on 10-14-2011 1:46 AM
In SAP help, http://help.sap.com/saphelp_nwpi711/helpdata/en/a6/cf934264a5c56ae10000000a155106/content.htm
The specifications for Authentication depend on the transport protocol you have selected:
Select the Authentication Mode for transport protocol HTTPS:
■ User Name/Password
Enter the User Name and Password, and confirm.
This information must be provided by the partner.
■ Certificate Logon
Under Keystore View, select the path to the keystore entries of the private key of the partner. Example: SslService
Under Keystore Entry, enter the name of the private key of the partner. Example: SslCredentials
However, we only exchange public key with partners in B2B communication. Does it mean certificate logon is not appliable in this case?
Also, this setting is mainly to authenticate us to access to partner system. The user name / password state the information must be provided by the partner. For certificate logon, shouldn't we provide our public key instead of partner's private key? reason being, is every partners our customer engage is providing the same key, how our customer able to differential who is who?
Appreciate advise for you.
Thanks.
Philip
For certificate logon you need private keys (public keys can't be used).
Just like user/password different partners can be assgined different certifcate for identification purpose by end-customer.
Regards,
Gourav
Edited by: Gourav Khare on Oct 14, 2011 9:34 AM
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Gourav,
To use transport protocol HTTPS, authentication username/password or certificate logon is mandatory. However, partner A only provided us their public certificate, in this case how to configure the certificate in VA so that we can use HTTPS protocol?
What if partner A require certificate logon? in this case, we can't use public certificate and partner will not share their private key, how?
Best Regards,
Philip
Hello Philip,
Looks like the documentation is incorrect.
1. If your client supports basic authentication, then you can provide the user name / password.
2. If Client Authentication is needed, then you would need to provide your private key ( XI server's ) in this location.
The public portion of this Key ( XI key) would need to be provided to your partner who would then map it to a corresponding user on their side.
Client Authentications will always use Private Keys and they will have to be your own keys!
Regards,
Bhavesh
Hi Bhavesh
Client Authentications will always use Private Keys and they will have to be your own keys!
That's what i understand too. However, I checked thru SAP help for version 7, 7.1 and 7.3, all stated partner's private key. and it really confuse me. If it is wrong, it can't be wrong for so many version.
Best Regards,
Philip
User | Count |
---|---|
93 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.