Configure Your On-Premise Systems to Use the SAPCP Cloud Connector
Configure your on-premise data source systems to use the SAPCP cloud
connector.
Context
To use the
SAP Cloud Platform cloud connector for data source connections,
you'll need to complete these configuration steps:
Note
At this time, this capability
exists only for SAP BW, SAP S/4HANA, and SAP HANA data sources.
Procedure
-
Log in to the Cloud Connector Administration application.
-
In the left-side menu, select Cloud To On-Premise.
-
In the Subaccount field, choose your SAP Analytics Cloud
subaccount.
-
On the Access Control tab, in the Mapping Virtual To
Internal System section, click (Add)
to add a new mapping to your live data system.
-
In the Add System Mapping dialog, use the following
values:
|
SAP BW and SAP S/4HANA |
SAP HANA |
Back-end Type |
ABAP system |
SAP HANA |
Protocol |
HTTPS |
HTTPS |
Internal Host
Internal Port
|
<system host>
<system port>
|
<system host>
<system port>
|
Virtual Host
Virtual Port
|
<can use the same host as the internal host>
<can use the same port as the internal port>
|
<can use the same host as the internal host>
<can use the same port as the internal port>
|
Principal Type |
If using single sign-on, choose X.509 Certificate (General
Usage). If using a user name and password,
choose None. |
None |
-
Allow access to your system paths:
-
In the Resources Of section, click (Add).
-
Enter the URL Path:
“/”.
For SAP HANA, if you don't want to allow access to all paths under
“/”, set the path to
/sap/bc/ina/service/v2/.
-
Choose Path and all sub-paths.
-
Select Save.
-
Steps 7 through 11 are
only applicable to SAP BW and SAP S/4HANA SSO. For basic authentication or for
SAP HANA, skip these steps.
-
Select
(Synchronize) to synchronize the identity
providers.
-
For tenants on SAP data centers only, complete these steps:
(A two-digit number in your SAP Analytics Cloud URL, for
example eu10 or us30, indicates a non-SAP data center.)
-
Select (Edit).
-
In the Edit Trust Configuration dialog, find the
lcs entry in the
Description column.
-
Select the Trusted check box for the
lcs entry, and save the configuration.
-
Download the SAPCP cloud connector's system certificate:
Remember
The system certificate needs to be renewed periodically,
or else connections that use the cloud connector may stop working.
-
Switch back to the Access Control tab.
-
In the left-side menu, select Configuration.
-
Select the On Premise tab.
-
In the System Certificate section, select (Download certificate in DER format), and save
the system certificate file.
-
Generate an SAPCP cloud connector sample certificate based on a valid user's identifier
value:
-
In the Principal Propagation section, select the
Create a sample certificate icon.
-
Type a valid user identifier.
For example, if you configured “User ID” as the user identifier
attribute in your identity provider, use that User ID value here.
-
Select Generate, and save the sample certificate file.
-
Set the Common Name for the SAPCP cloud connector:
-
In the Principal Propagation section, select
Edit.
-
Set the Common Name (CN) field to:
${name}.
-
Select Save.
Next Steps
Next, you'll need to set up the trust between
SAP Analytics Cloud and your
on-premise systems: