on 01-13-2014 3:57 PM
Hello,
We are trying to set up SSO between non-SAP server (JBoss) and SAP ABAP AS, which is on 7.01 SP8. As our ABAP back end is not at a version where SAML 2.0 is supported, we decided to use SAML 1.1.
To establish proof of concept, we are using SOAP UI. However, we are getting "XML Invalid Signature" when the SOAP UI is making calls to ABAP back end. We tried removing the certificate that we are using for SOAP UI but we still get the same error. We followed the instructions mentioned in OSS note 1254821 for ABAP configuration and the instructions mentioned in the below link for SOAP UI config.
Technology highlights: How to test secure web services with soapUI - part #1
Can you please help? Your help is very much appreciated!
Thank you.
Regards,
Pranith.
The issue was at the client's end. We developed a custom program in python and that did the trick for us.
Regards,
Pranith.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Isabelle,
We were using SOAP UI initially to make the XML calls and in that process, we discovered that digest values calculated by SAP for the body of the message was different than diest values sent by SOAP UI.
In the custom program, after a lot of blank space removal, carriage return removal, removal of header and footer in certificate, digest values SAP generated matched with digest values being sent by client end. From then on, we rant into certificate error; certificates uploaded to SAP were not matching. We just changed the algorithm of the certificate to RSA and that did the charm.
Good luck!
User | Count |
---|---|
84 | |
25 | |
12 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.