index.md

SAP BTP, Neo Environment

• What Is SAP BTP, Neo Environment
  • Account Model
    • Global Accounts
    • Subaccounts
      • Using Beta Features with Subaccounts
      • Using Experimental Features in Subaccounts
    • Directories
    • Relationship Between Global Accounts, Subaccounts, and Directories
    • Labels
    • User Accounts
  • Regions in the Neo Environment
    • Regions and Hosts Available for the Neo Environment
    • Resilience, High Availability, and Disaster Recovery
      • Disaster Recovery as Part of the Business Continuity Plan
      • Multi-AZ in the Neo Environment
  • Solutions and Services
  • Tutorials
  • Tools
    • SAP BTP Cockpit
      • Accessibility Features in SAP BTP Cockpit
      • Notifications
    • SAP Web IDE
    • Maven Plugin
    • SAP BTP SDK for Neo Environment
    • SAP BTP SDK for iOS
    • SAP JVM Tools in Eclipse for the Neo Environment
    • Console Client for the Neo Environment
    • Working with Cloud Management Tools Feature Set B in the Neo Environment
• Get an Enterprise Account
  • Sign up for a Customer Account
  • Join the Partner Program
  • Commercial Models
    • What Is the Consumption-Based Commercial Model?
    • What Is the Subscription-Based Commercial Model?
• Getting Started, Neo Environment
  • Getting Started with a Customer Account in the Neo Environment
  • Getting Started with Business Applications Subscriptions in the Neo Environment
    • Providing Multitenant Applications to Consumers in the Neo Environment
      • Providing Java Multitenant Applications to Tenants for Testing
    • Subscribe to Java Multitenant Applications in the Neo Environment
    • Subscribe to HTML5 Multitenant Applications in the Neo Environment
• Development, Neo Environment
  • Deploy Business Applications in the Neo Environment
  • Developing Java in the Neo Environment
    • Java: Getting Started
      • Setting Up the Development Environment
        • Install the SAP BTP SDK for Neo Environment
        • Install the SAP JVM Tools in Eclipse
        • (Optional) Install SAP JVM
        • Set Up the Console Client
      • Updating SAP BTP SDK for Neo Environment
        • Update the SAP BTP SDK for Neo Environment
      • Using Samples
        • Building Samples with Maven
          • Build Samples from the Command Line
    • Runtime for Java
      • Java Virtual Machine
      • Application Runtime Container
        • Java EE 7 Web Profile TomEE 7
        • Java Web Tomcat 10
        • Java Web Tomcat 9
        • Java Web Tomcat 8 (Deprecated)
        • Migrating from Java Web Tomcat 8 to Java Web Tomcat 9
      • Compute Units
    • Development Environment
      • Supported Java APIs
    • Developing Java Applications
      • Using Cloud Environment Variables
    • Deploying and Updating Java Applications
      • Java ALM API
        • Authentication and Authorization
        • Deploy an Application
        • Deploy an Application with a Copy Operation
        • Verify Application Binaries
        • Download Application Binaries
        • Start an Application
        • Stop an Application
        • Read an Application
        • List Subaccount Applications
      • Deploy Locally with the Console Client
      • Deploy on the Cloud with the Console Client
        • Use Delta Deployment
      • Deploy on the Cloud with the Cockpit
      • Accessibility Features in Java ALM Service for SAP BTP
    • Debugging Applications
      • Debug Applications Locally
      • Debug Applications on the Cloud
    • Developing Multitenant Applications in the Neo Environment
      • Multitenancy Roles
      • Tenant Context API
      • Multitenancy Tutorials
        • Create an Exemplary Provider Application (Servlet)
        • Create an Exemplary Provider Application (JSP)
        • Create a Multitenant Connectivity Application
        • Consume a Multitenant Connectivity Application
    • Programming with JPA and JDBC
      • Accessing Databases Remotely
      • Programming with JPA
        • Tutorial: Adding Container-Managed Persistence with JPA (SDK for Java EE 7 Web Profile)
          • Import Java Web Application
          • Add External JARs
          • Building the WAR File
          • Test the Web Application on the Local Server
          • Deploy on the Cloud
            • Deploy on the Cloud with the Cockpit
