on 06-25-2015 4:22 PM
Hi Experts,
My requirement is to perform the Certificate based authentication using Username and certificate through WS-Security mechanism at Message level. This is supposed to be Client Authentication methodolgy where we share the Public key to 3rd party. I have been browsing through the SCN Links and found below Blog
Questions -
1. Does it require any other settings in PI (Admin level..etc) other than Channel configurations - given that the certificates are already deployed in J2EE Keystore already?
2. Can we achieve this using one set of keypair?
3. Can we enable my requirement using Classic configuration as well apart from using ICOs?
4. Does this feature support is enabled only few Versions and corresponding service packs?
Appreciate your response back.
Regards,
N. Jayanth Kumar.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Maheswar,
We have the requirement to authenticate using Username and Certificate, the blog you have provided is very informative but it seems to be using only username and password, but not certificate. Appreciate your help on using the Username and Certificate authentication.
Regards,
N. Jayanth Kumar
Jay,
i was referring you must have done that certification before itself and i dont think that error related to certificate, so you just keep as it is certificate and also since you are using wss security , please try to pass those credentials in mapping level as per that link steps which i posted in previous.
ok.since its working fine with out certificate then , i don't think that certificate is required, in case really that required , data must have failed in PI.
however,
We tried to send by just using username and password it worked well,
have you used username password in cc or sent same in data level?
if you use user credentials along with client certificate wat error you are getting now?
and also check with your web-service team that really client certificate or server certificate, if that is server certificate, you no need to generate keys and you can just import that cert in nwa
Hi Maheswar,
The successful test was done by sending the username and password from message mapping not from CC. We are performing Client authentication - which means we share the public key to 3rd party and keep the private key with us. The requirement is to authenticate using the Username (provided by 3rd party) and Certificate.
When we used the client certificate - WS-Security seems to be applied successfully, but it is failing quoting invalid username. We did use the username in CC as well as sent it from mapping directly - but both resulting in same error.
Regards
N. Jayanth Kumar.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
93 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.