cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Ispeak (RNIF, CIDX) certificate logon

Former Member

on ‎10-14-2011 1:46 AM

0 Kudos

In SAP help, http://help.sap.com/saphelp_nwpi711/helpdata/en/a6/cf934264a5c56ae10000000a155106/content.htm

The specifications for Authentication depend on the transport protocol you have selected:

Select the Authentication Mode for transport protocol HTTPS:

■ User Name/Password

Enter the User Name and Password, and confirm.

This information must be provided by the partner.

■ Certificate Logon

Under Keystore View, select the path to the keystore entries of the private key of the partner. Example: SslService

Under Keystore Entry, enter the name of the private key of the partner. Example: SslCredentials

However, we only exchange public key with partners in B2B communication. Does it mean certificate logon is not appliable in this case?

Also, this setting is mainly to authenticate us to access to partner system. The user name / password state the information must be provided by the partner. For certificate logon, shouldn't we provide our public key instead of partner's private key? reason being, is every partners our customer engage is providing the same key, how our customer able to differential who is who?

Appreciate advise for you.

Thanks.

Philip

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
‎10-14-2011 5:04 AM
0 Kudos

For certificate logon you need private keys (public keys can't be used).

Just like user/password different partners can be assgined different certifcate for identification purpose by end-customer.

Regards,

Gourav

Edited by: Gourav Khare on Oct 14, 2011 9:34 AM

Show replies
Show replies
Former Member
‎10-14-2011 11:21 AM
0 Kudos

Hi Gourav,

To use transport protocol HTTPS, authentication username/password or certificate logon is mandatory. However, partner A only provided us their public certificate, in this case how to configure the certificate in VA so that we can use HTTPS protocol?

What if partner A require certificate logon? in this case, we can't use public certificate and partner will not share their private key, how?

Best Regards,

Philip

bhavesh_kantilal
Active Contributor
‎10-17-2011 5:14 AM
0 Kudos

Hello Philip,

Looks like the documentation is incorrect.

1. If your client supports basic authentication, then you can provide the user name / password.

2. If Client Authentication is needed, then you would need to provide your private key ( XI server's ) in this location.

The public portion of this Key ( XI key) would need to be provided to your partner who would then map it to a corresponding user on their side.

Client Authentications will always use Private Keys and they will have to be your own keys!

Regards,

Bhavesh

Former Member
‎10-17-2011 11:54 AM
0 Kudos

Hi Bhavesh

Client Authentications will always use Private Keys and they will have to be your own keys!

That's what i understand too. However, I checked thru SAP help for version 7, 7.1 and 7.3, all stated partner's private key. and it really confuse me. If it is wrong, it can't be wrong for so many version.

Best Regards,

Philip

Ask a Question