            • Deploy on the Cloud with the Console Client
          • Configure Applications Using the Cockpit
          • Start Applications
            • Start Applications with the Cockpit
            • Start Applications with the Console Client
        • Tutorial: Adding Application-Managed Persistence with JPA (SDK for Java Web)
          • Import Java Web Application
          • Add External JARs
          • Building the WAR File
          • Test the Web Application on the Local Server
          • Deploy on the Cloud
            • Deploy on the Cloud with the Cockpit
            • Deploy on the Cloud with the Console Client
          • Configure Applications Using the Cockpit
          • Start Applications
            • Start Applications with the Cockpit
            • Start Applications with the Console Client
        • Special Settings for EclipseLink Versions Earlier than 2.5
        • Persistence Units
        • Using Container-Managed Persistence
          • Configure Persistence Units
          • Inject Entity Managers
        • Using Application-Managed Persistence
          • Declare JNDI Resource References
          • Configure Persistence Units
          • Retrieve Data Sources
          • Create Entity Managers
          • Entity Transaction API
          • Apply Dynamic Data Source Lookup
        • Entity Classes
        • Creating SAP HANA Column-Store Tables
        • EclipseLink Weaving
      • Programming with Plain JDBC
        • Tutorial: Adding Persistence with JDBC (SDK for Java Web)
          • Import Java Web Application
          • Add External JARs
          • Building the WAR File
          • Test the Web Application on the Local Server
          • Deploy on the Cloud
            • Deploy on the Cloud with the Cockpit
            • Deploy on the Cloud with the Console Client
          • Configure Applications Using the Cockpit
          • Start Applications
            • Start Applications with the Cockpit
            • Start Applications with the Console Client
      • Testing on the Local Runtime
        • Configure Data Sources As Connection Properties
      • Investigating Performance Issues Using the SQL Trace
        • Alternative Tools for Enabling the SQL Trace
  • Developing SAP HANA in the Neo Environment
    • SAP HANA: Getting Started
      • Install SAP HANA Tools for Eclipse
      • Creating an SAP HANA XS Hello World Application Using SAP HANA Web-based Development Workbench
        • Create a Database
        • Create a Database User and Add the Required Roles
        • Create and Deploy an SAP HANA XS Classic Application
      • Creating an SAP HANA XS Classic Hello World Application Using SAP HANA Studio
        • Create a Database User
        • Add a Repository Workspace
        • Add an XS Application Project
        • Write Server-Side JavaScript
        • Test Your Application
        • Retrieve Data from SAP HANA
        • Test Your Application Again
      • Enable SAP HANA Interactive Education (SHINE)
    • Launch SAP HANA XS Applications
    • Using an SAP HANA XS Database System
      • Supported SAP HANA Web-based Tools
      • Creating Database Users
        • Create a Database Administrator User
        • Assign Roles Required for the SAP HANA XS Administration Tool
          • Roles Required for Web-based Tools
      • Configure Availability Checks for SAP HANA XS Applications from the Cockpit
      • Configure Availability Checks for SAP HANA XS Applications from the Console Client
      • View Monitoring Metrics of a Database System
      • Debug with SAP HANA Web-based Development Workbench
      • Configure SAML 2.0 Authentication
      • Assign Trust Stores to HTTP Destinations
  • Multitarget Applications for the Neo Environment
    • Create a Hello World Multitarget Application
    • Defining MTA Development Descriptors
    • Defining MTA Deployment Descriptors for the Neo Environment
    • Defining Multitarget Application Archives in the Neo Environment
    • Defining MTA Extension Descriptors in the Neo Environment
    • MTA Module Types, Resource Types, and Parameters for Applications in the Neo Environment
    • Integration with Transport Management Tools
      • Transporting Multitarget Applications with CTS+
      • Set Up a Direct Upload of MTA Archives to a CTS+ Transport Request
