Release Update 197663
Email
Multi-factor authentication support for Developer Portal in Ariba Network
Feature ID

SI-2050

Feature Description

Multi-factor authentication is a two-step verification process where users are required to authenticate themselves a second time using a time-based verification code. As compared to the single step authentication process, multi-factor authentication provides enhanced security.

Previously, suppliers attempting to sign in to SAP Ariba Developer Portal using the AN Supplier SSO Sign-in option were re-directed to the Ariba Network supplier sign-in page for authentication. However, it was just a one-step verification process.

With multi-factor authentication enabled, users are required to perform the two-step verification process to log into SAP Ariba Developer Portal.

Customer Problem

Until recently Ariba Network did not provide a feature for multi-factor authentication, which would significantly improve login security when compared to existing user ID/password authentication. There was no verification mechanism to ensure that the individual logging in was indeed the account holder vs. a nefarious entity that had obtained a user’s credentials. Ariba Network customers were requesting that the applications provide a multi-factor mechanism for authentication that would be comparable to existing functionality that is provided by banking institutions.

Customer Value Proposition

The impact of the feature is that it will improve the security at login by forcing the logging-in user to enter in a digital token, from the authenticator app, associated to the user account. This will prevent unauthorized use of the associated account should a user’s login credentials become compromised. Enabling this functionality will significantly decrease the likelihood that a nefarious entity can successfully gain access to the SAP Ariba applications using compromised user account credentials.

Audience

Supplier

What's New Guide

https://help.sap.com/docs/SAP_Ariba/978b7e36451a4c2c85321a3ef6f3a7e5/ba3a5f747fd345edaf3416033eda3c7a.html?locale=en-US&state=PRODUCTION&version=cloud

Feature Enablement

Automatically On

Applicable Solutions
Prerequisites

When multi-factor authentication is enabled for an organization, users must install an authenticator application such as SAP Authenticator from iTunes (for iOS devices) or from Google Play (for Android devices) in their hand-held devices to generate a time-based verification code (also called time-based one-time password). The time-based verification code setup is also compatible with third-party authenticators such as Google Authenticator or Microsoft Authenticator.

Restrictions

None identified


Applies To

SAP Ariba Supply Chain Collaboration 2108
SAP Business Network 2108

Terms of Use  |  Copyright  |  Security Disclosure  |  Privacy