Web Service security is not set up on this component

Hi Friends,
In RWB, when I click on component monitoring->Integration Engine, I got "Web Service security is not set up on this component"
I want to send message using soap adapter by encrypting and signing it. for this purpose I need to configure the Web Service Security.
Can someone please provide some documentation or link on how to set up this Web Service Security?
thankx

Hi,
there is a chapter - Security Configuration at Message Level
in XI config guide which specifies everything you need - this is what you need
so I hope no further explanations are necessary
Regards,
Michal Krawczyk

Similar Messages

Web Service Security is not working when migrating application from Tomcat

Hi,
We have a application running successfully in tomcat6 It calls a Webservice call through TIBCO BW interface.
When we deployed the same WAR file in Weblogic 10.3.2, it gives me a error on Prefix[ds] not able to locate namespace URI not found error.
IN Tomcat, its a existing application uses AxilUtility to get the soap messages after signing document for bothe encyption and decryption.
Please anybody help me out, is there any other jars needs to be locate in Weblogic to run this application. Its fine with Tomcat and gives error in Weblogic10.3.2
Please help me out
Thanks in advance

Hi Rajkumar,
Thanks for you reply. Please let me now if you have any ideas..thnks a lot....
Below is the error message what i am getting through weblogic console.
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppS
ervletContext.java:2202)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletC
ontext.java:2108)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.j
ava:1432)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
Caused by: java.io.IOException: error:weblogic.xml.stream.XMLStreamException: Pr
efix [ds] used without binding it to a namespace URI
at weblogic.xml.xmlnode.XMLNode.read(XMLNode.java:744)
at weblogic.xml.xmlnode.XMLNode.readChildren(XMLNode.java:1054)
at weblogic.xml.xmlnode.XMLNode.read(XMLNode.java:742)
at weblogic.xml.xmlnode.XMLNode.readChildren(XMLNode.java:1054)
at weblogic.xml.xmlnode.XMLNode.read(XMLNode.java:742)
at weblogic.xml.xmlnode.XMLNode.readChildren(XMLNode.java:1054)
at weblogic.xml.xmlnode.XMLNode.read(XMLNode.java:742)
at weblogic.xml.xmlnode.XMLNode.readInternal(XMLNode.java:713)
at weblogic.xml.xmlnode.XMLNode.readInternal(XMLNode.java:722)
at weblogic.xml.xmlnode.NodeBuilder.build(NodeBuilder.java:44)
at weblogic.xml.xmlnode.NodeBuilder.<init>(NodeBuilder.java:24)
at weblogic.webservice.core.soap.SOAPEnvelopeImpl.<init>(SOAPEnvelopeImp
l.java:154)
at weblogic.webservice.core.soap.SOAPPartImpl.getEnvelope(SOAPPartImpl.j
ava:200)
... 78 more
java.lang.NullPointerException
at java.io.ByteArrayInputStream.<init>(ByteArrayInputStream.java:89)
at com.db.alat.wss.WSSClient.postSoapMessage(WSSClient.java:358)
at com.db.alat.wss.WSSClient.WSSEncDec(WSSClient.java:102)
at com.db.alat.service.CollateralAccounts.getAccountsSummary(CollateralA
ccounts.java:55)
at com.db.alat.CH.CHMapper.getGroup(CHMapper.java:281)
at com.db.alat.BackingBeans.BorrowerDetailsBean.getClientDataCH(Borrower
DetailsBean.java:1034)
at com.db.alat.BackingBeans.BorrowerDetailsBean.<init>(BorrowerDetailsBe
an.java:766)
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstruct
orAccessorImpl.java:39)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingC
onstructorAccessorImpl.java:27)
at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
at java.lang.Class.newInstance0(Class.java:355)
at java.lang.Class.newInstance(Class.java:308)
at com.sun.faces.mgbean.BeanBuilder.newBeanInstance(BeanBuilder.java:186
at com.sun.faces.mgbean.BeanBuilder.build(BeanBuilder.java:106)
at com.sun.faces.mgbean.BeanManager.createAndPush(BeanManager.java:368)
at com.sun.faces.mgbean.BeanManager.create(BeanManager.java:222)
at com.sun.faces.el.ManagedBeanELResolver.getValue(ManagedBeanELResolver
.java:86)
at javax.el.CompositeELResolver.getValue(CompositeELResolver.java:143)
at com.sun.faces.el.FacesCompositeELResolver.getValue(FacesCompositeELRe
solver.java:72)
at com.sun.el.parser.AstIdentifier.getValue(AstIdentifier.java:68)
at com.sun.el.parser.AstValue.getValue(AstValue.java:107)
at com.sun.el.ValueExpressionImpl.getValue(ValueExpressionImpl.java:192)
And i have the loggers which gives the system out statements. You can identify the difference in both logs is the sys out ...Convert Signed Document back to Soap Message.
