A bundle tenant is an instance of Identity Provisioning that comes with a set of pre-configured provisioning systems relevant to one or more bundled SAP cloud solutions.
Caution
Effective March 15, 2022, new Identity Provisioning bundle tenants are created on the infrastructure of SAP Cloud Identity Services only. Existing customers of bundle tenants on the Neo environment can continue using them as-is.When an SAP cloud solution bundles with SAP Cloud Identity Services, you are entitled to receive Identity Authentication and Identity Provisioning tenants without additional costs on the purchase of the corresponding SAP cloud solution's license. These Identity Authentication and Identity Provisioning tenants come pre-configured with the SAP cloud solution.
You obtain Identity Provisioning bundle tenant with a set of provisioning systems (source, target, and proxy) for which you have a license. Those systems are pre-configured in your tenant. Further usage of Identity Provisioning connectors and their availability depend on the infrastructure/environment on which your bundle tenant is running.
Regardless of how many SAP cloud solutions you have purchased, you are entitled to two Identity Provisioning bundle tenants – one for testing and one for productive purposes.
Depending on the infrastructure or the environment, your bundle tenant runs on, you can access and operate it as follows:
- SAP Cloud Identity Services Infrastructure
Bundle tenants created after March 15, 2022, run on SAP Cloud Identity Services infrastructure.
The Identity Provisioning admin access is fully controlled and configured in the administration console of Identity Authentication. This access is based on roles which are assigned to admin users in the Users & Authorizations screen of the Identity Authentication administration console.
- SAP BTP, Neo Environment
Bundle tenants created before March 15, 2022, run on SAP BTP, Neo Environment.
Administrators of bundle tenants can only access their Identity Provisioning subaccount in SAP BTP cockpit to register OAuth clients, create connectivity destinations and configure Cloud Connector connections. This access is based on roles that are assigned to admin users in the Authorization tile of the Identity Provisioning administration console.