This content from the SAP Concur Community was machine translated for your convenience. SAP does not provide any guarantee regarding the correctness or completeness of this machine translated text. View original text custom.banner_survey_translated_text
Dear Concur Support,
I recently logged into SAP Concur and saw the following message:
“SSO authentication to SAP Concur solutions will expire on April 22, 2025.”
Learn more
Could you confirm whether this relates to a certificate expiring on our side, or if it is an issue on Concur’s end? If any action is required from our side, please provide guidance on the next steps.
Looking forward to your response.
Best regards,
Kola Oguntade
This content from the SAP Concur Community was machine translated for your convenience. SAP does not provide any guarantee regarding the correctness or completeness of this machine translated text. View original text custom.banner_survey_translated_text
@kolasolution hello there. I feel I must let you know that this Community is not SAP Concur Support. Can you find answers to questions here? Yes, but myself and the team I'm on are not part of our Support Organization. 🙂 I just want to make sure anyone reading this thread knows the Community does not fall under SAP Concur Support.
Now, having said that...I found an internal article about this topic.
"
Before the current certificate expires on Apr 22, 2025, we would recommend the Authentication Admin to update the SAP Concur IDP configuration to reference the updated certificate. If users attempt to sign in to SAP Concur Solutions via SSO with an expired SAMLv2 security certificate, your Identity Provider (IdP) might reject the authentication, and those users might be denied access to SAP Concur Solutions.
You can retrieve the SAP Concur Metadata on the following links:
US2: https://us2.api.concursolutions.com/sso/saml2/V1/sp/metadata/dd71301e-dd79-4db5-bd29-55093a75755d.
You can also download the metadata from within SAP Concur this way:
The other option is to download it from SAP Concur. You would need to have either the Company Administrator or the SSO Manager role to download the new certificate from SAP Concur. If you do not have the SSO Manager role but have the Role Administrator, you may follow the steps in the article What Is SSO Manager Role (Expense)? to add this to your profile. Once added, you may follow the below steps to download the new certificate.
The other option is to download it from SAP Concur. You would need to have either the Company Administrator or the SSO Manager role to download the new certificate from SAP Concur. If you do not have the SSO Manager role but have the Role Administrator, you may follow the steps in the article What Is SSO Manager Role (Expense)? to add this to your profile. Once added, you may follow the below steps to download the new certificate.
The other option is to download it from SAP Concur. You would need to have either the Company Administrator or the SSO Manager role to download the new certificate from SAP Concur. If you do not have the SSO Manager role but have the Role Administrator, you may follow the steps in the article What Is SSO Manager Role (Expense)? to add this to your profile. Once added, you may follow the below steps to download the new certificate.
This content from the SAP Concur Community was machine translated for your convenience. SAP does not provide any guarantee regarding the correctness or completeness of this machine translated text. View original text custom.banner_survey_translated_text
Hi Kevin, thanks for the valuable information, but I have a question. In the above article where you've said: "Before the current certificate expires on 22 April 2025, we recommend that the Authentication Admin updates the SAP Concur IDP configuration..." Was this a public communication to customers? Because I have not received anything about it, but another client has sent us an "email" informing them of this?
If so, if it is a public notification, could you share the original article and next question is: Are all clients affected by this SSO certificate update?
I'll be wating for your inputs,
Sincerely
Neto
This content from the SAP Concur Community was machine translated for your convenience. SAP does not provide any guarantee regarding the correctness or completeness of this machine translated text. View original text custom.banner_survey_translated_text
@onorio-neto the communication is sent to Authorized Support Contacts (ASC). Since you are a certified partner, you wouldn't receive the notice unless one of your customers has a profile for you in their site and marks you as an ASC.
This content from the SAP Concur Community was machine translated for your convenience. SAP does not provide any guarantee regarding the correctness or completeness of this machine translated text. View original text custom.banner_survey_translated_text
Ok, gotcha! but in relation to the shared communication - will this metadata update afect all customers or is this for some sort of specific SSO communication because it is weird that despite having several customers that have SSO enabled - we only received it from one customer!
I'll be waiting for your further comments,
sincerely
Neto