Certificate for a web service

Hi,
Our company has a SAP Netweaver Enterprise Portal implementation.
Recently we have been asked to create a Web service from a Java class in SAP Netweaver using Netweaver Developer Studio. The connection to Web service must be an https connection.
In steps of web service's creation we saw that we have the option to create an https (secure soap) web service.
Can anyone tell us how we can create an https web service?
The portal server belongs to a Windows Active Directory Domain that has a Certification Authority from which we can request and take a certificate.
What is the configuration that we must do on server, so that we can call the web service using https?
Thanks in advanced

Hi,
Check this URL:
[Web Services Over SSL |http://www.pankaj-k.net/WSOverSSL/WSOverSSL-HOWTO.html]
Regards,
Shyam.

Similar Messages

  • Configuring use of clinet certificates for jax web services  configuring u

    Hello dear people,
    I have a very simple jax web service under glassfish v.2.1 and I want to secure it using mutual authentication. I could configure using server certificates but I have problems with configuring the server to ask client certificates. The problem is that the clients are not asked to provide a valid client certificate to use the service. The clients can easily use the service without having a certificate.
    Can anyone tell me what should I do to have this?
    I got the example code from http://java.net/projects/javaeetutorial/downloads and the sample code that I used is in the folder : javaeetutorial5/examples/jaxws/helloservice-clientcert
    Best regards,
    Arash.

    Did you resolve your issue?
    I´m posting some comments that maybe can help newer administrators facing similar doubts.
    I´m using NW PI 7.1 EHP1 also and some interfaces were developed for using an external site providing web services through SSL (HTTPS) connection.
    As in browser navigation, secure sites protected with SSL has a certificate emited by a international CA. We didn´t perceive the "handshake" in the most of cases because normally the web browser has a group of trusted CAs loaded on its certificate store.
    With SAP PI and its WAS Java a similar procedure occurs with a small difference. The WAS Java didn´t have the trusted CAs loaded on KeyStorage. So, when the adapter tries to establishing a connection with an HTTPS site (it is a background process)  a "handshake" is required to accepting the certificate and produces a error.
    We completes the handshake importing the entire certificate chain (you can upload the site´s certificate to your browser and export it as file) on Keytore under the Trusted CAs view.
    Hope this can help someone. It´s an "easy" part of SSL communication.
    Now I´m trying to configure the inverse: Some third party consuming the PI web services using SSL. I have an additional component on inbound/ incoming connections that is the SAP Web Dispatcher.
    The Help.sap.com is the reference but as always its a little difficult to find the (sequential) path following the links (go ahead, go ahead, go ahead, go back, go back, go ahead)...
    Regards,
    Rodrigo Aoki

  • Details for 'Is Web service security available?'

    Hi i am working on scenario rfc to webservice.Its as secued webserivce i need to do ssl configuration.
    In component monitoring..for the integration engine its in yellow...
    Details for 'Is Web service security available?'
    Communication error Proxy calls on the sender or receiver side are not permitted on the IS (client)
    can any one please help me out..
    Thanks
    sriram

    I have already installed certificates on the j2ee engine & i have given the paramaters for keystore entry & keystore value.Still i have the same error
    In component monitoring
    For integration engine
    Details for 'Is Web service security available?'
    Communication error Proxy calls on the sender or receiver side are not permitted on the IS (client) 
    In message monitoring
    Audit Log for Message: f614df00-e9e0-11da-95ef-0004ac577b32
    Time Stamp Status Description
    2006-05-22 15:18:58 Success The message was successfully received by the messaging system. Profile: XI URL: http://saptst01:51000/MessagingSystem/receive/AFW/XI
    2006-05-22 15:18:58 Success Using connection AFW. Trying to put the message into the request queue.
    2006-05-22 15:18:58 Success Message successfully put into the queue.
    2006-05-22 15:18:58 Success The message was successfully retrieved from the request queue.
    2006-05-22 15:18:58 Success The message status set to DLNG.
    2006-05-22 15:18:58 Success Delivering to channel: ZCH_VERISIGNPPGR
    2006-05-22 15:18:58 Success SOAP: request message entering the adapter
    2006-05-22 15:18:58 Success SOAP: call failed
    2006-05-22 15:18:58 Error SOAP: error occured: iaik.security.ssl.SSLException: Peer sent alert: Alert Fatal: illegal parameter
    2006-05-22 15:18:58 Error Exception caught by adapter framework: Peer sent alert: Alert Fatal: illegal parameter
    Can any one please help me out.
    Thanks
    sriram

