cancel
Showing results for 
Search instead for 
Did you mean: 

Error receiving xml via HTTPS

Former Member
0 Kudos

I am trying to get inbound HTTPS working on our system using certificate authentication rather than username/password. First off, yes I have searched the forums to great degree, and yes I have reviewed documents at help.sap.com (such as Configuring the SAP Web AS for Supporting SSL).

Outbound HTTPS is working just fine.

I have set up STRUST with SSL Server, SSL Client, and another identity for our customer. I have added all the certificates to the PSEs (perhaps I didn't add what I needed. This could be a source of error). I added an entry in table USREXTID with a user I created, mapping to the customer's certificate DN. I have restarted ICM, but still the customer gets a 401 authorization error.

Is anybody using inbound HTTPS with certificate authentication? Could you please assist me in setting up our system.

Please don't respond with remarks such as check this thread as I have probably already checked it and received no help in it. If it were helpful, I wouldn't be here right now. Please respond with real assistance. Thanks.

Accepted Solutions (0)

Answers (5)

Answers (5)

Former Member
0 Kudos

Hi Larry

1. Check whether XIISUSER/ PIISUSER uses a correct Password

2. Check the exchange profile and transaction SU01- reset password once and try

3. Restart the J2EE to activate the changes

4. Delete the adapter engine cache in SXI_CACHE

If you have already performed these check once and see if there is error at any stage

Thanks

Gaurav

Former Member
0 Kudos

We kind of gave up on it for now. Our customer was able to finally get username/password working on their end (required an upgrade to their system).

In looking for some other information, I stumbled up on a t-code sicf. When you drill down through the path to xi/adapter_plain, go to its properties. In the Service Data tab, there is a selection for Logon Procedure. Ours is set to Standard. One of the options is Client Cert (SSL). I am wondering if we select that, or do Alternative Logon Order, if that will allow the certificate authentication to work.

Unfortunately, I have not had time as of recent to test this out, so it is sitting on my back burner for the next few months.

If you try it out and get it to work, please let me know.

Former Member
0 Kudos

Hi Larry,

I was wondering if you were able to solve this problem. I am trying to do the same thing - receive Rosetta net XML via HTTPS, and each time our business partner tries to post a message, they get 401 error.

When I try to access the url (same one that client tries to post to), it pops up a window for username and password each time. I am not sure how to avoid this.

Was your error similar to this one?

Thanks,

Archana

Former Member
0 Kudos

I am not receiving any error in sxmb_moni as the transaction is not making it that far. It's failing during authorization on the abap side (I am using sender HTTP adapter). The communication channel is set as HTTP, sender, and I have tried HTTPS with and without client authentication.

I'm not as worried about the setup of the scenario itself (RD, RA,SA,ID) because we're not making it that far. It's more of the setup of the SSL stuff on the ABAP side.

Former Member
0 Kudos

Hi ,

Please let us know the error message you are getting in SXMB_MONI.

Are you using HTTP adapter with HTTP destination as mode of transport ?

Please give more information on your scenario with more details about the inbound interface.

Regards,

Kishore