      • Set Up Direct Uploads of MTA Archives Using the Transport Management Service
      • Configuring the Access to the SAP Solution Lifecycle Management service
    • Modeling Solutions
      • Modeling Java Applications
      • Modeling HTML5 Applications
      • Modeling Database Bindings
      • Modeling Destinations
        • Modeling Subaccount-Level Destinations
        • Modeling Application-Level Destinations
      • Modeling SAP SuccessFactors Extensions
      • Modeling Security Groups and Role Assignments
        • Role Assignment of Fiori Roles to Security Groups
        • Role Assignment of HTML 5 Roles to Security Groups
    • Operating Solutions
      • Deploying Solutions Using the Cockpit
        • Deploy a Standard Solution
        • Deploy a Multitenant Application
          • Deploy a Provided Solution
            • Create and Edit Entitlements
          • Subscribe to a Solution Available for Subscription
      • Exporting Solutions
      • Troubleshooting
      • General Information About Solution Updates
        • Updating Solutions
        • Update Options and Examples
      • Monitor Solutions Using the Cockpit
      • Delete Solutions Using the Cockpit
    • Accessibility Features in Solutions Lifecycle Management
    • Security
  • Developing HTML5 Applications in the Neo Environment
    • HTML5: Getting Started
      • Creating a Hello World Application Using SAP Web IDE
        • Create an HTML5 Application
        • Create a Project
        • Edit the HTML5 Application
        • Deploy Your App to SAP BTP
    • Developer's Guide
      • Development Environment
        • Working with Git
      • Create an HTML5 Application
      • Create a Version
      • Activate a Version
      • Application Descriptor File
        • Authentication
        • Authorization
        • Protecting the Application Descriptor
        • Accessing SAPUI5 Resources
        • Accessing REST Services
        • Accessing Application Resources
        • Accessing the User API
        • Welcome File
        • Logout Page
        • Error Page
        • Cache Control
        • Approving HTTP Headers
        • Custom Response Headers
  • API Documentation
    • Using Platform APIs
  • Using Services in the Neo Environment
    • About Services in the Neo Environment
    • Enable Services in the Neo Environment
    • Disable Services in the Neo Environment
• Extensions, Neo Environment
  • Extending SAP S/4HANA Cloud in the Neo Environment
    • Configuring Single Sign-On Between SAP S/4HANA Cloud and SAP BTP, Neo Environment
      • Optional: Configure Single-Sign On Manually
    • Configuring the Extension Application
      • Configure the Extension Applications's Connectivity to SAP S/4HANA Cloud
        • Using Basic Authentication
          • Set Up SAP S/4 HANA Cloud Side
          • Set Up SAP BTP Side
        • Using Client Certificate Authentication
          • Set Up SAP S/4HANA Cloud Side
          • Set Up SAP BTP Side
        • Using SAML Bearer Assertion Authentication
          • Set Up SAP S/4HANA Cloud Side
          • Set Up SAP BTP Side
    • Configuring SAP Web IDE
      • Configure and Check the SSO Configuration
      • Connectivity Settings Using SAML Bearer Assertion Authentication
      • Check the Setup of the OAuth Communication
  • Extending SAP SuccessFactors in the Neo Environment
    • Configuring the Subaccount in SAP BTP for SAP SuccessFactors
      • Create an Integration Token for SAP SuccessFactors
      • Configure the Extension Integration Between SAP BTP and SAP SuccessFactors
        • Defining the People Pool for Managing Extensions
      • Refresh the Extension Integration for SAP SuccessFactors
      • Migrate to the New Version of SAP Cloud Portal Service
      • Restore Configuration Settings After an Automated Instance Refresh
      • Restore Configuration Settings After a Manual Instance Refresh
      • Remove the Extension Integration
    • Installing and Configuring Extension Applications
      • Register the Extension Application as an Authorized Assertion Consumer Service
      • Configure the Extension Application's Connectivity to SAP SuccessFactors
      • Register a Home Page Tile for the Extension Application
        • Home Page Tiles JSON File
      • Create an Extension Site
      • Create the Resource File with Role Definitions
