How to Manually Disable SAML 2.0 Authentication for SAP URL

By default, if the SAML 2.0 if activated or enabled in your SAP system environment, any SAP URLs launched will be automatically signed in upon opening the landing page. But, in the event of doing testing or troubleshooting, you may wanted to temporary disable the SAML 2.0 authentication when launching any of the SAP URLs.

For SAP Basis peoples, this is really beneficial when you wanted to open the NWA page using other user like the Administrator or J2EE_ADMIN user.

Solution

Just add the saml2=disabled add the end of the URL and press Enter. The page now will prompt you the username and password.

For SAP Enable Now Cloud Edition, you need to /formlogin to the end of the URL.

Example URL 1

http(s)://HOSTNAME:PORT/sap/bc/gui/sap/its/webgui/?sap-client=888&sap-language=en&saml2=disabled

Example URL 2

http(s)://HOSTNAME:PORT/sap/bc/gui/sap/its/webgui/?saml2=disabled

Example URL 3

Add /formlogin to the end of the URL, it would be:

https://itsiti.enable-now.cloud.sap/formlogin

Reference

  • SAP Wiki
  • 2577263 – SAML2.0: How to disable SAML 2.0 authentication for a particular ICF service in AS ABAP
  • 2676971 – SAML2 functionality is disabled by URL parameter error in trace
  • 2925163 – How to Login to Manager with a Manager Created User ID After SSO is Active

You May Also Like

Leave a Reply?