  • Why i am I getting Error (5,8) TestCas for a Web Service Test File Generate

    why i am I getting the following error for a Web Service Test File Generated by jdeveloper when i run it:
    Error (5,8) TestCase not Found
    Error(12,14):constructor Object(java.lang.String) not found in java.lang.Object

    actually i removed that error by added the junit.jar to my libraries but i am getting a new error when accessing the webservice with a Jdev generated web service proxy:
    WARNING: Unable to connect to URL: https://mytest.test.com/WebService/MyTest_1.0/soap.soap due to java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Message send failed: Connection refused: connect
    java.rmi.RemoteException: ; nested exception is:
         HTTP transport error: javax.xml.soap.SOAPException: java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Message send failed: Connection refused: connect
         at project7.proxy.runtime.MyTestSoapBinding_Stub.echoOfficeLocation(MyTestSoapBinding_Stub.java:11977)
         at project7.proxy.MyTestClient.echoOfficeLocation(MyTestClient.java:1276)
         at project7.proxy.MyTestClient.main(MyTestClient.java:38)
    Caused by: HTTP transport error: javax.xml.soap.SOAPException: java.security.PrivilegedActionException: javax.xml.soap.SOAPException: Message send failed: Connection refused: connect
         at oracle.j2ee.ws.client.http.HttpClientTransport.invokeImpl(HttpClientTransport.java:174)
         at oracle.j2ee.ws.client.http.HttpClientTransport.invoke(HttpClientTransport.java:150)
         at oracle.j2ee.ws.client.StreamingSender._sendImpl(StreamingSender.java:176)
         at oracle.j2ee.ws.client.StreamingSender._send(StreamingSender.java:113)
         at project7.proxy.runtime.MyTestSoapBinding_Stub.echoOfficeLocation(MyTestSoapBinding_Stub.java:11961)
         ... 2 more
    Process exited with exit code 0.
    looks like something to do with the certificate or keystore... how do you add the keystore to JDev.. i tried the JDK cacert but that doesnt work...

  • Best Practice for Securing Web Services in the BPEL Workflow

    What is the best practice for securing web services which are part of a larger service (a business process) and are defined through BPEL?
    They are all deployed on the same oracle application server.
    Defining agent for each?
    Gateway for all?
    BPEL security extension?
    The top level service that is defined as business process is secure itself through OWSM and username and passwords, but what is the best practice for security establishment for each low level services?
    Regards
    Farbod

    It doesnt matter whether the service is invoked as part of your larger process or not, if it is performing any business critical operation then it should be secured.
    The idea of SOA / designing services is to have the services available so that it can be orchestrated as part of any other business process.
    Today you may have secured your parent services and tomorrow you could come up with a new service which may use one of the existing lower level services.
    If all the services are in one Application server you can make the configuration/development environment lot easier by securing them using the Gateway.
    Typical probelm with any gateway architecture is that the service is available without any security enforcement when accessed directly.
    You can enforce rules at your network layer to allow access to the App server only from Gateway.
    When you have the liberty to use OWSM or any other WS-Security products, i would stay away from any extensions. Two things to consider
    The next BPEL developer in your project may not be aware of Security extensions
    Centralizing Security enforcement will make your development and security operations as loosely coupled and addresses scalability.
    Thanks
    Ram

  • What are the different messages that OCOD may return for a web service requ

    Hi,
    Please give me feedback on the questions below, concerning the limitations of web service, and messages which may return.
    1) What are the different messages that OCOD may return for a web service request? I need all the messages of all the scenarios which OCOD can meet, for example:
    - If the file is rejected (Error message)
    - If the file is accepted (to clarify that the records have been created)
    - if the application is unavailable (maintenance or web service is down)
    2) How many request can we send simultaneously, and how many records we can make per second?
    Best Regard,