      • Import the Extension Application Roles in the SAP SuccessFactors System
      • Assign the Extension Application Roles to Users
      • Configure the SAP SuccessFactors Role Provider
      • Test the Role Assignments
      • Integrate the Extension Application with SAP SuccessFactors Intelligent Services
        • Configure Integration Based on OAuth 2.0 Client Credentials
          • Create OAuth Client in SAP BTP
          • Create Outbound OAuth Configuration in SAP SuccessFactors
          • Create a New Integration
        • Configure Integration Based on User Propagation with SAML Identity Federation
          • Generate OAuth X509 Key in SAP SuccessFactors
          • Create OAuth Client in SAP BTP
          • Create Trusted Identity Provider in SAP BTP Cockpit
          • Create Outbound OAuth Configuration in SAP SuccessFactors
          • Create a New Integration
    • Troubleshooting (Extending SAP SuccessFactors in the Neo Environment)
      • Cannot Create Integration Between SAP SuccessFactors and SAP BTP (Neo Environment)
      • Cannot Delete Integration Between SAP SuccessFactors and SAP BTP (Neo Environment)
      • Cannot Set Up Globalization in the Extension Application (Neo Environment)
      • I Want to Integrate an SAP SuccessFactors Company With More Than One Subaccount (Neo Environment)
      • Cannot Restore Extension Integration After SAP SuccessFactors Instance Cloning (Neo Environment)
      • After Successful Extension Integration, Do I Get an Automatically Created Extension Subaccount? (Neo Environment)
      • SAP Cloud Portal Link From the Extension Center Opens an Error Page (Neo Environment)
  • Extending SAP Cloud for Customer in the Neo Environment
    • Configuring Single Sign-On
      • Configuring Single Sign-On Using Identity Authentication
        • Setting Up Trust Between Identity Authentication and SAP Cloud for Customer
          • Configuring Identity Authentication
          • Configuring SAP Cloud for Customer
          • Configuring the Application's Home URL
        • Uploading Users to Identity Authentication
          • Exporting SAP Cloud for Customer Users
          • Importing or Updating SAP Cloud for Customer Users in Identity Authentication
        • Setting Up Trust Between Identity Authentication and SAP BTP
      • Configuring Single Sign-On Using Third-Party Identity Provider
    • Configuring the SAP BTP Application Connectivity to SAP Cloud for Customer APIs
      • Configure OAuth Identity Provider in SAP Cloud for Customer
      • Configure the OAuth Client for OData Access
      • Create and Configure the HTTP Destination
  • Extending SAP Ariba in the Neo Environment
    • Configure Single Sign-On (SSO)
      • Set Up Trust Between SAP Ariba and Corporate Identity Provider Using SAML 2.0
      • Set Up Trust Between Corporate Identity Provider and SAP BTP
    • Connect the Application Running on SAP BTP to SAP Ariba
      • Using SAP Ariba APIs
        • Get an SAP Ariba APIs Account
        • Configure SAP Ariba APIs
          • Register an Application in SAP Ariba Developer Portal
          • Promote the Application in SAP Ariba APIs to Production
        • Configure the SAP Connectivity service to SAP Ariba APIs
          • Using Sandbox Environment
          • Using Production Environment
        • Sample SAP Ariba APIs Extension Applications
      • Using SAP Ariba SOAP Web Service APIs
        • Configure the SAP Ariba Solution
          • Create New Integration End-Point
          • Enable an Integration Task
        • Connect SAP BTP to SAP Ariba SOAP Web Service APIs
        • Sample Web Services Extension Applications
• Administration and Operations, Neo Environment
  • Account Administration in the Cockpit
    • Navigate in the Cockpit
    • Managing Global Accounts Using the Cockpit
      • Log On to Your Global Account
      • Change the Display Name of Your Global Account
      • Managing Resource Providers
      • Monitoring Usage and Consumption Costs in Your Global Account
      • Configure Legal Information
    • Managing Directories Using the Cockpit
      • Create a Directory
      • Manage the Account Explorer Hierarchy
      • Manage Users in Directories
      • View Directory Usage Analytics
    • Managing Subaccounts Using the Cockpit
      • Create a Subaccount
