintaining properties in HTTP REST Client field
  • 6:55 Creating the Application ID
  • 7:15 Creating a Scope for user_impersonation
  • 8:05 Power Automate - Creating connection with Application ID
  • 8:50 Add Client application to registered application
  • 9:20 Testing the OData Service from Power Automate
  • 11:30 Adding Trace in APIM Policy
  • 13:50 Looking at Named Values for APIM
  • 14:15 Testing Flow with APIM Tracing
  • 15:50 Adding Redirect URIs for registered application
  • 16:15 Fetching access token via Browser call
  • 17:20 Inspecting the JWT access token
  • 18:20 Create Client secret for on-behalf of flow
  • 19:35 SAML2 - Setting up local provider
  • 20:40 Creating an Enterprise Application in Entra-ID
  • 21:15 Configure Single Sign-on with information from SAP
  • 22:45 Testing from REST Client, Request SAML assertion from Entra-ID
  • 23:30 Signed in users are blocked
 ...more
...more

Follow along using the transcript.

SAP on Azure

8.12K subscribers