IN tomcat i am getting the return object after calling the method
SOAPMessage signedMsg = (SOAPMessage) AxisUtil.toSOAPMessage(signedDoc);
But in Weblogic i am getting NULL. You can c in SOAPMessageImpl[SOAPPartImpl[null]]
Tomocat Logs:
Message Context..................1.........................org.apache.axis.MessageContext@c393a1
2011-04-21 05:35:56,906 8672 INFO [com.db.alat.wss.WSSClient] (http-8080-1:) Unsigned Envelop............2.........................<?xml version="1.0" encoding="UTF-8"?><SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><SOAP-ENV:Header/><SOAP-ENV:Body><RqDetail xmlns="http://schemas.db.com/esb/emf/pwm/ALAT/Services/CLIENT-getCandidateCollateralAccounts-RR" xmlns:cli="http://schemas.db.com/esb/emf/pwm/ClientElements" xmlns:com="http://schemas.db.com/esb/emf/pwm/CommonAggregates" xmlns:com1="http://schemas.db.com/esb/emf/pwm/CommonElements">
<cli:ClientID BusinessUnit="CH">7cf8e78f86212a65398d50766de95a762318d3eee1350c1105d4b751825a690b</cli:ClientID>
<cli:ClientType>B</cli:ClientType>
<com:Field>
<com1:Name>INITIALPAGE</com1:Name>
<com1:Value>YES</com1:Value>
</com:Field>
</RqDetail></SOAP-ENV:Body></SOAP-ENV:Envelope>
2011-04-21 05:35:56,906 8672 INFO [com.db.alat.wss.WSSClient] (http-8080-1:) DOCUMENT is .......:[#document: null]
2011-04-21 05:35:56,906 8672 INFO [com.db.alat.wss.WSSClient] (http-8080-1:) KEYSTORE is .......:java.security.KeyStore@127fa03
2011-04-21 05:35:57,078 8844 INFO [com.db.alat.wss.WSSClient] (http-8080-1:) ..................................3.........................
2011-04-21 05:35:57,094 8860 INFO [com.db.alat.wss.WSSClient] (http-8080-1:) ..................................4.........................
2011-04-21 05:35:57,297 9063 INFO [com.db.alat.wss.WSSClient] (http-8080-1:) Signed Document is .......:[#document: null]
2011-04-21 05:35:57,437 9203 INFO [com.db.alat.wss.WSSClient] (http-8080-1:) Convert Signed Document back to Soap Message .......:[email protected]33662
2011-04-21 05:35:57,469 9235 INFO [com.db.alat.wss.WSSClient] (http-8080-1:) ..................................5.........................
Weblogic Logs:
Message Context..................1.........................org.apache.axis.MessageContext@460d4
2011-04-26 01:15:45,859 2640 INFO [com.db.alat.wss.WSSClient] ([ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)':) Unsigned Envelop............2.........................<?xml version="1.0" encoding="UTF-8"?><SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><SOAP-ENV:Header/><SOAP-ENV:Body><RqDetail xmlns="http://schemas.db.com/esb/emf/pwm/ALAT/Services/CLIENT-getCandidateCollateralAccounts-RR" xmlns:cli="http://schemas.db.com/esb/emf/pwm/ClientElements" xmlns:com="http://schemas.db.com/esb/emf/pwm/CommonAggregates" xmlns:com1="http://schemas.db.com/esb/emf/pwm/CommonElements">
<cli:ClientID BusinessUnit="CH">2b285aa27f1899d87de00f04099506ad24aaf1c18b0b6b071a8acd19b1732fb9</cli:ClientID>
<cli:ClientType>B</cli:ClientType>
<com:Field>
<com1:Name>INITIALPAGE</com1:Name>
<com1:Value>YES</com1:Value>
</com:Field>
</RqDetail></SOAP-ENV:Body></SOAP-ENV:Envelope>
2011-04-26 01:15:45,875 2656 INFO [com.db.alat.wss.WSSClient] ([ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)':) DOCUMENT is .......:[#document: null]
2011-04-26 01:15:45,875 2656 INFO [com.db.alat.wss.WSSClient] ([ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)':) KEYSTORE is .......:java.security.KeyStore@167d3c4
2011-04-26 01:15:45,984 2765 INFO [com.db.alat.wss.WSSClient] ([ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)':) ..................................3.........................
2011-04-26 01:15:46,016 2797 INFO [com.db.alat.wss.WSSClient] ([ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)':) ..................................4.........................
2011-04-26 01:15:46,234 3015 INFO [com.db.alat.wss.WSSClient] ([ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)':) Signed Document is .......:[#document: null]
2011-04-26 01:15:46,313 3094 INFO [com.db.alat.wss.WSSClient] ([ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)':) Convert Signed Document back to Soap Message .......:SOAPMessageImpl[SOAPPartImpl[null]]
2011-04-26 01:15:46,328 3109 INFO [com.db.alat.wss.WSSClient] ([ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)':) ..................................5.........................

