Company is a top-level principal within the SAP Concur platform and you would be able to obtain an access token and a refresh token on a Company’s behalf just like you would be able to with a User.

After creating an OAuth 2.0 App by either using the OAuth 2.0 Application Management Tool or directly contacting SAP Concur support, a Company Request Token needs to be generated. For this, the Company Request Token Tool can be used if it is available. Otherwise, the SAP Concur support team needs to be contacted for generating the Company Request Token.

After successfully generating the Company Request Token, the Company UUID and the Company Request Token will be displayed. Save these values before signing out or navigating away from the dialog.

Authenticate to SAP Concur with Company Level Authentication

When authenticating with Company Level Authentication you need to set the following connection properties:

• AuthScheme: Set this to CompanyLevelAuth.
• OAuthClientId: Set this to your ClientId.
• OAuthClientSecret: Set this to your ClientSecret.
• CompanyId: Set this to the unique identifier of the Company.
• CompanyRequestToken: Set this to the generated Company Request Token.
• InitiateOAuth: Set this to GETANDREFRESH. You can use InitiateOAuth to avoid repeating the OAuth exchange and manually setting the OAuthAccessToken connection property.
• UseSandbox: Set this to true if you are authenticating using an implementation server.

1. Extracts the access token from the CallbackURL.
2. Obtains a new access token when the old one expires.
3. Saves OAuth values along with geolocation in OAuthSettingsLocation to be persisted across connections.