cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

XI certificates

Former Member

on ‎02-18-2008 6:47 PM

0 Kudos

Hi,

I am trying to access one web service provided by vendor from XI Box. This is a https webservice. I have a Reverse proxy in DMZ between Xi and the vendor. Please confirm the following things.

1. I need to install vendor Certificate on Reverse Proxy? Yes or No

2. I need to install Reverse Proxy certificate on XI Box? Yes or No

Thank you

Monika

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (4)

Answers (4)

Former Member
‎11-13-2009 9:13 AM
0 Kudos

Hi, I' facing the same problem:

XI(AE) ---> reverse Proxy ---> External web service

Did you find out the correct configuration? What certificates I need to install?

Thanks a lot

Simona

Show replies
Show replies
Former Member
‎02-28-2008 3:33 PM
0 Kudos

Hi,

1. When I install the certificate on XI, which one I should install.

(Vendors or Ours from the Reverse Proxy)

--> I think you need to install the Vendor certificate in XI. As you ssaid you don't have any firwall across the partner then no need of any settings or certificate installation on Vendor side.

2. Do i need to install the Vendor certificate on the reverse proxy?

--> No I don't think it is required as the reverse proxy will communicate with XI and then to Ext. Web service so just on XI you have to install Cetificate.

thanks

Swarup

Show replies
Show replies
Former Member
‎02-19-2008 5:19 AM
0 Kudos

Hi,

1. I need to install vendor Certificate on Reverse Proxy? Yes or No

It depends if the Reverse proxy in DMZ and Vendor have the same firewall layer then probably you will not require to install the certificate. Useing the proxy URL of the Web Service will work. But in case its across the firewall then you need to install the certificate.

2. I need to install Reverse Proxy certificate on XI Box? Yes or No

This needs to create the HTTPs connectivty with XI, thus you need to install the certificate on XI box.

Please refer below links for more details on it,

Step by step guide for SSL security

SSL Configuration

http://help.sap.com/saphelp_nw04/helpdata/en/14/ef2940cbf2195de10000000a1550b0/frameset.htm

http://help.sap.com/saphelp_nw04/helpdata/en/ff/7932e4e9c51c4fa596c69e21151c7d/content.htm

http://help.sap.com/saphelp_nw04/helpdata/en/13/4a3ad42ae78e4ca256861e078b4160/content.htm

http://help.sap.com/saphelp_nw04/helpdata/en/3a/7cddde33ff05cae10000000a128c20/content.htm

http://help.sap.com/saphelp_nw04/helpdata/en/0a/0a2e0fef6211d3a6510000e835363f/content.htm

Thanks

Swarup

Edited by: Swarup Sawant on Feb 19, 2008 6:19 AM

Show replies
Show replies
Former Member
‎02-28-2008 3:02 PM
0 Kudos

Thank you very much for the information. The Document is dealing with 3 scenarios. But says

" SAP J2EE engine as client and using intermediary proxy server are not covered in this session."

This is what what we are trying to do. In my situation Adapter engine acts as a client. Here is

XI(AE) ---> reverse Proxy ---> External web service. There is no firewall on the external partner.

1. When I install the certificate on XI, which one I should install. (Vendors or Ours from the Reverse Proxy)

2. Do i need to install the Vendor certificate on the reverse proxy?

Thank you

Moni

Former Member
‎02-19-2008 12:54 AM
0 Kudos

No you should not need to do this. Probably the vendor's firewall is blocking the request - perhaps you have given them the name of XI server/IP address but as this is hidden behind your reverse proxy and that is the server/IP address they see. Check that with them

Show replies
Show replies
Ask a Question