Web Service Security not configured on this component.

Hi Experts,
                       Before configuring the scenario, i went to RWB to check whether the comopnents are in active mode or not.
                              Integration Engine XID
                              Business Process Engine XID
                              Mapping Runtime XID
                              Adapter Engine XID
                              Integration Engines
                      All components are in Green mode Except Integration Engine, The Integration is in yellow mode
                       and shows the following details.
                     Details for 'Is Web service security available?'
                       Web Service Security not configured on this component.
Can you give the solution for this.

Hi,
                  1, While sending idoc from sapR/3 to PI , in r/3 sm58 shows the foll error:
"No service for system SAPQA,client 200 in integration directory"*
                           Even the Bussiness sytem pointing R/3.
From your initial post, it appears that you are using XID system and from above error, I believe you are trying to send the IDoc from QA system. R3 dev will communicate to PI dev, so verify the partner profile and ports in your IDoc Header settings.
                     2, When i execute the tcode sm58 in PI   it shows the following error:
                               "Syntax error in program SAPLSXI_AC_CACHE _REFERESH"
I am kinda confused how come sm58 tcode can show an error for this program, as sm58 is for checking the transactional RFCs and SAPLSXI_AC_CACHE_REFERESH is for XI Cache refresh for Alert Category. Might be some one else can explain this.
                     3, WHEN I EXECUTE THE tcode SXI_CACHE
                                         Under the *STATUS OF RUNTIME CACHE
                                                       Unable to refresh cache contents
                                                       Error during last attempt toreferesh cache
                                                         (red colour triangle leading above both)
Check this SAP Note 764176, might help in your situation.
Worth reading - http://help.sap.com/saphelp_nw04/helpdata/en/0d/28e1c20a9d374cbb71875c5f89093b/frameset.htm
                    4, Still there is no messages in Message monitoring.
Obviously because of error # 1, you are unable to send IDocs, how come you expect messages to reach PI ... strange, isn't it
Hope this helps.
Regards,
Neetesh

Details for 'Is Web service security available?'

Hi i am working on scenario rfc to webservice.Its as secued webserivce i need to do ssl configuration.
In component monitoring..for the integration engine its in yellow...
Details for 'Is Web service security available?'
Communication error Proxy calls on the sender or receiver side are not permitted on the IS (client)
can any one please help me out..
Thanks
sriram

I have already installed certificates on the j2ee engine & i have given the paramaters for keystore entry & keystore value.Still i have the same error
In component monitoring
For integration engine
Details for 'Is Web service security available?'
Communication error Proxy calls on the sender or receiver side are not permitted on the IS (client)
In message monitoring
Audit Log for Message: f614df00-e9e0-11da-95ef-0004ac577b32
Time Stamp Status Description
2006-05-22 15:18:58 Success The message was successfully received by the messaging system. Profile: XI URL: http://saptst01:51000/MessagingSystem/receive/AFW/XI
2006-05-22 15:18:58 Success Using connection AFW. Trying to put the message into the request queue.
2006-05-22 15:18:58 Success Message successfully put into the queue.
2006-05-22 15:18:58 Success The message was successfully retrieved from the request queue.
2006-05-22 15:18:58 Success The message status set to DLNG.
2006-05-22 15:18:58 Success Delivering to channel: ZCH_VERISIGNPPGR
2006-05-22 15:18:58 Success SOAP: request message entering the adapter
2006-05-22 15:18:58 Success SOAP: call failed
2006-05-22 15:18:58 Error SOAP: error occured: iaik.security.ssl.SSLException: Peer sent alert: Alert Fatal: illegal parameter
2006-05-22 15:18:58 Error Exception caught by adapter framework: Peer sent alert: Alert Fatal: illegal parameter
Can any one please help me out.
Thanks
sriram

Is Web service security available?

