cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SOAP message security

Go to solution
former_member229310
Active Participant

on ‎02-14-2012 11:39 AM

0 Kudos

Hello,

1) Could you please suggest best way to handle PI web service with regard to security. We are exposing PI to use web services from external system.As the external system are not part of our DMZ and do not reside in our network what is the best approach to configure the SOAP sender and receiver channels.

2) Also When we give the WSDL to external parties normally the PI host would be local would there be any issues wrt security should the network team open up ports for them or map the local host to public host.

Thanks.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎02-14-2012 12:14 PM
0 Kudos

Hi,

you are using SOAP receiver adapter to consume third party webservice. Third party webservice is provided client certificate. Import the third party certificate in the netweaver stack and reference that certificate in the soap receiver adapter using the option certifiicate authentication.

please refer help document

http://help.sap.com/saphelp_nw04/helpdata/en/56/992d4142badb2be10000000a1550b0/frameset.htm

Soap Sender:

You need to generate Server&Client Certificate in STRUST (if empty) and distribute to 3rdParty System.

For enable Https, you need to activate (if is disactive) https service in SMICM transaction

regards,

ganesh.

Show replies
Show replies

Answers (1)

Answers (1)

Former Member
‎02-14-2012 12:16 PM
0 Kudos

About Soap Security, refer to the below documents & help, about SSL configuration for SOAP Adapter (Security Checks):

http://help.sap.com/saphelp_nw04/helpdata/en/fc/5ad93f130f9215e10000000a155106/content.htm

HTTP & SSL

http://help.sap.com/saphelp_nw04/helpdata/en/14/ef2940cbf2195de10000000a1550b0/content.htm

How to use Client Authentication with SOAP Adapter

http://www.sdn.sap.com/irj/scn/weblogs?blog=/pub/wlg/3721

Show replies
Show replies
former_member229310
Active Participant
‎02-14-2012 12:49 PM
0 Kudos

Thanks for the reply.

Can I use the WS adapter in the place of SOAP adapter if I do not have any attachments. If the external party adhere to send using OASIS WS then can I make use of SAMLfor the security purpose. Is this advisable.

Thanks again.

baskar_gopalakrishnan2
Active Contributor
‎02-14-2012 2:34 PM
0 Kudos

SOAP adapter supports axis protocol too. If the external system expects SAML security then WS adapter is the only way to go. I believe WS adapter can be used for both direct connection and through integration server. Direct connection is mainly to connect two web service runtime systems of either abap or java. You might want to go and search sdn for ws adapter. PLus WS adapter supports WS-RM protocol standard. But SOAP adapter is most widely used than WS adapter.

Refer this link

http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/1082dd33-738c-2a10-d8b3-ce07a158e...

Ask a Question