Skip to Content

Enterprise services consumption by 3rd party -> Security

Dear Experts,

I am planning to create a few enterprise services using an inside out approach (using FMs) with an intention of consuming it in a .NET WPF application (protoyping).

These web services would then be consumed by a third party application which is outside our system landscape, in the near future. This 3rd application would thus have access to our data exposed through the interface.

My question is, first of all, is it possible to achieve this kind of communication without any mappings??

Secondly, how safe is it to provide such interfaces externally and will the user authentication settings be enough to assure safe integration? WIll the firewall settings affect this kind of 3rd party communication over the internet?

Are there any problems that you all foresee?

Any comments on this would be great as I plan to start really soon..

Thanks a lot in advance,

Amith

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Best Answer
    avatar image
    Former Member
    Jun 30, 2010 at 08:52 AM

    >My question is, first of all, is it possible to achieve this kind of communication without any mappings??

    yes once service is created then any .Net application can consume it by using wsdl.

    >Secondly, how safe is it to provide such interfaces externally and will the user authentication settings be enough to assure safe integration?

    user/password with limited authorization is safe enough but for extra security you probably use certificates.

    >WIll the firewall settings affect this kind of 3rd party communication over the internet?

    No, if your landscape is open for http communication then firewall will be unable to block any soap communication as it is plain text.

    >Are there any problems that you all foresee?

    First see what are your security risk appetite then check who will be user, selective partners or anyone who want to use it. For selective users you can create license or certificate key which need to be used to authenticate by calling application. Always create different endpoint for different partners or user so that you can selectively turn on/off the communication and will be able to trace who is doing what?

    Hope this helps you.

    Regards,

    Gourav

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Former Member

      Hi Trevor Naidoo,

           Once again greetings.... I have also had same problem. Then I followed ur instruction. I mean in Authorization tab of services (S_SERVICE, SAP_BC_WEBSERVICE_CONSUMER) in tcode PFCG.

      now it turned red to green light after i saved. But still my Web Service Navigator is not working.it says as follows.

      what can i do now?

      -Janaraja

      s1.jpg (251.7 kB)