Dear Experts,
In RWB, when i click on Integration Engine(in component monitoring) i get a yellow triangle next to it instead of green. Result of self test says that
Is Web service security available?
"Communication error Proxy calls are not permitted on sender or receiver side on the IS (client)".
Can u guys tell me the reason behing this.
Thanks & regards.

Hi,
Check if you have selected any security level for the WebService or may be it is across the firewall. Probably you need to install the related certificates and have to configure the SSL layer.
refer
You need to setup SSL layer for HTTPS endpoint.
Possible HTTP security levels are (in ascending order):
HTTP without SSL
HTTP with SSL (= HTTPS), but without client authentication
HTTP with SSL (= HTTPS) and with client authentication
Use transaction STRUST to set up an SAP Web AS ABAP engine as HTTPS server. If not already done, you have to import a certificate generated by a trusted CA identifying the SAP Web AS. In addition, you have to enable the HTTPS port in the ICM (Internet Communication Manager).
http://help.sap.com/saphelp_nw04/helpdata/en/14/ef2940cbf2195de10000000a1550b0/frameset.htm
http://help.sap.com/saphelp_nw04/helpdata/en/ff/7932e4e9c51c4fa596c69e21151c7d/content.htm
http://help.sap.com/saphelp_nw04/helpdata/en/13/4a3ad42ae78e4ca256861e078b4160/content.htm
http://help.sap.com/saphelp_nw04/helpdata/en/3a/7cddde33ff05cae10000000a128c20/content.htm
http://help.sap.com/saphelp_nw04/helpdata/en/0a/0a2e0fef6211d3a6510000e835363f/content.htm
General guide
https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/a09f3d8e-d478-2910-9eb8-caa6516dd7d9
Message level security
https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/d024ca8e-e76e-2910-c183-8ea4ba681c51
Thanks
Swarup

Web Service Security username token...

Hi All,
I am presently trying to build in security authentication into my web service using the username-token and the verify-username-token tokens.
My WS_stub.xml on the proxy side looks like the following:-
other tokens
<security>
<inbound/>
<outbound>
<username-token name="NAME" password="PASS" password-type="DIGEST" add-nonce="true" add-created="true"/>
</outbound>
</security>
other tokens
and my oracle-webservices.xml on hte web service side looks like the following:-
other tokens
<security>
<inbound>
<verify-username-token name="NAME" password="PASS" password-type="DIGEST"
require-nonce="true"
require-created="true"/>
</inbound>
<outbound/>
</security>
other tokens
I have set the javacache.xml for the embedded OC4J location as follows:-
</persistence>
<max-objects>1000</max-objects>
<max-size>48</max-size>
<clean-interval>60</clean-interval>
</cache-configuration>
When I run the web service followed by the proxy I get the following error at the proxy side.
javax.xml.rpc.soap.SOAPFaultException: Policy requires DIGEST passwords
     at oracle.j2ee.ws.client.StreamingSender._raiseFault(StreamingSender.java:568)
     at oracle.j2ee.ws.client.StreamingSender._sendImpl(StreamingSender.java:396)
     at oracle.j2ee.ws.client.StreamingSender._send(StreamingSender.java:112)
     at com.airliquide.smartcyl.runtime.TrailerWSSoapHttp_Stub.addtrailerinfo(TrailerWSSoapHttp_Stub.java:76)
     at com.airliquide.smartcyl.TrailerWSSoapHttpPortClient.addtrailerinfo(TrailerWSSoapHttpPortClient.java:60)
     at com.airliquide.smartcyl.TrailerWSSoapHttpPortClient.main(TrailerWSSoapHttpPortClient.java:47)
Also it gives exceptions with repect to nonces such as "Policy requires nonce". Please could someone tell me how to setup an nonce in the xml files above and how to use nonce in web services?
Regards,
Lester.