      • Change Subaccount Details
      • View Subaccount Usage Analytics
      • Delete a Subaccount
    • Managing Entitlements and Quotas Using the Cockpit
      • Configure Entitlements and Quotas for Subaccounts
    • Managing Members Using the Cockpit
      • Members and Roles in the Neo Environment
        • SAP ID Service
          • Add Users to SAP ID Service in the Neo Environment
          • Create SAP User Accounts
      • Add Members to Your Global Account
      • Add Members to Your Neo Subaccount
      • Managing Member Authorizations in the Neo Environment
        • Enable Application Providers to Access Your Subaccount
        • Manage Custom Platform Roles
        • Platform Scopes
  • Account Administration Using the SAP BTP Command Line Interface (btp CLI)
    • Download and Start Using the btp CLI Client
      • Get the btp CLI Client for Microsoft Windows (amd64)
      • Get the btp CLI Client for Apple macOS (amd64 and arm64)
      • Get the btp CLI Client for Linux (amd64 and arm64)
    • Get Updates
    • Command Syntax of the btp CLI
      • Passing JSON Parameters on the Command Line
    • How to Work with the btp CLI
      • Get Help
      • View Version and Current Context
      • Log in
        • Log in with Single Sign-On
        • Log in with a Custom Identity Provider
      • Log out
      • Enable Command Autocompletion
      • Set a Target for Subsequent Commands with btp target
      • Change Configuration Settings
      • Change the Output Format to JSON
      • Specify the Location of the Configuration File
      • Provide Feedback about the btp CLI
    • Commands in the btp CLI
      • Working with Global Accounts, Directories, and Subaccounts Using the btp CLI
      • Setting Entitlements Using the btp CLI
      • Working with Environments Using the btp CLI
      • Working with Multitenant Applications Using the btp CLI
      • Working with External Resource Providers Using the btp CLI
      • Managing Trust from SAP BTP to an SAP Cloud Identity Services Tenant
      • Managing Users and Their Authorizations Using the btp CLI
      • Managing Signing Keys for Access Tokens
      • Managing Security Settings
      • Managing API Credentials for Calling REST APIs of SAP Authorization and Trust Management Service
      • Working with Resources of the SAP Service Manager Using the btp CLI
    • Troubleshooting for the btp CLI
  • Account Administration in the Neo Console Client
    • Create Subaccounts Using the Console Client in the Neo Environment
    • Add Quotas to Subaccounts Using the Console Client
    • Console Client for the Neo Environment
      • Using the Console Client
      • Verbose Mode of the Console Commands Output
      • Machine-Readable Command Output
      • Console Client Commands
        • add-ecm-tenant
        • add-ca
        • add-custom-domain
        • add-domain-certificate
        • add-platform-domain
        • bind-db
        • bind-domain-certificate
        • bind-hana-dbms
        • bind-schema
        • change-domain-certificate
        • clear-alert-recipients
        • clear-downtime-app
        • close-db-tunnel
        • close-ssh-tunnel
        • copy-db-hana-certificates
        • create-account
        • create-availability-check
        • create-db-ase
        • create-db-hana
        • create-db-user-ase
        • create-ecm-repository
        • create-jmx-check
        • create-schema
        • create-security-rule
        • create-ssl-host
        • create-vm
        • create-volume-snapshot
        • delete-account
        • delete-availability-check
        • delete-db-ase
        • delete-db-hana
        • delete-db-user-ase
        • delete-destination
        • delete-ecm-repository
        • delete-domain-certificate
        • delete-jmx-check
        • delete-resource (Beta)
        • delete-ssl-host
        • delete-keystore
        • delete-mta
        • delete-schema
        • delete-security-rule
        • delete-vm
        • delete-volume
        • delete-volume-snapshot
        • deploy
        • deploy-local
        • deploy-mta
        • disable
        • display-application-properties
        • display-custom-domain-trial-token
        • display-csr
        • display-ecm-repository
        • display-db-info
        • display-mta
        • display-schema-info
        • display-volume-snapshot
