Security Aspects of the SAP Process Integration Tools (in Eclipse)

Use

You can design and configure integration content with SAP Process Integration tool plug-in that is installed on Eclipse IDE. In this process, you can enable secure communication to ES Repository to obtain design objects.

Using this tool, you can do the following:

  • Create design objects using the tool that are required for an integration scenario. The design objects created using the tool generates corresponding objects in the ES Repository.

  • Create integration flows that provide a graphical description of an integration scenario and use the design objects during configuration. The integration flows generate corresponding Integrated Configurations in the Integration Directory.

    More information: Working with Integration Flows

Enabling Secured Communication for Integration Directory and ES Repository

The connection from the SAP Process Integration tool to the Integration Directory is initiated using the HTTP protocol.

For more information on the technical system landscape, see Technical System Landscape (AEX).

You can enable secured connection by encrypting the HTTP data stream by means of the SSL protocol.

To enable secured connection, perform the following steps:

  1. Launch the Eclipse Integrated Development Environment (IDE), and open SAP Process Integration Designer perspective.

  2. Choose Start of the navigation pathProcess Integration Next navigation step Change Preference Next navigation step PI Tools Configuration Next navigation step ConnectionEnd of the navigation path.

  3. Select Secure Connection (HTTPS) option.

  4. To enable secured connection to the ES Repository, set the property com.sap.aii.connect.repository.httpsport

More information: HTTP and SSL

You also need to configure the use of SSL for the AS Java.

More information: Configuring the Use of SSL on the AS Java

Maintaining the Confidentiality of Integration Flows

Securing the content of integration flows is important as the configurations of integration flows can contain customer-specific data. The SAP Process Integration tool secures the availability of configuration information as soon as the Integration Expert closes the graphical diagram of the integration flow in the Model Configurator editor tab page of the tool. When an integration flow is created or opened, its source file <IntegrationName>.diagram gets stored in the current workspace C:\Users\<UserID>\workspace\<WorkspaceName>\Integration Flows\diagrams\iflow . This source file renders the graphical model of the integration flow in the editor. On closing the integration flow, the tool automatically deletes the <IntegrationFlow>.diagram file from the local fle system. This means the Integration Expert does not have to explicitly delete the <IntegrationFlow>.diagram files.