    Have a look here Jquery slideshow tutorial for beginners | WEBTUTS

  • Mapping input values for a web service connection to a range of cells

    I've created a web service connection in Xcelsius data manager. My web service requires an array of integer as input parameter. How do I map input values for a web service connection to read from a range of cells in the spreadsheet, e.g. $A$2:$A$20, in similar way of mapping output values to write to a range of cells in the spreadsheet?
    For output values of the web service, I can specify to map the output values to write to a range of cells. However, it doesn't seem to work for reading the input values.
    I can map input values for each node to a single cell, e.g. $A$2, in the spreadsheet. However, when I set the "Read From" field to a range of cells, e.g. $A$2:$A$20, it only reads in the first value in the range.
    Is there any way that we can do this mapping for input values as we do for output values?
    Your assistance is very much appreciated.
    Regards,
    Van

    Van,
    There is a workaround for that...
    Example:
    My Webservice accepts input data range in a specific format with " :" symbol, i.e. 072008:082008
    Now what i do is
    A1 = 072008
    A2 = 082008
    A3 = CONCATENATE(A1,":",A2)
    so A3 = 072008:082008
    Now i map the input value in web service to cell A3
    P.S have 2 input box components and map it to cells A1 and A2, i.e you are giving users an  option to enter the range of values...then web service will capture the range and refreshes data with the range of values user entered.
    hope this helps..
    -Anil

  • Using Identity Management for Securing Web Services

    My goal is to associate my services with an Oracle Internet Directory. I made some attempts to set up SAML authentication for the web services, but it didn't have the right outcome.
    (My identity management server and OID is up and running and I have successfully made authentication modules for other web applications)
    Here is what I did:
    1. I wrote a simple java file, used jdeveloper tools to create and deploy it as a web service to OC4J. I associated an identity management server with this service through OC4J web tools as security provider.
    2. I made a data control for the web service and put it in an ADF application . (client)
    3. I deployed the client project(2) to OC4J.
    I could use the web service through the page.
    Then
    I secured the webservice to expect SAML for authentication.
    Surprisingly, the client could still communicate with the webservice, Why? Shouldn't it have rejected the request because of the problem in SAML token? (The proxy and the data control were not secured, and didn't provide any SAML tokens)
    4.
    I added login page to my client project (through ADF security wizard). It used idenity management for authentication successfully. login process completes and web service data control is displayed.
    5. I want the authentication information to be propagated through the page so that the web service receives the data and uses Identity Management.
    I know I should add <property name="oracle.security.wss.propagate.identity" value ="true"/>
    to one of the configuration files, but don't know where exactly.
    Best Regards,
    Farbod

    It doesnt matter whether the service is invoked as part of your larger process or not, if it is performing any business critical operation then it should be secured.
    The idea of SOA / designing services is to have the services available so that it can be orchestrated as part of any other business process.
    Today you may have secured your parent services and tomorrow you could come up with a new service which may use one of the existing lower level services.
    If all the services are in one Application server you can make the configuration/development environment lot easier by securing them using the Gateway.
    Typical probelm with any gateway architecture is that the service is available without any security enforcement when accessed directly.
    You can enforce rules at your network layer to allow access to the App server only from Gateway.
    When you have the liberty to use OWSM or any other WS-Security products, i would stay away from any extensions. Two things to consider
    The next BPEL developer in your project may not be aware of Security extensions
    Centralizing Security enforcement will make your development and security operations as loosely coupled and addresses scalability.
    Thanks
    Ram

  • Best practice for consuming web services

    Hi
    we are consuming web service in orchestration by "Add Generated Item".By using this option it creates 1 orch,1xsd file and some bindings.
    we have different projects for schemas,maps and orchestration under our solution in visual studio.
    Now i need to know that what will be the best practice for consuming web service in orchestration i mean in which project should i use "add generated item" (in orchstration project or in schemas project) coz it generates both 1 orch and 1
    schema.
    thanks

