Preparing the WS Provider AS ABAP for Certificate Authentication at Message Level

Users can also authenticate themselves with the system using X.509 certificates. Use the following procedure to configure the provider system so that it can use an X.509 certificate in the consumer system message to identify the service user under which the Web service is to be executed.

Prerequisites

In the consumer and provider systems, the option for signing has been selected (for example, in SOA Manager Business Administration Web Service Administration , the option Signature & Encryption (Asymmetric Binding)).
You have exported the certificate of the consumer system that is to be used and stored it as a file.
- More information, if the consumer system is an AS ABAP: Preparing the WS Provider AS ABAP for Accepting the Signature
- More information, if the consumer system is an AS Java: Preparing the WS Provider AS Java for Accepting the Signature

Procedure

Use the Trust Manager of the consumer system to import the signature certificate into the WS-Security PSE WS Security Keys.
Assign the imported certificate to the user that you want to use for the logon.
More information: Configuring the System for Using X.509 Client Certificates