Required Permissions

  • SAP Ariba Developer Portal (to configure the OAuth Client)

    • The OAuth client must be created to use Ariba APIs. It can be created by the system user using Developer Ariba.

    • The following APIs must be used by two separate OAuth clients.

      • SCIM API for User and Group Master Data (for Parent and all Child Realms together)

  • SAP Identity Provisioning Service (to configure the technical user)

    • The technical user is required to be created by the tenant administrator. Select the Access Proxy System API permission in Configure Authorizations.