Hi All,
Presently I am trying to set the security for my web service and am receiving the following error when doing so at the proxy side:-
oracle.j2ee.ws.common.soap.fault.SOAP11FaultException: java.lang.NullPointerException
     at oracle.j2ee.ws.common.mgmt.runtime.InterceptorChainImpl.createSoapFaultException(InterceptorChainImpl.java:338)
     at oracle.j2ee.ws.common.mgmt.runtime.InterceptorChainImpl.handleException(InterceptorChainImpl.java:256)
     at oracle.j2ee.ws.common.mgmt.runtime.InterceptorChainImpl.handleRequest(InterceptorChainImpl.java:128)
     at oracle.j2ee.ws.common.mgmt.runtime.AbstractInterceptorPipeline.handleRequest(AbstractInterceptorPipeline.java:87)
     at oracle.j2ee.ws.client.StubBase._preRequestSendingHook(StubBase.java:699)
     at oracle.j2ee.ws.client.StreamingSender._sendImpl(StreamingSender.java:147)
     at oracle.j2ee.ws.client.StreamingSender._send(StreamingSender.java:112)
     at com.airliquide.smartcyl.runtime.TrailerWSSoapHttp_Stub.addtrailerinfo(TrailerWSSoapHttp_Stub.java:76)
     at com.airliquide.smartcyl.TrailerWSSoapHttpPortClient.addtrailerinfo(TrailerWSSoapHttpPortClient.java:62)
     at com.airliquide.smartcyl.TrailerWSSoapHttpPortClient.main(TrailerWSSoapHttpPortClient.java:49)
Process exited with exit code 0.
My WS_Stub.xml file under runtime of the proxy project looks as follows:-
<?xml version="1.0" encoding="UTF-8"?>
<oracle-webservice-clients xmlns:xsi='http://www.w3.org/2001/XMLSchema-instance' xsi:noNamespaceSchemaLocation='http://xmlns.oracle.com/oracleas/schema/oracle-webservices-client-10_0.xsd'>
<webservice-client>
<service-qname namespaceURI="http://trailerinfo/" localpart="TrailerWS"/>
<port-info>
<wsdl-port namespaceURI="http://trailerinfo/" localpart="TrailerWSSoapHttpPort"/>
<runtime enabled="security">
<security>
<key-store name="mytestkeystore" store-pass="mytestkeystore" path="C:\Temp\mytestkeystore.jks"/>
<signature-key key-pass="sampwd" alias="sam"/>
<encryption-key key-pass="davepwd" alias="dave"/>
<inbound>
<verify-signature>
<signature-methods>
<signature-method>DSA-SHA1</signature-method>
<signature-method>RSA-MD5</signature-method>
<signature-method>RSA-SHA1</signature-method>
</signature-methods>
<tbs-elements>
<tbs-element local-part="Body" name-space="http://schemas.xmlsoap.org/soap/envelope/"/>
</tbs-elements>
<verify-timestamp created="true" expiry="28800"/>
</verify-signature>
<decrypt>
<encryption-methods>
<encryption-method>AES-128</encryption-method>
<encryption-method>AES-256</encryption-method>
<encryption-method>3DES</encryption-method>
</encryption-methods>
<tbe-elements>
<tbe-element local-part="Body" name-space="http://schemas.xmlsoap.org/soap/envelope/" mode="CONTENT"/>
</tbe-elements>
</decrypt>
</inbound>
<outbound>
<username-token password-type="PLAINTEXT" add-nonce="false" add-created="true"/>
<signature>
<signature-method>RSA-SHA1</signature-method>
<tbs-elements>
<tbs-element local-part="Body" name-space="http://schemas.xmlsoap.org/soap/envelope/"/>
</tbs-elements>
<add-timestamp created="true" expiry="28800"/>
</signature>
<encrypt>
<recipient-key alias="dave"/>
<encryption-method>3DES</encryption-method>
<keytransport-method>RSA-1_5</keytransport-method>
<tbe-elements>
<tbe-element local-part="Body" name-space="http://schemas.xmlsoap.org/soap/envelope/" mode="CONTENT"/>
</tbe-elements>
</encrypt>
</outbound>
</security>
</runtime>
<operations>
<operation name='addtrailerinfo'>
<runtime>
<security>
<inbound/>
<outbound>
<username-token password-type="PLAINTEXT" add-nonce="false" add-created="true"/>
<signature>
<signature-method>RSA-SHA1</signature-method>
<tbs-elements>
<tbs-element local-part="Body" name-space="http://schemas.xmlsoap.org/soap/envelope/"/>
</tbs-elements>
<add-timestamp created="true" expiry="28800"/>
</signature>
<encrypt>
<recipient-key alias="test"/>
