cancel
Showing results for 
Search instead for 
Did you mean: 

Soap RECEIVER adapter ssl config

former_member361003
Participant
0 Kudos

we are consuming a web service in sap ECC system via XI using SSL. So I configured receiver soap adapter. Imported the certificate provided by web service provider to J2EE visual admin key store. However I am not able to see my ceritificates popluated in my communication channel selection list.

Could you please provide steps to configure SSL in receiver soap adapter not for Sender adapter.

Thanks.

Bijay

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
0 Kudos

Bijay,

Check this blog to make sure your steps are correct :-

http://www.sdn.sap.com/irj/scn/weblogs?blog=/pub/wlg/3721

http://help.sap.com/saphelp_nw04/helpdata/en/14/ef2940cbf2195de10000000a1550b0/frameset.htm

Also, make sure you have the correct view where you have installed the certificates.

Regards,

Neetesh

former_member361003
Participant
0 Kudos

Neetesh,

I have checked the first blog you mentioned. But my question is how do I get keystore entry and keystore view in comm channel. I have imported ceritificate in visual admin keystore in trustedCAs. But it is not visible in comm channel?

Any more thoughts?

thnanks.

Bijay

Former Member
0 Kudos

Hi,

For authentication based on client certificates, it is requierd to have the private key. Is your certificate with private key? If not, then they won't appear in the CC.

Regards,

Neetesh

former_member361003
Participant
0 Kudos

Thanks. I received certificate from third party web servvice provider. Then, how do I retrieve private key from certificate?

regards,

Bijay

Former Member
0 Kudos

The private key is in server side and the public key is used by client for encrypt or decrypt the messages.

So, in your case, ask the receiving side to share their public key, which you will provide to your Key Storage View in NWA.

There are tons of good blogs on SDN / SAP Help for SSL configuration, go through those.

Regards,

Neetesh

former_member361003
Participant
0 Kudos

Thanks Neetesh. I have read many blogs in this forum before I post this message. All I am getting is how to configure SSL in sender soap adapter.

So let me repharse my issue here:

I am consuming web service in sap ecc system using XI. ECC - XI - soap receiver adapter - thirdparty web service.

I have installed certificate provided by third party in my XI J2ee keystore. Now could you tell me how I configure my comm channel so it uses this certificate when making calls to ws.

regards,

Bijay

Former Member
0 Kudos

Okay, so this is a client certificate and not a CA certificate, right?

In this case, you need to import the client certificate under ICM_SSL_xxx and you can find SSL_Provider if you scroll completly down. You need to import the private key of the client certificate under ICM_SSL_xxx.

Only CA certificates goes in TrustedCA view. You can create a new view ICM_SSL_xxx or put the certificate under any existing ICM_SSL_xxx view, it doesn't matter.

Do this step and let me know if it works. Might be, there is no requirement for private key at this point of time. It completely depends how the receiving system will accept and verify the call from PI server.

Since it's a client certificate, they must be having public and private keys. But this certificate has to be signed by some one like VeriSign and they provide a different key to make it more secured. But anyways, you don't need to go in so much of details right now.

Follow the steps that I mentioned above and hopefully, it should work.

Regards,

Neetesh

ramesh_badham2
Explorer
0 Kudos

I am running into same issue. I have imported the client key onto keystore view from NWA. it is not showing up in communication channel configuration.

Please let us know if anything else need to be done.