cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Certificate query

Former Member

on ‎02-29-2012 1:34 PM

0 Kudos

Hi Experts,

I have scenario which required Https communication. i have provided the WSDL files to third party for communication.

i have created the WSDL through sender agreement which have both http & https URLs

i saw three option in SOAP sender adapter 1) http,2)https with out client authentication,3)https with client authentication.

we required SSL(https) configuration when third party sending the request to SAP PI

we dont require SSL(https) communication when SAP PI response for that third party request.

to achive this requirement i have shared the SSL certificate to thirdparty by making the sender communication chanel htpp security level as "https with client authentication"

is this way correct or am i need to follow another way?

which SSL certificate am i need to provide

form NWA ->configuration Management>security-->certificates&Keys-

1) ICM_SSL

2)Services_SSL

please help mee

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (3)

Answers (3)

Former Member
‎03-01-2012 8:03 AM
0 Kudos

Hi,

You can refer the following

SSL Set Up in PI

SOAP SSL in PI

Also,you can refer the following links

Regards,

Amol

Show replies
Show replies
Former Member
‎03-05-2012 11:17 AM
0 Kudos

HI All,

sorry for late reply.

thanks for all valuble suggestions.

i checked in SOAP UI by adding the SAP PI certificate which i got from Configuration management--SecurityCertificate & Keys-ICM_SSL_XXXXXXX---- generate CSR(BinaryPKC).

and i make the Http security level as "https with client authentication" in Sender adapter communication channel.

but i am getting the exception 

<code>ADAPTER.JAVA_EXCEPTION</code>
    <text>java.security.AccessControlException: client certificate required

Please let me know waht could be the reason.

Thanks & Reagrds,

Venkat

naveen_chichili
Active Contributor
‎03-05-2012 12:17 PM
0 Kudos

Dear Venkat,

Could you check with your Basis team, May be they can have a look and help as this is a certificate issue,

Thanks and Regards,

Naveen

prateek
Active Contributor
‎03-05-2012 9:57 PM
0 Kudos

>>security level as "https with client authentication"

This is not required unless your partner asks for client authentication. Use the option " Https without client authentication".

>>generate CSR(BinaryPKC).

This is CSR and not your certificate. You have to understand the concepts before working with the certificates. You may even search google to understand the concepts. Take help from your Basis team for providng the certificates.

Regards,

Prateek Raj Srivastava

former_member4985
Employee
Employee
‎02-29-2012 11:43 PM
0 Kudos

Hi,

I'd recommend you to check both:

"Message-Level Security"

http://help.sap.com/saphelp_nwpi71/helpdata/de/a8/882a40ce93185de10000000a1550b0/frameset.htm

"HTTP and SSL"

http://help.sap.com/SAPHELP_NWpi71/helpdata/EN/14/ef2940cbf2195de10000000a1550b0/frameset.htm

Also, concerning your question, yes, you can proceed as mentioned.

Regards,

Caio

Show replies
Show replies
baskar_gopalakrishnan2
Active Contributor
‎02-29-2012 2:43 PM
0 Kudos

>to achive this requirement i have shared the SSL certificate to thirdparty by making the sender communication chanel htpp security level as "https with client authentication"

is this way correct or am i need to follow another way?

Yes what you did is right.

Regarding certificate: You might want to talk to basis. You have to share the cerificate that has same authority signed both for you and your customer.

Show replies
Show replies
Ask a Question