Skip to Content
0
Former Member
May 15, 2008 at 02:06 AM

Message Level Security (MLS) - Sign and Encrypt Error

68 Views

Hi all,

I'm using Message Level Security (MLS) to sign and encrypt my message when sending to other customer.

In my individual test for sign, the message successful signed and send to customer using my private key.

In my individual test for encryption, the message also successful encrypted and send to customer using customer's public key.

The problem comes when I choose the option "Sign and Encrypt" in receiver agreement. I always get the error below:-

http://sap.com/xi/XI/Message/30" xmlns:SOAP=" http://schemas.xmlsoap.org/soap/envelope/" SOAP:mustUnderstand="1">

<SAP:Category>XIProtocol</SAP:Category>

<SAP:Code area="PARSER">ITEM_UNEXPECTED</SAP:Code>

<SAP:P1><Signature></SAP:P1>

<SAP:P2></Security></SAP:P2>

<SAP:P3 />

<SAP:P4>ST: ST_XMS_MSGHDR30_SECURITY</SAP:P4>

<SAP:AdditionalText>System expected end of element 'Security'</SAP:AdditionalText>

<SAP:ApplicationFaultMessage namespace="" />

<SAP:Stack>Unexpected XML element <Signature>; </Security> was expected System expected end of element 'Security'</SAP:Stack>

<SAP:Retry>M</SAP:Retry>

</SAP:Error>

It seems like PI failed to generate proper xml tag when doing sign and encryption. FYI, I'm using PI 7.0 SP 15. I found the receiver agreement configuration of this patch is different from others. In other's screen, they have Security Profile option only, however in my receiver agreement screen , I have Security Standard listbox and Security Procedure listbox. Under Security Standard, it only have "http://www.docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" for me to choose.

Should the Security Standard be:-

1. http://www.docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd

or

2. http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd without .www in the url?

Please assist. Thanks.