cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

I need to add an digital sign to xml document in PI 7.1

Go to solution
brian_briones
Participant

on ‎08-31-2012 5:00 PM

0 Kudos

I need to add an digital sign to xml document in PI 7.1.

The certificate is located in TruestedCAs, from NWA.

I think the best option is by JAVA Mapping, but I don't know how read that certificate.

Rgrds

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

iaki_vila
Active Contributor
‎09-05-2012 10:53 AM
0 Kudos

Hi Brian,

As far as i know you can sign also in the SOAP adapter. Some images are broken but you can see if this could be useful for you, the way that Rajendra shows in his blog: http://scn.sap.com/people/rajendra.badi/blog/2011/08/24/configuring-wsse-digital-signing-and-encrypt...

Regards.

Show replies
Show replies

Answers (2)

Answers (2)

Former Member
‎09-18-2012 7:13 PM
0 Kudos

Hi Brian, what method did you end up using?

Show replies
Show replies
bhavesh_kantilal
Active Contributor
‎09-19-2012 10:50 AM
0 Kudos

Aaron,

Instead of using custom Java Coding to do this, would recommend using PGP Modules from SAP for this. You need not encrypt your message but the module does support Digital Signatures to sign your message.

From the documenation of the PGP Module of SAP,

 

applySignature

 

If you want to sign the messages that are transferred, enter this parameter. Parameter value can either be

true or false.

Limitation: The Key Should be loaded into the File System of XI / PI. You cannot use NWA. Refer to the detailed documentation from SAP on this.

Regards,

Bhavesh

Former Member
‎09-19-2012 4:20 PM
0 Kudos

Thanks Bavesh, that is really useful to know!

I thought PGP was only for encyrption. Now, I hope that the PGP adapter modules are supported on our version of PI (7.11 SP3). I will start looking for the detailed documentation on this.

By the way, I wasn't meaning to hijack Brian's thread but interested in best practices. Here is my separate query where I am still looking for this kind of input:

http://scn.sap.com/thread/3236841

prateek
Active Contributor
‎09-19-2012 4:30 PM
0 Kudos

The new PGP module provided by SAP is only supported PI 7.11 SP 08 onwards.

Former Member
‎09-19-2012 4:40 PM
0 Kudos

Thanks Prateek, I'm also just noticing that from Shabarish's blog.

http://scn.sap.com/community/pi-and-soa-middleware/blog/2012/04/10/pgpencryption-module-how-to-guide

Its hard to justify the regression testing for service pack upgrade unless they are security / stability related. I may need to stick with the Java Mapping or custom adapter module approach for our scenario. Any further guidance for me please post under my own thread so I can award proper points:

http://scn.sap.com/thread/3236841

baskar_gopalakrishnan2
Active Contributor
‎08-31-2012 5:51 PM
0 Kudos

If you are planning to digital sign using java mapping you might want to see this...

http://www.java-tips.org/java-ee-tips/xml-digital-signature-api/using-the-java-xml-digital-signatur-...

Show replies
Show replies
brian_briones
Participant
‎09-03-2012 8:52 PM
0 Kudos

Baskar, Thanks by information...

  But, can I read the certificate located in Keystore?

RGRDS.

Ask a Question