Avast is blocking access to login on SAP.com

After a number of tests I have found that avast is blocking access to login on SAP.com
I am using latest free Avast version: 17.3.2291

With default Avast settings:

Entering URL: https://launchpad.support.sap.com/ - access to this url require SID (SAP ID) and password
I am forwarded to: https://authn.hana.ondemand.com/saml2/sp/mds
I can see “Waiting…” for some seconds
Then I am forwarded to: https://accounts.sap.com/saml2/idp/sso/accounts.sap.com - No page available

With “Enable HTTPS scanning” disabled - everything is OK! I am able to enter SID and password or use a stored password.

I tried to add exceptions for sites and scenarios:
.hana.ondemand.com/
.sap.com/
or
https://.sap.com/
https://.hana.ondemand.com/

But no luck!

Do you want to prevent Avast users to enter SAP.com???

Is this avast with firewall ? if so, try this

Turn off port scan

Avast UI → Protection → Firewall → Settings → Advanced → Uncheck “Enable automatic port scan detection”

I had no problems accessing the website. In the future please post links as hxxp

Try a repair…Control Panel>Programs and Features>Uninstall a Program>double click “avast”>click "repair>reboot.

@ Pondus The OP is running the free version.

edit: additional

2Pondus
If you read my message again you will see that I am talking about FREE Avast having no firewall …
SAP support proposed to change antivirus software :slight_smile:
2 Para-Noid: Are you able to login with a valid SID?
Repair has no effect! Only disabling “Enable HTTPS scanning” works - but this is not a solution!

The forwarding is likely the real problem.

And there is this : https://www.ssllabs.com/ssltest/analyze.html?d=launchpad.support.sap.com

Hi Eddy,
I can do nothing with the SAP.com site (and I think Avast company also)…
But this issue will prevent Avast usage for all SAP customers…
To my mind it’s a big risk for Avast company!
Vadim

P.S. I even unable to configure exceptions in Avast

Try a clean install…

  1. Download avast free
  2. Download avast uninstall utility
  3. Run uninstall utility. It will prompt you to reboot in safe mode and accept the prompt.
  4. Reboot.
  5. Run install download from step 1
  6. Reboot.

note: you may need more than one reboot.

Just to be 100% sure performed clean reinstall!
No changes!!! Same issue.
To my mind this issue is critical.

No it is not a critical issue.
The owner of the site should get things properly working as they should to start with.
Don’t blame avast for protecting you if the server/site owner don’t have his act together.

Redirecting and the issues I showed are very likely the main culprit.

Sorry Eddy, it’s an incorrect approach!
Next time Avast will decide that something is insecure on Facebook.com and block access :slight_smile:
SAP.com is one of the most used sites in the business community and blocking access to it will prevent using Avast for business users.
Avast development team has to investigate the issue.

You can report a URL here: https://www.avast.com/report-a-url.php

2 Asyn:
It’s not a false positive URL, the issue is that Avast scan interfere with logon process resulting in no logon. May be some delay or something else…

Doesn’t matter, report it there.

OK, I reported both URL

launchpad.support.sap.com/
authn.hana.ondemand.com/saml2/sp/mds

but for now the only option I have is to uninstall Avast and install different antivirus software!

I’m having the same issue and have reported it. do you know if there is any workaround?

See if stopping the WebShield helps. It will at least narrow things down.
It’s not recommended to leave the WebShield turned off, it’s your main protection while on the net.