<encryption-method>3DES</encryption-method>
<keytransport-method>RSA-1_5</keytransport-method>
<tbe-elements>
<tbe-element local-part="Body" name-space="http://schemas.xmlsoap.org/soap/envelope/" mode="CONTENT"/>
</tbe-elements>
</encrypt>
</outbound>
</security>
</runtime>
</operation>
</operations>
</port-info>
</webservice-client>
</oracle-webservice-clients>
My oracle-webservices.xml file looks like the following:-
<oracle-webservices xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/oracle-webservices-10_0.xsd">
<webservice-description name="TrailerWS">
<port-component name="TrailerWSSoapHttpPort">
<runtime enabled="security">
<security>
<key-store name="mytestkeystore" store-pass="mytestkeystore"
path="META-INF/mytestkeystore.jks"/>
<signature-key key-pass="sampwd" alias="sam"/>
<encryption-key key-pass="davepwd" alias="dave"/>
<inbound>
<verify-username-token password-type="PLAINTEXT"
require-nonce="false"
require-created="true"/>
<verify-signature>
<signature-methods>
<signature-method>DSA-SHA1</signature-method>
<signature-method>RSA-MD5</signature-method>
<signature-method>RSA-SHA1</signature-method>
</signature-methods>
<tbs-elements>
<tbs-element local-part="Body"
name-space="http://schemas.xmlsoap.org/soap/envelope/"/>
</tbs-elements>
<verify-timestamp created="true" expiry="28800"/>
</verify-signature>
<decrypt>
<encryption-methods>
<encryption-method>AES-128</encryption-method>
<encryption-method>AES-256</encryption-method>
<encryption-method>3DES</encryption-method>
</encryption-methods>
<tbe-elements>
<tbe-element local-part="Body"
name-space="http://schemas.xmlsoap.org/soap/envelope/"/>
</tbe-elements>
</decrypt>
</inbound>
<outbound>
<signature>
<signature-method>RSA-SHA1</signature-method>
<tbs-elements>
<tbs-element local-part="Body"
name-space="http://schemas.xmlsoap.org/soap/envelope/"/>
</tbs-elements>
<add-timestamp created="true" expiry="28800"/>
</signature>
<encrypt>
<recipient-key key-pass="" alias="dave"/>
<encryption-method>3DES</encryption-method>
<tbe-elements>
<tbe-element local-part="Body"
name-space="http://schemas.xmlsoap.org/soap/envelope/"/>
</tbe-elements>
</encrypt>
</outbound>
</security>
</runtime>
<operations>
<operation name="addtrailerinfo"
input="{http://trailerinfo/}addtrailerinfoElement">
<runtime>
<security>
<inbound>
<verify-username-token require-nonce="false"
require-created="true"
password-type="PLAINTEXT"/>
<verify-signature>
<signature-methods>
<signature-method>DSA-SHA1</signature-method>
<signature-method>RSA-MD5</signature-method>
<signature-method>RSA-SHA1</signature-method>
</signature-methods>
<tbs-elements>
<tbs-element local-part="Body"
name-space="http://schemas.xmlsoap.org/soap/envelope/"/>
</tbs-elements>
<verify-timestamp created="true" expiry="28800"/>
</verify-signature>
<decrypt>
<encryption-methods>
<encryption-method>AES-128</encryption-method>
<encryption-method>AES-256</encryption-method>
<encryption-method>3DES</encryption-method>
</encryption-methods>
<tbe-elements>
<tbe-element local-part="Body"
name-space="http://schemas.xmlsoap.org/soap/envelope/"
mode="CONTENT"/>
</tbe-elements>
</decrypt>
</inbound>
<outbound/>
</security>
</runtime>
</operation>
</operations>
</port-component>
</webservice-description>
</oracle-webservices>
I checked this exception out at hte following link
http://www.oracle.com/technology/products/jdev/howtos/1013/wssecure/10gwssecurity_howto.html#keystore
which lists hte instructions to secure a web service. The trouble shooting section lists this exception and says it might be due to a timestamp created flag being set to false. However I have made sure that both the client and service side xml files above have this set to true and are matching.
However I am still not able to eliminate this error. Please could someone help me out? This is urgent.
Regards,
Lester.

