Configure the OAuth Client and APIs

OAuth Client

1. Sign in to the SAP Ariba Developer Portal.

2. Create an app for each relevant API. Allow 12 hours for Ariba to auto-approve API access.

   • SCIM API for User and Group Master Data for Parent and Child realms in a single application

3. Generate the secret key for the API.

SCIM API for User and Group Master Data

1. Sign in to the SAP Ariba Developer Portal, select Data Center, and then select SAP ID Service SSO.

2. On the Create a New Application page, enter a user friendly Application Name and Description, then select Submit.

   Screenshot

   

3. Select Actions > Request API Access > SCIM API for User and Group Master Data.

   Screenshot

   

   Note
   SCIM API for user and group master data is not made available by SAP directly. After creating the application you must raise an SAP support case to get the API configured for Parent and Child realms in a single application.

4. Once created, go to Actions > Generate OAuth Secret, and copy the OAuth Client Secret. Make note of the OAuth Client Id, Application Key, and OAuth Client Secret. You will enter these into the Proxy Properties to create an IPS proxy application.

   Next, copy the AN-ID, which is required for configuring the SCIM API for aggregation. This can be found in the Realm(s) used by this Application section.

   Screenshot

   

   Note
   In the Realms field under an application, add all the Buyers' Realms in the same configuration to enable IPS Proxy set up per realm.

5. Go to the Discover tab and select Procurement > SCIM API for User and Group Master Data. Copy the value of the OAuth Server URL Prefix and append v2/oauth/token to it.

   The OAuth2TokenServiceURL(IPS) will be: https://{url}/v2/oauth/token

   The URL(IPS) will be: https://{url}

   Note
   Don't include api/mds/v1/prod in the URL. Make a note of both the OAuth2TokenServiceURL and the URL to use in the IPS configuration.

   Screenshot