        • download-keystore
        • edit-ecm-repository
        • enable
        • get-destination
        • generate-csr
        • get-log
        • grant-db-access
        • grant-db-tunnel-access
        • grant-schema-access
        • hcmcloud-create-connection
        • hcmcloud-delete-connection
        • hcmcloud-disable-application-access
        • hcmcloud-display-application-access-status
        • hcmcloud-enable-application-access
        • hcmcloud-enable-role-provider
        • hcmcloud-get-registered-home-page-tiles
        • hcmcloud-import-roles
        • hcmcloud-list-connections
        • hcmcloud-register-home-page-tiles
        • hcmcloud-unregister-home-page-tiles
        • hot-update
        • install-local
        • list-application-datasources
        • list-availability-check
        • list-accounts
        • list-alert-recipients
        • list-applications
        • list-application-domains
        • list-cas
        • list-custom-domain-mappings
        • list-db-access-permissions
        • list-dbms
        • list-dbs
        • list-domain-certificates
        • list-db-tunnel-access-grants
        • list-ecm-repositories
        • list-jmx-checks
        • list-keystores
        • list-loggers
        • list-logs
        • list-mtas
        • list-mta-operations
        • list-proxy-host-mappings
        • list-runtimes
        • list-runtime-versions
        • list-schemas
        • list-schema-access-grants
        • list-security-rules
        • list-ssh-tunnels
        • list-ssl-hosts
        • list-subscribed-accounts
        • list-subscribed-applications
        • list-vms
        • list-volumes
        • list-volume-snapshots
        • map-proxy-host
        • open-db-tunnel
        • open-ssh-tunnel
        • put-destination
        • reboot-vm
        • register-access-point
        • remove-ca
        • remove-custom-domain
        • remove-custom-domain-trial-token
        • remove-platform-domain
        • reset-ecm-key
        • reset-log-levels
        • restart
        • restart-hana
        • revoke-db-access
        • revoke-db-tunnel-access
        • revoke-schema-access
        • rolling-update
        • sdk-upgrade
        • set-alert-recipients
        • set-application-property
        • set-custom-domain-trial-token
        • set-db-properties-ase
        • set-db-properties-hana
        • set-db-user-password-ase
        • set-downtime-app
        • set-log-level
        • set-quota
        • set-ssl-host
        • status
        • start
        • start-db-hana
        • start-local
        • start-maintenance
        • stop
        • stop-db-hana
        • stop-local
        • stop-maintenance
        • subscribe
        • subscribe-mta
        • unbind-db
        • unbind-domain-certificate
        • unbind-hana-dbms
        • unbind-schema
        • undeploy
        • unmap-proxy-host
        • unregister-access-point
        • unsubscribe
        • update-db-binding
        • upload-domain-certificate
        • upload-keystore
        • version
      • Exit Codes
  • Application Operations in the Neo Environment
    • Using Multiple Subaccounts for Staged Application Development
    • Java: Application Operations
      • Configuring Applications
        • Update Application Properties
        • Choose Application Runtime Version
        • Choose JRE Version
        • Enable and Configure Gzip Response Compression
        • Configure VM Arguments
        • Scale Applications
      • Managing Applications in the SAP BTP Cockpit
        • Define Application Details (Java Apps)
        • Start and Stop Applications
        • Restart Applications
        • Check the Process Status
        • Default Trace File
        • View Runtime Information
      • Managing Applications in the Neo Console Client
        • Update Applications with Zero Downtime
        • Restart Applications with Zero Downtime
        • Enable Maintenance Mode for Planned Downtimes
        • Perform Soft Shutdown
      • Handle Unplanned Downtime
      • Profiling Applications
        • Profile Applications Locally
        • Profile Applications on the Cloud
      • Default Trace File
      • End-to-End Trace Analysis
        • Prerequisites for Using the End-To-End Trace Analysis
        • Develop SAP BTP Applications with E2E Tracing Analysis Support
