cancel
Showing results for 
Search instead for 
Did you mean: 

Validating the digital signature error in soap receiver adapter on SAP PI 7.3 system

Former Member
0 Kudos

Hi All,

We are sending data from MDG system to third party system (Bank) via PI. We are using secure connection. We are on single stack and using soap sender and soap receiver synchronous communication. At secure procedure (Request) we are using message level signing and encryption and at secure procedure (Response) we are using decryption and validation in soap receiver channel. All the keys and certificates required are installed in NWA.

Now when we test the message we are getting the below error:

SOAP: Call failed: com.sap.aii.security.lib.exception.SecurityException: SecurityException in method: verify( Message, byte[], CPALookupObject ). Message: SecurityException in method: verify( Message, byte[], CPALookupObject ). WSSEThread-Exception: SecurityException in method: run(). Message: [com.sap.ASJ.wssec.030197] Error while valdiating the digital signature. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration... To-String: com.sap.security.core.policy.exceptions.VerifyException: [com.sap.ASJ.wssec.030197] Error while valdiating the digital signature. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration..; To-String: com.sap.aii.security.lib.exception.SecurityException: SecurityException in method: run(). Message: [com.sap.ASJ.wssec.030197] Error while valdiating the digital signature. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration... To-String: com.sap.security.core.policy.exceptions.VerifyException: [com.sap.ASJ.wssec.030197] Error while valdiating the digital signature. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration... To-String: com.sap.aii.security.lib.exception.SecurityException: SecurityException in method: verify( Message, byte[], CPALookupObject ). WSSEThread-Exception: SecurityException in method: run(). Message: [com.sap.ASJ.wssec.030197] Error while valdiating the digital signature. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration... To-String: com.sap.security.core.policy.exceptions.VerifyException: [com.sap.ASJ.wssec.030197] Error while valdiating the digital signature. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration..; To-String: com.sap.aii.security.lib.exception.SecurityException: SecurityException in method: run(). Message: [com.sap.ASJ.wssec.030197] Error while valdiating the digital signature. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration... To-String: com.sap.security.core.policy.exceptions.VerifyException: [com.sap.ASJ.wssec.030197] Error while valdiating the digital signature. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration..

Accepted Solutions (1)

Accepted Solutions (1)

former_member186851
Active Contributor
0 Kudos

Hello Richa,

Your securiy headers are missing I guess.

Make sure you added the security headers required for soap Validation.

also would suggested you test in SOAP UI.

Former Member
0 Kudos

Hi Raghuraman,

How to add security headers for soap validation?

Answers (3)

Answers (3)

nitindeshpande
Active Contributor
0 Kudos

Hello Richa,

Can you please let me know what are the security standard which you have used?

Please use the Oasis standards for security. This has the XSD file which has all the required security headers.

Please note, this standard is only for WSSE. Please follow the link provided by Inaki for detailed info on this.

Regards,

Nitin

Former Member
0 Kudos

Hi Nitin,

We have used Oasis standard only for security.

We have followed the same blog provided above by Inaki and configured in PI.

former_member186851
Active Contributor
0 Kudos

Hello Richa,

Did you try testing using SOAP UI?

Former Member
0 Kudos

hi,

we are also facing the same problem. did you find the solution. if you have, can you please let us know.

iaki_vila
Active Contributor
0 Kudos

HI RIcha,

If you are using wsse security this blog can be helpful for you

Regards.

vicky20691
Active Contributor
0 Kudos