cancel
Showing results for 
Search instead for 
Did you mean: 

SOAP adapter using HTTPS

Former Member
0 Kudos

We need to using SSL over HTTP for our web service defined in PI, basically using HTTPS in our SOAP adatper. I did a lot of research on this, seems like it's not an easy job to enable SSL. However I am only interested in making it work from an application developer point of view, enabling SSL, generating/installing certificate is a job for basis people.

So I created an sender CC with SOAP adapter with HTTPS with client authentication. (BTW, what is HTTPS without client authentication, does it mean HTTPs with server authentication where the server certificate is to be installed at the client side?), to my understanding, the client certificate should be installed in NWA (We have PI 7.1, not 7.0 -) and somewhere in ID (like sender agreement) we need to specify which client certificate should be used to authenticate the client who calls our service. However nowhere in ID I can specify which client certificate should be used for the defined sender CC. So how would it work in runtime? When my web service is called, which client certificate does PI use to authenticate the client?

It'd very much appreciated if you could give more information about how HTTPS for SOAP adapter works? I've done lot of research on this, but still confused.

Thanks

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
0 Kudos
Former Member
0 Kudos

Aamir,

thanks for the link. However this link is about message level security, I am looking for info of transport level security (SSL). Their cofiguration must be different.

Thanks anyway.

Former Member
0 Kudos

Hi,

for transport level security you should assign the HTTPS connection created in SM59 to the SOAP communication channel.

The HTTPS connection should use the certificates imported in t-code STRUST.

1. You have to dounload the SAP cryoptographic librariers.

2. Set the specific paramerts in RZ10

3. Maintain the enviornmental variables & you need to keep the logon tickets too in some specific directory.

4. Import the client & server certificates into STRUST.

You can find some documents on ABAP ssl configuration from the SDN library .... I don't have a link now

Regards

Sunil.

Former Member
0 Kudos

Sunil,

in SOAP CC, there is noway to assign a http connection created in sm59. FYI, we are on PI 7.1.

Thanks

sunil_pandey6
Explorer
0 Kudos

Hi Jayson,

See this blog..

/people/varadharajan.krishnasamy/blog/2007/05/11/how-to-use-digital-certificates-for-signing-encrypting-messages-in-xi

Follow this document to enable https communication.

http://www.i-barile.it/SDN/EnablingSSL&ClientCertificatesOnTheSAPJ2EEEngine.pdf

With Regards

Sunil

Former Member
0 Kudos

Jason,

Please follow the steps mentioned in this document by Angel.

http://www.i-barile.it/SDN/EnablingSSL&ClientCertificatesOnTheSAPJ2EEEngine.pdf

Regards,

---Satish

Answers (0)