          • Implementing Statistics Gathering for Java Applications
        • Activating Statistics Gathering in SAP BTP
        • Starting and Analyzing an End-to-End Trace
      • Using Multiple Subaccounts for Staged Application Development
    • SAP HANA: Application Operations
    • HTML5: Application Operations
      • Exporting an HTML5 Application
      • Importing an HTML5 Application
      • Define Application Details (HTML5 Apps)
      • Managing Application Versions
      • Assign Destinations for HTML5 Applications
      • Start and Stop HTML5 Applications
      • Managing Roles and Permissions
        • Using the HTML5 Applications Panel
          • Create Roles (HTML5 Applications)
          • Map Users or Groups to Roles (HTML5 Applications)
          • Assign Roles to Permissions (HTML5 Applications)
        • Using the Subscriptions Panel
          • Create Roles (Subscriptions)
          • Map Users or Groups to Roles (Subscriptions)
          • Assign Roles to Permissions (Subscriptions)
      • Using Logs in the Cockpit for HTML5 Applications
    • Configuring Application URLs
      • Using Custom Domains
        • Prerequisites
        • Configuring Custom Domains
          • Create an SSL Host
          • Upload a Certificate
          • Bind the Certificate to the SSL Host
          • Add the Custom Domain
          • Configure DNS
          • Test the Custom Domain
          • Configure Single Sign-On and Single Logout
        • Custom Domains for Multitenant Applications
        • Managing Client Certificate Authentication for Custom Domains
        • Update an Expired Certificate
          • Using a New CSR
          • Using the CSR of the Bound Certificate
        • Remove the Custom Domain
        • Auditing and Logging Information
        • Troubleshooting Guide for Custom Domains in the Neo Environment
          • The Custom Domain Is Not Working As Expected
            • Resolving DNS Issues
            • Logout Is Not Working for an Already Configured Custom Domain
            • The Custom Domain Cannot Be Configured Using an Apex Domain
          • Getting an Error Message
            • The Subaccount Does Not Have Any Global Quotas Defined
            • The SSL Host Does Not Exist
            • Cannot Create Certificates Because You Have Reached Your Quota Limit
            • Cannot Find Any Metadata for the SSL Host
            • The Certificate Is Already Uploaded
            • The Certificate Is Not Parsable
            • The Provided Public Key Does Not Match the Stored Private Key
            • The SSL Client Profile Is Not Created
            • The Website Cannot Be Reached
          • Requesting and Signing a Certificate
          • Experiencing Custom Domain Quota Issues
            • The Subaccount Follows the CPEA Model
            • The Subaccount Does Not Follow the CPEA Model
          • Experiencing Issues When Uploading Certificates
            • The Certificate Does Not Upload
            • Uploading an Intermediate Certificate
            • Uploading a Certificate Without Generating a CSR
          • Experiencing CA Bundle Issues
            • Uploading a CA Bundle
            • Deleting a Certificate from a CA Bundle
          • Migrating a Custom Domain Setup to Another Region with Minimal Downtime
          • Migrating a Custom Domain Setup Within the Same Region
          • Charging for Using a Custom Domain After Deleting the Subaccount
          • Charging for Using the DEFAULT_SA Subaccount
          • Configuring a Custom Domain for SAP Cloud Integration
          • Configuring a Custom Domain in SAP BTP, Cloud Foundry Environment
        • Frequently Asked Questions
      • Using Platform Domains
        • Add a Platform Domain
        • Check Configured Domains
        • Remove Platform Domains
    • Configuring Application Access via On-Premise Reverse Proxy
• Security, Neo Environment
  • Authorization and Trust Management in the Neo Environment
    • Securing Java Applications
      • Security Development
        • Authentication
          • Declarative Authentication
          • Programmatic Authentication
          • Handling Session Timeout
          • Troubleshooting
        • Authorizations
        • Using Platform APIs
        • Authorization Management API
        • Platform Authorization Management API