[OSB Kernel:398133]The service is based on WSDL with Web Services Security

Team,
I need to use the wsdl given by external client. When I create a osb business service, I am receiving the below error.
OSB Kernel:398133]The service is based on WSDL with Web Services Security Policies that are not natively supported by Oracle Service Bus. Please select OWSM Policies - From OWSM Policy Store option and attach equivalent OWSM security policy. For the Business Service, either you can add the necessary client policies manually by clicking Add button or you can let Oracle Service Bus automatically pick and add compatible client policies by clicking Add Compatible button. ...
WSDL:
http://personator.melissadata.net/v3/SOAP/ContactVerify
We don't have OWSM set up. Is there any workaround that I can use to connect to this service for OSB?

As a workaround, you can try to remove the Policy definition and reference from the copy you will import in OSB.
I would recommend to add OWSM to your domain. It's a straight forward process.
Regards,
Fabio.

How to make my Portal Web Service SECURED?

Hi Experts,
I created one portal Service and exposed it as Portal Web Service.
Everything is working fine, as i deployed my Portal Web Service on to the SAP J2EE Engine ie SAP Server.
I m able to access functions of Web Service from my StandAlone Java Application.
but the problem is my Web Service is not SECURED.
How can i make my Portal Web Service SECURED?
Please help me out.
Help will be appreciated and rewarded!!!!!

user13046122 wrote:
I have an old pl/sql "helper" package, originally written to make SOAP Web Service calls from the database - it uses UTL_HTTP to invoke the target services.
I now need to make SOAP Web Service calls - from an 8.1.7.4 database
But the version of UTL_HTTP inside 8.1.7.4 does not contain the functions needed in the helper package
Can anybody suggest a means of making SOAP Web Service calls from an 8.1.7.4 database ?I think you'll be very lucky to find anyone here who still has access to a version of Oracle that is that old.... I mean... that's like what? 15 years old at least? I'm surprised you've still got hardware that can run that.
It would probably help if you could post what code you've got and explain which function(s) it's complaining about, as I doubt people will want to guess.

Web Service Security Question

I have created a web service in the NetWeaver portal using a Portal Service. I have marked the service as requiring basic http authentication. However, when I call the web service from the Enterprise Portal Web Services Checker in NWDS it just let's me supply the params of the web service and no authentication. Any ideas?
I also noticed that my web service does not appear under the Web Services Container or Web Services Security section in Visual Administrator. Anybody have any idea why this is?
Thanks in advance.
Curtis

Hi Curtis,
My guess is that since you are logged into the Portal while calling this web service, it will use the current session cookie to authenticate automatically. I'm not sure on the second question, tried a restart?
Regards,
Raj

Web Service Security using OpenSSO

Hi,
I have a question regarding the usage of the OpenSSO in order to secure web services.
I have read the documentation and it states the OpenSSO enables web service security.
However, in the docs the main scenario is where the WSC and WSP are protected by the agent.
In my scenario, I would like to use agents only on the WSP side, but leave the implementation of the client side open to the partners. Partners will have the interface from the OpenSSO for the authentication and saml token retrieval. The client will have to create soap by itself. This is the case since the WSC are to be standalone applications on client computers.
To set the actual question; what are web service interfaces that OpenSSO as a STS offers for authentication and saml token issuance. Is there same sort of a referential architecture for this case where only the STS and WSP can be configured and the WSC implementation of the WSS left to the partner. Any pointers and directions would be appreciated.
Thanks!

Hi
Thanks for your reply
I downloaded OC4J 10.1.2.0.2 and ran it as as a standalone server.
I read the blog you linked and made the changes to the web.xml for the webservice. All of which I was able to do using the property palette in jdev 10.1.2.1.0.
I deployed my webservice to my oc4j standalone server and it appeared as a new application. I editied the orion-web.xml for the new application manually.
When I point my browser at the webservice I get the test page which allows me to pass parameters to the webserive. I invoke the webservice (which does a HTTP GET according to the test page) and the webservice runs. No user and password is needed though.
What is the expected behaviour? I was hoping that the webservice wouldn't run until I supplied the admin user name and password
paul

