Fortinet black logo

Online Help

Home FortiCASB 21.2.0 Online Help
21.2.0
24.1.b
24.1.a
23.4.a
23.3.a
23.2.b
23.2.a
23.1.0
22.4.0
21.4.0
21.2.0
21.1.0
20.4.1
20.4.0
20.3.0
20.2.0
20.1.0
4.2.0
4.1.0
2.1.0

SAP IAS

SAP IAS

FortiCASB offers an API-based approach, pulling data directly from SAP IAS via RESTful API. Then FortiCASB portal accesses the data collected through API queries with OAuth2.0 authentication. Subsequently, FortiCASB combines these data to monitor and track SAP IAS user activities such as logins, user assignments, updates and etc.

Prerequisite

The SAP IAS application needs to be hosted in the SAP infrastructure to add the SAP IAS account to FortiCASB. A System Administrator needs to be created under the SAP IAS account to provide FortiCASB with access to the account.

Add SAP IAS

  1. Log into SAP IAS Administration Console, keep a record of the Tenant ID and the IAS Region.

  2. In the left navigation pane, go to Users & Authorization > Administrators. Click + Add in the bottom of the Administrators section, and select Systems.

  3. In Add System, Give it a System Display name, turn all Configure Authorizations to ON, and click Save.

  4. In the left navigation pane, go to Users & Authorizations > Administrators again, select the System Administrator just created, and click Set Password.

  5. Set a new password for the System Administrator and keep a record of the User ID and Password, then click Save.
  6. In the left navigation pane, go to Monitoring & Reporting > Audit and Change Logs , click +Generate to generate a new Client ID and Client Secret. Keep a record of them as you will not be able to see them again.

  7. Now go back to FortiCASB, go to Overview > Dashboard, click on Add New, select SAP IAS, then click Add Selected Cloud App.

  8. Click Next Step on SAP IAS Add Account Page.

  9. Enter Tenant ID, User ID, Password, Client ID, Client Secret, and select the Region saved from earlier steps. Click Add SAP IAS Account and wait 15 minutes for the account to be fully added to FortiCASB.

Previous
Next

SAP IAS

FortiCASB offers an API-based approach, pulling data directly from SAP IAS via RESTful API. Then FortiCASB portal accesses the data collected through API queries with OAuth2.0 authentication. Subsequently, FortiCASB combines these data to monitor and track SAP IAS user activities such as logins, user assignments, updates and etc.

Prerequisite

The SAP IAS application needs to be hosted in the SAP infrastructure to add the SAP IAS account to FortiCASB. A System Administrator needs to be created under the SAP IAS account to provide FortiCASB with access to the account.

Add SAP IAS

  1. Log into SAP IAS Administration Console, keep a record of the Tenant ID and the IAS Region.

  2. In the left navigation pane, go to Users & Authorization > Administrators. Click + Add in the bottom of the Administrators section, and select Systems.

  3. In Add System, Give it a System Display name, turn all Configure Authorizations to ON, and click Save.

  4. In the left navigation pane, go to Users & Authorizations > Administrators again, select the System Administrator just created, and click Set Password.

  5. Set a new password for the System Administrator and keep a record of the User ID and Password, then click Save.
  6. In the left navigation pane, go to Monitoring & Reporting > Audit and Change Logs , click +Generate to generate a new Client ID and Client Secret. Keep a record of them as you will not be able to see them again.

  7. Now go back to FortiCASB, go to Overview > Dashboard, click on Add New, select SAP IAS, then click Add Selected Cloud App.

  8. Click Next Step on SAP IAS Add Account Page.

  9. Enter Tenant ID, User ID, Password, Client ID, Client Secret, and select the Region saved from earlier steps. Click Add SAP IAS Account and wait 15 minutes for the account to be fully added to FortiCASB.

Previous
Next