        • Trust Management API
        • User Attributes
        • Logout
        • Commmon Errors with Basic Authentication in SAP ID Service
      • Security Testing
        • Test Security Locally
      • Security Configuration
        • Managing Roles
        • Application Identity Provider
          • Configure the Local Service Provider
          • (Optional) Using External Key and Certificate
          • Configure Trust to the SAML Identity Provider
          • Using Multiple Identity Providers
        • Identity Authentication Tenant as an Application Identity Provider
        • On-Premise User Store
          • Using an SAP System as an On-Premise User Store
          • Using Microsoft Active Directory as an On-Premise User Store
        • Basic Authentication
        • OpenID Connect (OIDC) Authentication
          • Single Logout (SLO) in OpenID Connect (OIDC) Authentication
        • Authentication Configuration
        • Mitigating Third-Party Cookie Deprecation
    • Securing HTML5 Applications
      • Authentication
      • Authorization
      • Accessing On-Premise Systems
      • Protecting Applications from Cross-Site Scripting (XSS)
      • Protecting from Cross-Site Request Forgery (CSRF)
    • Securing SAP HANA Applications
    • Accessibility Features in Authorization and Trust Management, Neo Environment
  • Platform Identity Provider for Tools
  • OAuth 2.0 Service
    • OAuth 2.0 Authorization Code Grant
    • OAuth 2.0 Client Credentials Grant
    • OAuth 2.0 Configuration
      • Register an OAuth Client
      • Define OAuth Scopes
      • Revoke OAuth Access Tokens
      • Use a QR Code for Mobile Access
      • Customize Corporate Branding
      • OAuth 2.0 Clients with Unlimited Validity Tokens
    • Best Practices for Resilient OAuth 2.0 Communication
      • Which Is My Current OAuth 2.0 Authorization Grant?
      • Which OAuth 2.0 Authorization Grant Should I Use?
      • OAuth 2.0 JWT Token Types
      • Simplifying OAuth 2.0 Authentication with Destinations
      • Achieving Resilient OAuth 2.0 Authorization
      • Periodic Token-Based Operations
      • Using OAuth 2.0 Authorization at Irregular Intervals
    • Principal Propagation to OAuth-Protected Applications
    • Auditing and Logging Information for OAuth 2.0 Service
    • Accessibility Features in OAuth 2.0 Service
  • Keystore Service
    • Keystore API
    • Keys and Certificates
      • Keystore Console Commands
      • Trusted Certificate Authorities for Outbound SSL Connections
      • Using the Keystore Service for Client Side HTTPS Connections
        • Configure Keystore on Local Server
        • Configure Keystore on Cloud
    • Enabling Client Certificate Authentication
      • Trusted Certificate Authorities for Client Certificate Authentication
    • Storing Passwords
  • Audit Logging in the Neo Environment
    • Audit Log Retrieval API Usage for the Neo Environment
    • Audit Log Retention API Usage for the Neo Environment
    • Security Events Logged by the Neo Services
  • Principal Propagation
    • Principal Propagation Between Neo Subaccounts
      • Create Trust Between the Subaccounts
      • Create a Destination
    • Principal Propagation from the Neo to the Cloud Foundry Environment
      • Create a Destination
      • Create Trust Between the Subaccounts
    • Principal Propagation from the Cloud Foundry to the Neo Environment
      • Create Trust Between the Subaccounts
      • Create an OAuth Client
      • Create a Destination
  • Protection from Web Attacks
    • Protection from Cross-Site Scripting (XSS)
    • Protection from Cross-Site Request Forgery
      • Using the Apache Tomcat CSRF Prevention Filter
      • Using Custom Header Protection
  • Data Protection and Privacy
    • Glossary for Data Protection and Privacy
    • Change Logging and Read-Access Logging
    • Personal Data Record
    • Deletion
      • Delete Shadow Users for Data Protection and Privacy Using the Cockpit
      • Delete Shadow Users for Data Protection and Privacy Using APIs
    • Consent
• Getting Support, Neo Environment
  • Providing Details for Database Problems in the Neo Environment
  • Gather Support Information
  • Platform Updates and Notifications in the Neo Environment
  • Operating Model in the Neo Environment
  • Support Components