cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SMIME encrypted and digitally signed data

Go to solution
Former Member

on ‎07-25-2012 8:09 AM

0 Kudos

Hi,

We are using SMIME Tool for encryption and digitally signing the messages.

Can we use SOAP adapter and HTTP adapter for passing the encrypted and digitally signed data to external non-SAP system?

If yes then how can we use both adapters for achieving the above requirement?

Thanks.

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

MichalKrawczyk
Active Contributor
‎07-25-2012 8:50 AM
0 Kudos

Hi,

>>>Can we use SOAP adapter and HTTP adapter for passing the encrypted and digitally signed data to external non-SAP system?

SOAP for sure - HTTP (ABAP based) not

http://help.sap.com/saphelp_nwpi71/helpdata/de/a8/882a40ce93185de10000000a1550b0/content.htm

Please have a look at:

http://scn.sap.com/people/rajendra.badi/blog/2011/08/24/configuring-wsse-digital-signing-and-encrypt...

Regards,

Michal Krawczyk

Show replies
Show replies
Former Member
‎07-25-2012 9:52 AM
0 Kudos

Hi Michal,

I am new to SAP PI module.

I am still unclear about the usage of the two adapters for the mentioned requirement.

We are not using PI's native encryption and decryption logic, rather we are using SMIME Tool for this purpose.

I suppose, we cannot use receiver SOAP adapter to perform encryption and signing message when sending message to non-SAP system, but when sending message to SAP system we can use SOAP adapter. (Correct me if i am wrong).

Can you please elaborate more on this and also if we can send just an encrypted text/xml file using File-HTTP adapter (File sender adapter will pick the encrypted file)?

Thanks.

MichalKrawczyk
Active Contributor
‎07-25-2012 10:00 AM
0 Kudos

hi,

>>>>I suppose, we cannot use receiver SOAP adapter to perform encryption and signing message when sending message to non-SAP system, but when sending message to SAP system we can use SOAP adapter. (Correct me if i am wrong).

SOAP adapter's encryption/singing is not SAP specific but industry specific

so you can use with any tool which can receive encrypted SOAP messages

(you just need to check the standard used by both ends)

>>>Can you please elaborate more on this and also if we can send just an encrypted text/xml file using File-HTTP adapter (File sender adapter will pick the encrypted file)?

file adapter can pick any type of file (even binary files) and forward them to the HTTP adapter which can push it somewhere else

so in short there is no need to use PI encryption - you can do that outside and just push the encrypted file via PI but it's better to do the encryption at PI level (so you can see the message in monitoring if necessary)

and you achive this via an adapter module for example (which can call any external encryption tool)

Regards,

Michal Krawczyk

Former Member
‎07-25-2012 10:22 AM
0 Kudos

Hi Michal,

So, can i say that even by using File - SOAP (by disabling the SOAP envelope) we are able to achieve the same purpose as achieved by using File - HTTP adapter?

Also, you have mentioned regarding the adapter module usage. What adapter module  can i use and how?

Thanks for all your early reply.

Points mentioned are very useful.

Thanks.

MichalKrawczyk
Active Contributor
‎07-25-2012 10:28 AM
0 Kudos

Hi,

>>>So, can i say that even by using File - SOAP (by disabling the SOAP envelope) we are able to achieve the same purpose as achieved by using File - HTTP adapter?

of course if the file will be encrypted somewhere else then it will be the same result

>>>Also, you have mentioned regarding the adapter module usage. What adapter module  can i use and how?

you'd need to write one yourself - not a standard one but it's not a big deal - 2-3 days work max

Regards,

Michal Krawczyk

Answers (1)

Answers (1)

former_member311962
Explorer
‎09-02-2019 3:16 PM
0 Kudos

I am working on the same thing but trying to apply SMIME/Crypt/Sign to a text file and put them in a FTPS server

Can yo help me with a step by step? I am not security expert

Show replies
Show replies
Ask a Question