Configuration

Procedure:

Configuration in the IDE (Web service)

...

       1.      Select a configuration of the Web service and open the security configuration.

       2.      Set the Authentication Mechanism to HTTP Authentication.

       3.      Choose the value Basic (username/password) to use basic authentication.

       4.      Select the checkbox Use SAP Logon Ticket, if the Web service should also accept SAP Logon Tickets for authentication.

Configuration in the IDE (proxy)

...

       1.      Generate a deployable proxy based on the WSDL, after the Web service has been deployed.

       2.      Open the logical port.

       3.      Choose the value Basic (username/password) to use basic authentication.

Runtime Configuration in the Visual Administrator

Username and password are maintained in the Visual Administrator.

...

       1.      Open the Visual Administrator

       2.      Select the service Web Service Security

       3.      In the list of the Web service proxies, select the proxy in the Web Service Clients tree.

       4.      In the tab Transport Security set the authentication to Basic and enter username and password.

Configuration:

Procedure:

Configuration in the IDE (Web service)

...

       1.      Select a configuration of the Web service and open the security configuration

       2.      Set the transport protocol to HTTPS

       3.      Set the Authentication Mechanism to HTTP Authentication

       4.      Choose the value X.509 Certificate to use SSL mutual authentication.

       5.      Select the checkbox Use SAP Logon Ticket, if the Web service should also accept SAP Logon Tickets for authentication.

Configuration in the IDE (proxy)

...

       1.      After the Web service has been deployed, generate a deployable proxy based on the WSDL.

       2.      Open the logical port.

       3.      Choose the value X.509 Certificate to use client certificates for authentication.

Runtime Configuration in the Visual Administrator

Keys and certificates used for authentication are stored in the keystore service. To use a client certificate for authentication:

...

       1.      Enable SSL and configure the SSL service to use certificates for authentication.

       2.      Open the Visual Administrator.

       3.      Select the service Web Service Security

       4.      In the list of Web service proxies, select the proxy in the Web Service Clients tree.

       5.      In the tab Transport Security set the authentication to X.509 Client Certificate and select a keystore entry to use for authentication.

Configuration:

Procedure:

Configuration in the IDE (web Service)

...

       1.      Select a configuration of the Web service and open the security configuration

       2.      Set the “Authentication Mechanism” to Document Authentication

       3.      Choose the value Basic (username/password) to use an wsse:Username token for authentication

       4.      In the tab Document Security set Username for the request and None for the response. This will accept a wsse:username security token for authentication. The settings need to be done for each operation.

Configuration in the IDE (proxy)

...

       1.      After the Web service has been deployed, generate a deployable proxy based on the WSDL

       2.      Open the logical port

       3.      Choose the value Basic (username/password) to use an wsse:Username token for authentication.

Runtime Configuration in the Visual Administrator

Username and password are maintained in the Visual Administrator.

...

       1.      Open the Visual Administrator

       2.      Select the service Web Service Security

       3.      Create an inbound profile:

                            a.      Select the tab Profile Administration

                            b.      In the tab Inbound Messages select New to create a new profile.

                            c.      Enter Credit_Username as name

                            d.      Choose the template Username

                            e.      Save the profile

       4.      Create an outbound profile:

                            a.      Select the tab Profile Administration

                            b.      In the tab Outbound Messages select New to create a new profile:

                            c.      Enter Credit_Username as name

                            d.      Choose the template Username

                            e.      Enter username and password

                              f.      Save the profile

       5.      Select the proxy in the Web Service Clients tree in the list of Web service proxies.

       6.      In the tab Document Security assign the profile Credit_Username to the operations.

       7.      In the list of Web services, select the service in the Web Services tree.

       8.      In the tab Document Security assign the profile Credit_Username to the operations.

Configuration:

Procedure:

Configuration in the IDE (Web service)

...

       1.      Select a configuration of the Web service and open the security configuration

       2.      Set the Authentication Mechanism to Document Authentication

       3.      Choose the value X.509 certificate to use an XML Signature for authentication

       4.      In the tab Document Security set Signature for the request and None for the response. This will accept a XML Signature for authentication. The settings need to be done for each operation.

Configuration in the IDE (proxy)

...

       1.      After the Web service has been deployed, generate a deployable proxy based on the WSDL.

       2.      Open the logical port.

       3.      Choose the value X.509 Certificate to use an XML Signature token for authentication.

Runtime Configuration in the Visual Administrator

Username and password are maintained in the Visual Administrator.

...

       1.      Open the Visual Administrator

       2.      Select the service Web Service Security

       3.      Create an inbound profile:

                            a.      Select the tab Profile Administration.

                            b.      In the tab Inbound Messages select New to create a new profile.

                            c.      Enter Credit_Signature as name

                            d.      Choose the template Signature

                            e.      Select a keystore view with trusted root certificates.

                              f.      Save the profile

       4.      Create an outbound profile:

                            a.      Select the tab Profile Administration

                            b.      In the tab Outbound Messages select New to create a new profile.

                            c.      Enter Credit_Signature as name

                            d.      Choose the template Signature

                            e.      Select a key from the keystore for signing the message.

                              f.      Save the profile

       5.      In the list of Web service proxies, select the proxy in the Web Service Clients tree.

       6.      In the tab Document Security assign the profile Credit_Signature to the operations.

       7.      In the list of Web services, select the service in the Web Services tree.

       8.      In the tab Document Security assign the profile Credit_Signature to the operations.