on 01-23-2007 12:43 PM
Hi,
I already found how to create a user for my legacy applications access soap interfaces (with basic authentication) in XI. It seems to be ok creating an user with the role "SAP_XI_APPL_SERV_USER".
But the user with this role can access all soap interfaces published in XI. Is there a way to create a role allowing access to only one soap interface?
thanks!
roberti
Hi,
Therre is an option called ACCESS CONTROL LIST to handle this.
Look into these 2 blogs to understand the same. This will solve your problem.
/people/rahul.nawale2/blog/2006/06/16/acl--confine-users-sending-messages
/people/community.user/blog/2006/11/15/security-access-control-via-assigned-users
Regards
Bhavesh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Bhavesh,
You are right, this can be used to solve the problem! Thank you very much.
By the way, do you know another way to perform this task? It seems not to be the best solution deny/allow access directly to the user. I think it would be better creating roles to perform this, what do you think about?
Again, thanks for your help!
cheers!
roberti
Waldmer,
Even if you create multiple user and roles, if the message hits XI, until you do not have ACESS CONTROL LIST, you will not be able to filter the message.
Another option is to use Public _ Private Certificates but something that I would not ask you to do as you can handle the current requirement easily with Access Control List.
Regards
Bhavesh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
78 | |
10 | |
9 | |
7 | |
6 | |
6 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.