on 02-14-2012 11:39 AM
Hello,
1) Could you please suggest best way to handle PI web service with regard to security. We are exposing PI to use web services from external system.As the external system are not part of our DMZ and do not reside in our network what is the best approach to configure the SOAP sender and receiver channels.
2) Also When we give the WSDL to external parties normally the PI host would be local would there be any issues wrt security should the network team open up ports for them or map the local host to public host.
Thanks.
Hi,
you are using SOAP receiver adapter to consume third party webservice. Third party webservice is provided client certificate. Import the third party certificate in the netweaver stack and reference that certificate in the soap receiver adapter using the option certifiicate authentication.
please refer help document
http://help.sap.com/saphelp_nw04/helpdata/en/56/992d4142badb2be10000000a1550b0/frameset.htm
Soap Sender:
You need to generate Server&Client Certificate in STRUST (if empty) and distribute to 3rdParty System.
For enable Https, you need to activate (if is disactive) https service in SMICM transaction
regards,
ganesh.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
About Soap Security, refer to the below documents & help, about SSL configuration for SOAP Adapter (Security Checks):
http://help.sap.com/saphelp_nw04/helpdata/en/fc/5ad93f130f9215e10000000a155106/content.htm
HTTP & SSL
http://help.sap.com/saphelp_nw04/helpdata/en/14/ef2940cbf2195de10000000a1550b0/content.htm
How to use Client Authentication with SOAP Adapter
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
SOAP adapter supports axis protocol too. If the external system expects SAML security then WS adapter is the only way to go. I believe WS adapter can be used for both direct connection and through integration server. Direct connection is mainly to connect two web service runtime systems of either abap or java. You might want to go and search sdn for ws adapter. PLus WS adapter supports WS-RM protocol standard. But SOAP adapter is most widely used than WS adapter.
Refer this link
User | Count |
---|---|
87 | |
10 | |
10 | |
9 | |
7 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.