Activating B2B Organization Management

​Let’s begin by providing a dramatis personae, describing the users who will interact with CIAM for B2B. ​

IT Admin

A member of an organization interacting with the Customer Data Cloud console.

Organization Member

Member of a partner organization interacting with the SAP customer. Appears as a Profile in Customer Data Cloud.

Delegated Admin

Administrator at the partner organization, also referred to as the "Organization Admin".

Policy Creator

As the implementer of security policies in their organization, defines access policies in the CIAM for B2B system.

Organization Administrator

The organization’s IT admin manages both the active organizations the company works with and their members.

Security Auditor

The auditor has access to access decision audit logs and uses them to visualize who has access to what.

Approver

The approver is responsible for partner organization business flows and accesses the system to approve or reject an organization.

Implementer

The developer responsible for implementing CIAM for B2B views their own credentials and accesses documentation.

Member

The representative of a partner organization who interacts with the system to fulfill a certain business need, such as purchasing goods, booking services, and so on.

Delegated Admin

The delegated admin manages access of the members of their organization, including inviting new members, retiring old ones, and defining a member's roles, department, and job function.

Most of the functionality provided by the SAP Customer Identity & Access Management (CIAM) is relevant in both Business to Consumer (B2C) and Business to Business (B2B) settings. For instance:

• Providing a frictionless point of entry for customers across brands, regions, and digital properties (web, mobile, IoT).
  • Lite registration
  • Registration as a service
  • Social network login
  • Single sign-on
• Identifying online visitors securely from owned and 3rd party touchpoints
  • Flexible authentication methods, for instance user/password, social network, phone number, biometrics, Bring Your Own Identity (BYOI), One-Time Password (OTP), etc.
  • Federated Authentication using standard protocols (SAML and Open ID Connect)
• Protecting customers against identity fraud and theft
  • Two-factor authentication / Risk-based authentication
  • Email / mobile verification
  • Secret question/response password reset
  • Network-Protected Identity

A set of features of the CIAM, Organization Management is primarily intended for use in B2B environments. It adds the following functionality:

Organization Access Management

Onboarding of partners to all digital properties through a governance process enabling the business to interface with all connected applications.

Partner Self-Service & Delegated Administration

​​Provides self-service delegation of the partner organization and partner user management with identity, profile, and preference management. ​

Consent & Preference Management

​Leverages the full Enterprise Preferences Management available on B2C.

Authentication Management

Leverages the full authentication options available on B2C and allows the setup of a SAML (Security Assertion Markup Language) provider for partner organizations.

Policy-Based Access Control

​Centralized Policy-Based Access Control (PBAC) solution with a governance process to secure applications and resources and help prevent data leaks and unauthorized access across the entire digital ecosystem.

Identity Lifecycle Management

​​End-to-end partner lifecycle management allows IT teams to focus on improvement and opportunity rather than maintenance.

The CIAM’s B2B features are not made available by default. To use them, you need to activate Organization Management for a site or site group in the SAP Customer Data Cloud Console using Customer Identity & Access Management.

To activate or deactivate Organization Management for a given site or site group, log in to the console, navigate to the Administration section by clicking the Administration button, located at the bottom of the SAP Customer Data Cloud main menu. Once you’re there, select Organization Management.

This will bring up the page shown in the screenshot below. There, you may activate or deactivate the CIAM for the B2B feature for a listed site or site group.