Home
SMP Configurations after Installing Innovapptive Products
This section guides you with the required SMP Configurations after installing Innovapptive Mobile Products.
Authenticate users using SAML Authentication
Authenticate an end user using SAML/ADFS Server and manage communication between SMP and Gateway system using HTTPs ports.
Define SMP SAML Client Password Policy
The application developer must have added enforcement code to the application DataVault to enforce the password policy. The administrator enters the application password policy that is used to unlock the DataVault during application initialization.

Title and Copyright
Copyright and Terms of Use for the Post Install or Post Upgrade Configurations Guide for mAssetTag, mWorkOrder, mInventory, mServiceOrder, mWorkList and all other solutions of Connected Workforce Platform^TM.
Preface
Understand audience, know related documents and products and conventions followed in this document.
Post-Install or Post-Upgrade Configurations for Innovapptive Products
This guide contains instructions for post install or post upgrade configurations for both SCP and SMP environments. Depending on the platform you are on, choose your configuration path.
SCP Configurations after Installing Innovapptive Products
This section guides you with the required SCP Configurations after installing Innovapptive Mobile Products.
SMP Configurations after Installing Innovapptive Products
This section guides you with the required SMP Configurations after installing Innovapptive Mobile Products.
- Access SMP Management Cockpit
  Use SMP Management Cockpit to deploy, manage, and monitor SMP-based applications, user registrations, and device connections.
- Define Application Authentication
  Define authentication for your applications that are being deployed on SMP.
- Authenticate users using HTTP Authentication
  Configure Innovapptive products on SMP Server and set up HTTP communication between SMP and Gateway System.
- Authenticate users using HTTPs Authentication
  Set up HTTPs communication between SMP and Gateway System.
- Authenticate users using LDAP Server
  Authenticate an end user using LDAP Authentication and manage communication between SMP and Gateway system using HTTPs ports.
- Authenticate users using SAML Authentication
  Authenticate an end user using SAML/ADFS Server and manage communication between SMP and Gateway system using HTTPs ports.
  - Establish trust between SMP and ADFS Server
    To establish trust between SMP and Gateway servers exchange Metadata files between the systems.
  - Create security profile for SAML Authentication
  - Create an Application using SAML Authentication
  - Define SMP SAML Client Password Policy
    The application developer must have added enforcement code to the application DataVault to enforce the password policy. The administrator enters the application password policy that is used to unlock the DataVault during application initialization.
- Authenticate users using X.509 Authentication
  Authenticate an end user using X.509 Server and manage communication between SMP and Gateway system using HTTPs ports.
- Integrate SMP with Azure AD
- Configure Push Notifications for SMP
  Field workers gets an alert when an item to which he /she is tagged to is created or modified. However, if the app is not launched on the device, they do not receive these alerts. You must configure Push Notifications to send the alerts to the workers even when the app is not opened in the device.
- Manage Resource File in SMP
  Resource File in SMP helps you centrally administer and manage common settings.
Configure Roles and Authorization for Products
Configure roles and provide authorizations to do tasks using Innovapptive products.

Define SMP SAML Client Password Policy

The application developer must have added enforcement code to the application DataVault to enforce the password policy. The administrator enters the application password policy that is used to unlock the DataVault during application initialization.

The client password policy applies only to the application password that is used to unlock the DataVault during application initialization; it has nothing to do with SAP Mobile Platform security profiles or the back-end security systems with which they integrate. Password policies for back-end security systems are administered by customer information technology departments using their native security administration tools.

To define the SMP SAML password policy:

Login to SMP Management Cockpit and select Applications.
For an application, select Settings, Configure, CLIENT POLICIES.
Select Enable Passcode Policy.

Enter this information:


Property	Default	Description
Expiration Days	0	Number of days a password is valid before it expires.
Minimum Length	8	Minimum password length required.
Retry Limit	10	Number of attempts allowed when entering an incorrect password. After this number of attempts, the client is locked out, and the DataVault and all its contents are permanently deleted, the application is permanently unusable, and its encrypted data is inaccessible.
Minimum Unique Characters	0	Minimum number of unique characters required in the password.
Lock Timeout	300	Number of seconds the DataVault remains unlocked within the application, while the application remains inactive.
Default Passcode Allowed	Disabled	Indicates whether a default password can be generated by the DataVault; from the user's point of view this policy turns off the password.
Has Digits	Disabled	Indicates whether the password must include digits.
Has Lower	Disabled	Indicates whether the password must include lower case letters.
Has Upper	Disabled	Indicates whether the password must include upper case letters.
Has Special	Disabled	Indicates whether the password must include special characters.
Fingerprint Allowed	Disabled	Indicates whether you can unlock the application with a fingerprint.

Click Save.