Skip to Content
0

regarding bank integration using PI

Mar 08 at 12:06 PM

36

avatar image

Hi,

I am working on SAP to BANK integration using PI. bank has provided HTTPS link for pulling the statement with following condition.

Request message should be signed by private key

Response message will be signed by Bank B2B and should be verified and unsigned by Bank B2B public key.

Response message will be encoded BASE64.

Please help me with below points.

1. I am planning to use RFC adapter from SAP to PI, but from PI to BANK, should i use SOAP or HTTP_AAE receiver adapter ? It will synchronous call.

2. Bank will provide private key, which i will install in PI system and will use in synchronous receiver adapter. How can i use bank public key to verify response and decode it.

3. Is there any setting required in PI NWA for using SSL for HTTPS call ?

Thanks

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

2 Answers

Pavan Dogiparthy Mar 08 at 12:46 PM
0

Hi,

1. you can use soap adapter and configure the url provided by bank and also enable security profile

2.you will get public key from the bank not private key which you need to import into the keystore view TrustedCAs so that same can be used in Encryption.

For Request you can sign and Encrypt ( Sign using own private key and Encrypt using Banks public key)

For Response you can Decrypt and validate(Decrypt using own private key and validate using Banks public key)

Please refer below blog for ready reference

https://blogs.sap.com/2011/08/23/configuring-wsse-digital-signing-and-encryption-using-sap-pi-711-aae-soap-adapter/

Regards

Pavan

Share
10 |10000 characters needed characters left characters exceeded
Mohammad Aamir Khan Apr 03 at 10:28 PM
0

Hi Pavan,

It is clear now. We are using HTTP_AAE receiver. For testing purpose, bank is asking for test public key. I created private key in Certificate and Keys, since it is test server, there is no need for getting is certified from CA.

How can we create public key from private key. Any help on issue ?

Thanks

Show 3 Share
10 |10000 characters needed characters left characters exceeded

Hi,

you need to create a self signed certificate then

1) Generate a CSR request from private key and share to signing authorithy (eg: manager) you will get CSR Response from them.

2) Import the CSR Response into private key.

Then you will get key pair

Regards

Pavan

0

Dear Pavan,

I have downloaded CSR request from private key which i created. As it is self signed certificate, whom should i send ? I can't send it to external signing authority and in project i am only person from PI side.

Thanks

0
Mohammad Aamir Khan

You can share to your manager for signing the csr request and to get csr response

0