on 09-12-2007 3:48 PM
XI experts,
Here is the scenario - IDOC > XI > SOAP - Ansynchronous call..
I need your all help to understand the user authentication on the "Receiver SOAP Adapter"... We are using "HTTP" transport protocol.
I believe, the userid which we entered in the communication channel needs to have proper security on the web server. The Web server URL starts with "http://lsme
01.xyz.com/...." .
Question : Is this usrid and password will be encrypted when XI calls this web service?
If an answer is "NO" then is there anyway we can encrypt it?
Thanks in advance!
Points will be given..
MP
When web server URL is HTTPS and we are using user authentication in the receiver SOAP adapter, content of the message will be encrypted because it is HTTPS but what about userid/password? will it be in plain text or this will also be encrypted.
Thanks in advance!
MP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi MP,
userId/Password will also be encrypted along with the data when you use HTTPs.
Ref to the below FAQ for more clarity
http://httpd.apache.org/docs/2.0/ssl/ssl_faq.html#lockicon
<i>"No, the username/password is transmitted encrypted. The Basic Authentication facility is part of the HTTP layer, which is above the SSL/TLS layer in HTTPS. Before any HTTP data communication takes place in HTTPS, the SSL/TLS layer has already completed its handshake phase, and switched to encrypted communication"</i>
Regards,
Sreenivas
Sreenivas,
Thank you very much for your quick helpful reply.
I gave you 10 points.
MP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
XI experts,
I need an answer to the following question....
The Web server URL starts with "http://lsme01.xyz.com/...." .
Question : Is this usrid and password will be encrypted when XI calls this web service?
If an answer is "NO" then is there anyway we can encrypt it?
Thanks in advance!
Points will be given..
MP
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Check with the guys who have given the target url for you. They will also give you the userid and pwd. So you have to put that here.
Since you are posting data with XI to their URL it may expect the pwd to post. So this is that userid and pwd we are giving. If they dont have any user id and pwd we can ignore.
Regards,
---Satish
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
84 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.