    From a service orientation perspective you should abstract the service artifacts from the other artifacts. Otherwise it will be very difficult to update the service interface without affecting the other artifacts. For example you don't want to have to redeply
    your entire application if only one field changes in the service you consume.
    So I typically generate the items, remove the unnecessary stuff, and put them in a separate project.
    Depending on the control you have over the services you want to consume, it would even be better to create another layer of abstraction. By that I mean create your own interface (schema) and map that one to the one the service exposes. This basically
    is only necessary if you consume external services that are beyond your control. By abstracting the interface it exposes, you limit the impact of changes of that interface on the rest of your system. All changes are abstracted behind your own interface.
    If you consume internal services, you can probably control the way the interface is defined. In a service oriented world all internal services expose a well known interface, based on the domain objects you have within your organisation.
    Jean-Paul Smit | Didago IT Consultancy
    Blog |
    Twitter | LinkedIn
    MCTS BizTalk 2006/2010 + Certified SOA Architect
    Please indicate "Mark as Answer" if this post has answered the question.

  • Mapping DTO to XML Schema for Worship Web Service

    I have a number of DTOs that my application uses. This application
    needs to consume a number of document style web services created in
    workshop. When I generate the proxies for this web service, it creates
    Java beans for the XML schema types defined in the web service.
    Is there a way to get the workshop stubs to map my DTOs to XML schema?
    If not, what is the best way to do this mapping? Thanks.
    Mike

    I have a number of DTOs that my application uses. This application
    needs to consume a number of document style web services created in
    workshop. When I generate the proxies for this web service, it creates
    Java beans for the XML schema types defined in the web service.
    Is there a way to get the workshop stubs to map my DTOs to XML schema?
    If not, what is the best way to do this mapping? Thanks.
    Mike

  • Mapping DTO to XML Schema for Workshop Web Service

    I have a number of DTOs that my application uses. This application
    needs to consume a number of document style web services created in
    workshop. When I generate the proxies for this web service, it creates
    Java beans for the XML schema types defined in the web service.
    Is there a way to get the workshop stubs to map my DTOs to XML schema?
    If not, what is the best way to do this mapping? Thanks.
    Mike

    I have a number of DTOs that my application uses. This application
    needs to consume a number of document style web services created in
    workshop. When I generate the proxies for this web service, it creates
    Java beans for the XML schema types defined in the web service.
    Is there a way to get the workshop stubs to map my DTOs to XML schema?
    If not, what is the best way to do this mapping? Thanks.
    Mike

  • Dynamic destinations for adaptive web service in webdynpro for java

    Hi,
    Please advice me on how to create dynamic destination for adaptive web service model in webdynpro for java.
    Regards,
    Patana

    Hi,
    If this is the case, then use the HTTP destination for this.
    What you need to do is:
    1. Create one HTTP destination in visual administrator at services-> Destinations. Provide HTTP url of the your web service and the security options.
    2. Specify this HTTP destination in the code before executing web service model.
    Write following code for that:
    wdContext.current<node name>Element().modelobject()._setHTTPDestination(<Specify HTTP destination name>);
    Then execute your web service model.
    Now, whenever you want to change the server on which your web service is running, make change in the HTTP Destination in visual administrator.
    Refer this link,
    https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/b2bc0932-0d01-0010-6d8e-cff1b2f22bc7
    Regards,
    Sunaina Reddy T

  • Creating SOAP Receiver comm.channel for axis web service

    Hi,
    I created Soap Receiver comm. channel fro Axis web service like below:
    *Target URL* : http://<IP>:<Port>/<x>/service
    *User:* <user>
    *Password :* <password>
    *SOAP Action:* <target namespace>/method
    when i drive PI Message that use Soap Receiver it get error below
    I do same method for .Net web service, it runs properly.
    How can i solve this problem?
    Error
    <?xml version="1.0" encoding="UTF-8" standalone="yes" ?>
    <!--  Call Adapter -->
    <SAP:Error xmlns:SAP="http://sap.com/xi/XI/Message/30" xmlns:SOAP="http://schemas.xmlsoap.org/soap/envelope/" SOAP:mustUnderstand="1">
      <SAP:Category>XIServer</SAP:Category>
      <SAP:Code area="MAPPING">NO_MAPPINGPROGRAM_FOUND</SAP:Code>
      <SAP:P1>Object ID B3004965647F340C997B5F2CC9EA7E22 Software Component 4CF44F80503211DEB2A0D3F40A194B29</SAP:P1>
      <SAP:P2 />
      <SAP:P3 />
      <SAP:P4 />
      <SAP:AdditionalText />
      <SAP:Stack>Mapping program is not available in runtime cache: Object ID B3004965647F340C997B5F2CC9EA7E22 Software Component 4CF44F80503211DEB2A0D3F40A194B29</SAP:Stack>
      <SAP:Retry>M</SAP:Retry>
      </SAP:Error>