RWB - Integration Engine self test - web service security and proxy

Hi,
I am working with a new installation of PI 7.0. In the runtime workbench, under self test for integration engine, there is this error/warning:
""Details for 'Is Web service security available?'
Communication error: Proxy calls are not permitted on sender or receiver side on the IS (client)""
What exactly is the problem? Is there any additional configuration needed within PI to use proxies? We do not have the cryptographic toolkit installed. Is that nesseccary to work with proxies? We have done several other scenarios with RFC, MAIL, HTTP, etc and they work fine. If anyone else had this problem and managed to fix it, please let me know..
Thanks,
Lasya

You can ignore this error. It is simply a warning that says message level security has not been configured. Without message security too, you can do proxy communication.
But, if you want to configure messag level security, go through XI Config guide section 12.4.
Message was edited by: Jay

Cannot add web service security

I use cxf to create web services and decide to use weblogic web service security policy.
However, after deploying to weblogic 12c, I cannot see the security part in WSDL
Where is wrong?
import weblogic.jws.Policies;
import weblogic.jws.Policy;
@Component
@WebService(name="appServiceSecurity",
          serviceName="appServiceSrcSecurity",
          targetNamespace="http://com.ws.su"
@Policies({
               @Policy(uri="policy:Auth.xml", direction=Policy.Direction.inbound),
               @Policy(uri="policy:Sign.xml"),
               @Policy(uri="policy:Encrypt.xml")
@SOAPBinding(style = SOAPBinding.Style.DOCUMENT,
          use=SOAPBinding.Use.LITERAL,
          parameterStyle=SOAPBinding.ParameterStyle.WRAPPED
public class AppServiceSecurity{
...............

Thank you. But I still get error: java.lang.ClassCastException: weblogic.j2ee.descriptor.wl.WeblogicApplicationBeanImpl cannot be cast to weblogic.j2ee.descriptor.wl.WeblogicWebAppBean if I deploy this web application from a folder.
I export this web application as a war file using MyEclipse. However, after deploying this war file to weblogic 12c, I get error:
Root cause of ServletException.
weblogic.servlet.jsp.CompilationException: Failed to compile JSP /BZWeb/index1.jsp
index1.jsp:2:18: The include file was not found.
<%@ include file="/common/taglibs.jsp"%>
^-------------------^
index1.jsp:2:18: The include file was not found.
<%@ include file="/common/taglibs.jsp"%>
^-------------------^
However, taglibs.jsp is in the common folder.
How to modify the context root?
Thanks.

Can universe connect to restful web service which is not soap based

Can universe connect to restful webservice? I know it is allowed to connect to SOAP webservice. Currently is using WSDL1.1.
How about restful web service which does not have any wsdl file?

Hi,
there is a chapter - Security Configuration at Message Level
in XI config guide which specifies everything you need - this is what you need
so I hope no further explanations are necessary
Regards,
Michal Krawczyk

Configure Web Services Security in PI 7.1

Hi,
I'm getting an error message when using the XI adapter to send encrypted data. I am using SAP PI 7.1 EHP1 SP3.
*Communication error Proxy calls are not permitted on sender or receiver side on the IS (client)
Error during message security handling in outbound channel: Security profile 'Sign and Encrypt Message' *
According to my research I need to get my basis team to configure Web Services Security. I've found the Netweaver 04 configuration guide but I don't think this is relevant. The following help has information on web services security but little or no information.
http://help.sap.com/saphelp_nwpi711/helpdata/en/44/bc872fc60b7006e10000000a155369/frameset.htm
Is anyone able to point me towards the right document?

>
Park Saeiam wrote:
> Hi
>
> May be that partner you define Integration System not Application system in Business system. try define to application system.
>
> Thanks
> Park
or try use Business services instead.

ADOBE + Web Services Security

Hello
I am trying to follow the Adobe Document Service Configuration Guide.
In "Setting Up Basic Authentication in a Java Environment"
I am supposed to go to the Visual administratotr -> services -> web services Security - > Runtime to see the config files. Unfortunately, this Runtime tab is empty!!!
I would appreciate it if assistance could be provided as to how to set this RT environment.
Thanks
yuval

Hi Yuval,
Make sure that the service tcsecwssec~service is running.
To do this. Logon to Visual Admin
Server>Services>Deploy->Runtime Tab> Server>webservices_container->sap.com/tcsecwssec~app.
Stop and Start the application.
Then check if you are getting the desired entries in the Runtime Tab of web services security.
If need be restart your server.
Hope this helps.

Web Service security is not set up on this component

Similar Messages

Maybe you are looking for