SAP Cloud IdentitySeptember 2014

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 2Public

Legal disclaimer

This presentation is not subject to your license agreement or any other agreement with SAP.SAP has no obligation to pursue any course of business outlined in this presentation or todevelop or release any functionality mentioned in this presentation. This presentation and SAP'sstrategy and possible future developments are subject to change and may be changed by SAPat any time for any reason without notice. This document is provided without a warranty of anykind, either express or implied, including but not limited to, the implied warranties ofmerchantability, fitness for a particular purpose, or non-infringement. SAP assumes noresponsibility for errors or omissions in this document, except if such damages were caused bySAP intentionally or grossly negligent.

Overview

Overview

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 4Public

Do you have the same security challenges in your company?

Firewall

customer

partner

employee

employee

employee

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 5Public

Leverage the Benefits of Single Sign-On in the Cloud

Single Sign-On - authenticateonce and subsequently accessSAP and non-SAP applications ina secure and user- friendly way.

From Anywhere - also fromyour mobile devices, from outsidethe corporate network, via ‘social’login, etc.

Security - improve securitymeasures and meet companyregulatory requirements.

Low Cost – leverage the benefits ofquick implementation and low costownership and support for a cloudidentity solution.

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 6Public

Offering for all Cloud and On-Premise based ApplicationsSAP Cloud Identity

SAP CloudIdentity

Authentication

Single Sign-On

UserManagement

Cloud Applications

SAP Single Sign-OnOn-Premise

SAP Cloud Applications

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 7Public

Challenges in a Hybrid Cloud Business Model

Cloud

On-Premise

Cloud ApplicationsSAP Cloud Applications

?

How can my users easilyaccess their daily used businessprocesses?

How to ensure we offer thesame experience for cloud andon-premise solutions?

How to ensure for all businessprocesses across company thehighest level of:

SecurityMobilityFlexibilityProductivityAffordability

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 8Public

SAP Cloud Applications

SAP Cloud Identity in a Hybrid Cloud Business Model

Cloud

On-Premise

SAP Cloud Identity:Supports Single Sign-On fromanywhere on any deviceCentralizes accountmanagementControls and secures youridentitiesOwn look & feel includingcompany brandingFederates and provisions youridentities

Cloud Applications

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 9Public

General Product InformationSAP Cloud Identity

SAP Cloud Identity is a Softwareas a Service (SaaS) offering fromSAP

SAP Cloud Identity service is partof SAP HANA Cloud Platform

SAP Cloud Identity supports thethree common businessscenarios:

Business to Employee (B2E)Business to Customer (B2C)Business to Business (B2B)

Overview

Scenarios and Services

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 11Public

Business-to-Employee Scenario (B2E)Challenges

Challenges:Requirement for one loginAccess from anywhere and on any deviceUsers need to recognize their companywhen they log-in.Where are the user master records? Howto get them to the Cloud?Forgot password self-serviceOnly authenticated users to get access

Firewallemployee

employee

employee

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 12Public

Business-to-Employee Scenario (B2E)SAP Cloud Identity

SAP Cloud Identity offering for B2E:Single Sign-On from anywhere and onany deviceUser provisioning

From Central User StoreFrom SuccessFactors Employee Central

Administration servicesCorporate brandingUser provisioningApplications on-boardingE-mail templates setup

Authentication based on trusted securitystandards like SAMLPassword policies enforcement onapplication level

Firewall

employee

employee

employee CentralUserStore

SAP Cloud Identity(private instance)

EmployeeCentral

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 13Public

Business-to-Customer (B2C) and Business-to-Business (B2B) ScenariosChallenges

Challenges:Requirement for one loginAccess on any device from outsidecorporate networkSelf-registration and password reset self-serviceCustomers and partners on-boardingCustomers and partners need to recognizethe company when they log-in.Only authenticated users to get accessFirewall

customerpartner

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 14Public

Business-to-Customer (B2C) and Business-to-Business (B2B) ScenariosSAP Cloud Identity

SAP Cloud Identity offering for B2Cand B2B:

Single Sign-OnAccess on any device from outsidecorporate network to dedicatedapplicationsSelf-registration for customers with e-mailconfirmationInvitations for customers and partners withe-mail notificationOn-behalf registration with e-mailnotificationCorporate branding.Authentication based on trusted securitystandards like SAMLPassword policies enforcement onapplication level

Firewall

customerpartnerSAP Cloud Identity

(private instance)

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 15Public

User Management ServicesServices

User Self Service:Self registration & invitationAccount activationUser profileForgot password

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 16Public

Administration ConsoleServices

Application Configuration

Branding & Policies

Reporting & Monitoring

User Management

Application AccessEmail TemplatesPoliciesSAML TrustAPI Authentication

UI BrandingEmail BrandingPassword PoliciesPrivacy Policies

User ImportUser DownloadStatus ChangeREST APIs for CRUD Operations

Change Logs:CSV download

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 17Public

Get More Information

Get more information, videos and updates

SAP Cloud Identity Servicehttp://scn.sap.com/docs/DOC-49579

Security Communityhttp://scn.sap.com/community/security

Community Network

© 2014 SAP SE or an SAP affiliate company. All rights reserved. 18Public

© 2014 SAP SE or an SAP affiliate company. All rights reserved.

No part of this publication may be reproduced or transmitted in any form or for any purpose without the express permission of SAP SE or anSAP affiliate company.

SAP and other SAP products and services mentioned herein as well as their respective logos are trademarks or registered trademarks of SAP SE(or an SAP affiliate company) in Germany and other countries. Please see http://global12.sap.com/corporate-en/legal/copyright/index.epx for additional trademarkinformation and notices.

Some software products marketed by SAP SE and its distributors contain proprietary software components of other software vendors.

National product specifications may vary.

These materials are provided by SAP SE or an SAP affiliate company for informational purposes only, without representation or warranty of any kind, and SAP SE or itsaffiliated companies shall not be liable for errors or omissions with respect to the materials. The only warranties for SAP SE orSAP affiliate company products and services are those that are set forth in the express warranty statements accompanying such products and services, if any. Nothingherein should be construed as constituting an additional warranty.

In particular, SAP SE or its affiliated companies have no obligation to pursue any course of business outlined in this document or any related presentation, or to develop orrelease any functionality mentioned therein. This document, or any related presentation, and SAP SE’s or its affiliated companies’ strategy and possible futuredevelopments, products, and/or platform directions and functionality are all subject to change and may be changed by SAP SE or its affiliated companies at any time forany reason without notice. The information in this document is not a commitment, promise, or legal obligation to deliver any material, code, or functionality. All forward-looking statements are subject to various risks and uncertainties that could cause actual results to differ materially from expectations. Readers are cautioned not to placeundue reliance on these forward-looking statements, which speak only as of their dates, and they should not be relied upon in making purchasing decisions.