SAP SuccessFactors What's New Viewer

Deprecation of Support for Non-SAML-Based Single Sign-On (SSO) Settings

The option to add non-SAML-based SSO settings in Provisioning settings for new customer instances will reach end of development on May 21, 2021 and will be deleted on November 19, 2021.

Key Dates

Future dates are subject to change.

Milestone Date Definition
End of Development May 21, 2021 The deprecation milestone after which SAP stops enhancing a product or part of a product. You can continue to use the software, but you should begin planning for a time when it will no longer be available for use. We still fix high-priority bugs.
End of Maintenance May 21, 2021 The deprecation milestone after which SAP does not fix bugs or deliver patches for the software. SAP continues to answer your how-to questions. We strongly encourage you to adopt an alternative method for your business scenario.
Deleted November 19, 2021 The deprecation milestone when a feature is no longer available for productive use. You should now be using an alternative method for your business scenario.

Deprecation Details

To provide better security for Single Sign-On (SSO), we're ending support for adding non-SAML-based SSO settings in customer Provisioning settings for new customer instances. Existing customer instances can still use the non-SAML SSO mechanisms, but we recommend that the settings are changed to SAML 2.0-based SSO or that the customer migrates to SAP Cloud Identity Services to enable Identity Authentication and Identity Provisioning.

New customer SSO configuration setups will not be allowed to select the following non-SAML SSO settings listed here. However, existing customer SSO configurations, which are already configured, can continue to use the setting in the meantime.

  • Token Authentication

  • MD5 Authentication

  • MD5_B64 Authentication

  • SHA-1 Authentication

  • DES Authentication

  • Triple DES Authentication

The following have been removed from the Provisioning SSO setting page:

  • TDBFG HR

  • HMACSHA-1

  • General Motors AWS SSO

  • Hilton SSO

  • Double Encrypted based SSO

If your company is impacted by this change, please begin formulating a plan with your IT team to migrate to one of these methods:
  • SAP Cloud Identity Services to enable Identity Authentication and Identify Provisioning services. This is the recommended approach.

  • SAML 2.0 SSO

  • Password-based logins

If you choose either the SAML 2.0 SSO approach or the Password-based login approach, you will need assistance from SAP Professional Services or a preferred Partner to complete this migration.

Please plan to complete this migration prior to the Deleted milestone date listed in the Key Dates section above.

Additional Resources

Visit the SAP SuccessFactors Customer Community Non-Standard Single Sign On Deprecation Innovation AlertInformation published on SAP site for all the latest updates and discussions.

Technical Details

Reference Number

PLT-77936

Type

Changed

Configuration Type

Universal

Lifecycle

Deprecation

Module

Platform

Feature

Identity Management

Major or Minor

Not Applicable

Link to Demo

Not Applicable

Software Version

1H 2021

Valid as Of

2021-11-19

Latest Document Revision

2021-04-09