Authentication and Authorization

Customers using Nakisa Lease Administration must leverage either:

  • SAML 2.0-based Single-Sign-On (SSO) and an Identity Provider (IdP) for full user authentication and to fetch the user's assigned role.

  • Nakisa's Identity & Access Management Solution (IAM)

Roles assigned in the IdP are mapped to application roles in Nakisa Cloud Platform. Authenticated users and their application role are then stored in the User table in Master Data Configuration. Note that configurable Authorization Profiles must also be assigned in Master Data Configuration to all users, to determine which master agreements and contracts users have access to.

Note: Nakisa allows for one SSO connection. If you require additional SSO, contact Nakisa Support for options.

Refer to the following topics for more information:

  • Roles lists the default application roles available.
  • SAP Data Connections provides information about SAP connection strings, service users, and authorization objects. Note that for fully connected or hybrid systems, service users must be assigned authorization objects to allow users to perform functions in the SAP system.

Nakisa Lease Administration 2022.R2-SP1 © 2023



Nakisa Inc. All rights reserved worldwide.