cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

external WS call

Go to solution
Former Member

on ‎09-10-2013 7:51 PM

0 Kudos

Hi Experts ,

We have a requirement where we have to expose PI web services to the external vendor out of client architecture .

PI will be receiving and sending information over Web Service from the trird party and sending the data to R3 via ABAP proxy .

We have been exposing WS within client landscape before , please provide pointers on how to expose the WS externally ?

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

iaki_vila
Active Contributor
‎09-11-2013 7:38 AM
0 Kudos

HI Abhisek,

The way that more time i've seen is a DMZ, in this area you can use an application server or applicaton gateway or whatever you want which redirect the connections, also in PI infrastructure you can use a decentral adapter engine.

If you are in SAP PI 7.1 or upper i recommend you that you the Service Registry.

Regards.

Show replies
Show replies
JaySchwendemann
Active Contributor
‎09-11-2013 9:41 AM
0 Kudos

Hi Abhisek,

DMZ is the way to go. I second Iñaki here. As an alternative to install decentral adapter engine in DMZ you could also use a reverse proxy (SAP Web Dispatcher, Apache, etc) to redirect external calls to your SAP PI system that would then be on the inside of your network. This would have several advantages like:

  • No need to install official (CA chained) cert on SAP PI. This official cert should go on the reverse proxy which has to establish point to point trust with your SAP PI system
  • Some sort of protection from DDOS as not your PI is directly accessable from the internet but your reverse proxy. Inside (A2A) scenarios on your PI would continue to function
  • You would not need to expose any host name that sits on the inside of the network to the internet. Only the reverse proxy hostname would be needed to exposed
  • You could utilize features of reverse proxy (subject to chosen reverse proxy implementation) like URL rewrite, Access lists for allowed URLs, load ballancing, etc

Please keep in mind:

  • Some WAP may also deliver reverse proxy facilities but have many more features. If you already have something like that in place, use that (ask your networks guys)
  • Reverse proxys only fall short on B2C scenarios where many different user accounts need to be managed. If that's a requierement you'll have to have a look at SAML

HTH

Cheers

Jens

Answers (3)

Answers (3)

aashish_sinha
Active Contributor
‎09-11-2013 6:12 AM
0 Kudos

Hi Abhishek,

Steps -

1. Ask your partners to send there Test and Production Certificates and get in touch with basis to send them your System Certificates.

2. Install certificates in your system - Take basis help

3. Get in touch with network team, for firewall exception of partner IP and for a public IP creation.

4. Do test the connectivity.

Regards

Aashish Sinha

Show replies
Show replies
markangelo_dihiansan
Active Contributor
‎09-11-2013 2:52 AM
0 Kudos

Hello Abhishek,

You have to consult this with your network team, they should provide you an external IP which will redirect the request to your PI system.

Regards,

Mark

Show replies
Show replies
baskar_gopalakrishnan2
Active Contributor
‎09-11-2013 12:24 AM
0 Kudos

Your scenario is SOAP to Abap proxy.  Sender is soap adapter and receiver is abap proxy.

Create soap sender , generate wsdl and provide wsdl to the third party client.  Since you want to expose ws outside your network, you have to talk to network administrators to configure network firewalls port openings between the third party and SAP PI.  Please search scn for soap sender scenario.

Show replies
Show replies
Ask a Question