    Hi,
    I did all  but nothing changed?
    I have doubt about axis side. Because respose like below.
    <SAP:Error xmlns:SAP="http://sap.com/xi/XI/Message/30" xmlns:SOAP="http://schemas.xmlsoap.org/soap/envelope/" SOAP:mustUnderstand="1">
      <SAP:Category>Application</SAP:Category>
      <SAP:Code area="UNKNOWN">APPLICATION_ERROR</SAP:Code>
      <SAP:P1 />
      <SAP:P2 />
      <SAP:P3 />
      <SAP:P4 />
      <SAP:AdditionalText>application fault</SAP:AdditionalText>
      <SAP:ApplicationFaultMessage namespace="http://xml.apache.org/axis/">hostname</SAP:ApplicationFaultMessage>
      <SAP:Stack />
      <SAP:Retry>M</SAP:Retry>
      </SAP:Error>
    May be Soap Receiver setting for axis web service must be different.
    Thanks.

  • Service wrapper for a web service

    Hi All,
    How can I create a service wrapper for a web service.
    Thanks
    Gopal

    Create a Message/ Service Interface for your web-service....it is the service wrapper.

  • Location of the JARs for BO Web services SDK

    Hi,
    I want to use the web services SDK to access the crystal reports on a crystal reports 2011 server. I added all the JARs in the  C:\Program Files (x86)\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\java\lib folder but none of them contain classes from the com.businessobjects.dsws package which is root package for the web services SDK.
    My questions:
    Where are the JARs located  ?
    Is there sample code that excerices the usage of the BO BI 4.0 web services SDK ?
    Thanks

    Hi Asif,
    Please have a look over below link
    Web Services Sample Code: -
    [https://wiki.sdn.sap.com/wiki/display/BOBJ/JavaWebServicesSDKSamples|https://wiki.sdn.sap.com/wiki/display/BOBJ/JavaWebServicesSDKSamples]
    Web Services Developer Guide:
    [http://help.sap.com/businessobject/product_guides/boexir4/en/xi4_wssdk_dg_en.zip|http://help.sap.com/businessobject/product_guides/boexir4/en/xi4_wssdk_dg_en.zip]
    Getting Started with Web Service sdk:
    [http://wiki.sdn.sap.com/wiki/display/BOBJ/GettingStartedwiththeWebServicesSDK|http://wiki.sdn.sap.com/wiki/display/BOBJ/GettingStartedwiththeWebServicesSDK]
    Regards,
    Rameez

Maybe you are looking for

  • Exchange 2010 coexist with exchange 2013

    Hi All , Planning to have a coexistence scenario in my environment which is mentioned below Exchange 2010 - ambiguous url in place - OA enabled  For mapi/rpc traffic - mail.domain.in -  exchange 2010 For https traffic - mail.domain.in - exchange 2010

  • Nested tables recursive SQL

    Hello, I am trying to figure out why I get the following error message ORA-00604: error occurred at recursive SQL level 1 ORA-22914: DROP of nested tables not supported I am using the TOAD tool to create tables using CTAS and I have managed to create

  • Is it possible to select a subset of rows from a Numbers table?

    I know I can use the COUNTIF, SUMIF, AVERAGEIF functions to operate on a subset of rows in a Numbers table based on a condition. What I would like is to be able to use other functions, for example the MAX and MIN functions. For example, give a table

  • Record printing on two pages

    When there is not enough space at the end of a page and record is long, part of the data is printed on next page. This seems to be default behaviour. Is there a way to print the whole of last record on next page instead of partially printing on two p

  • Adobe issues on my laptop

    i have both Adobe flash player 11 activeX and Adobe flsh player 11 plugin, do i need both and whats the difference between both, also I have Adobe shockwave player 12.0 and yet when i play games on facebook i will at times get kick off my game as i r