Configuring Transport Authentication

Basic (Username/Password)

Configuration:

Procedure:

Configuration in the IDE (Web service)

...

       1.      Select a configuration of the Web service and open the security configuration.

       2.      Set the Authentication Mechanism to HTTP Authentication.

       3.      Choose the value Basic (username/password) to use basic authentication.

       4.      Select the checkbox Use SAP Logon Ticket, if the Web service should also accept SAP Logon Tickets for authentication.

Configuration in the IDE (proxy)

...

       1.      Generate a deployable proxy based on the WSDL, after the Web service has been deployed.

       2.      Open the logical port.

       3.      Choose the value Basic (username/password) to use basic authentication.

Runtime Configuration in the Visual Administrator

Username and password are maintained in the Visual Administrator.

...

       1.      Open the Visual Administrator.

       2.      Select the service Web Service Security.

       3.      In the list of the Web service proxies, select the proxy in the Web Service Clients tree.

       4.      Choose the tab Transport Security and set the authentication to Basic. Enter username and password.

Strong  (X.509 Client Certificate)

Configuration:

Procedure:

Configuration in the IDE (Web service)

...

       1.      Select a configuration of the Web service and open the security configuration.

       2.      Set the transport protocol to HTTPS.

       3.      Set the Authentication Mechanism to HTTP Authentication.

       4.      Choose the value X.509 Certificate to use SSL mutual authentication.

       5.      Select the checkbox Use SAP Logon Ticket, if the Web service should also accept SAP Logon Tickets for authentication.

Configuration in the IDE (proxy)

...

       1.      After the Web service has been deployed, generate a deployable proxy based on the WSDL.

       2.      Open the logical port.

       3.      Choose the value X.509 Certificate to use client certificates for authentication.

Runtime Configuration in the Visual Administrator

To use a client certificate for authentication, proceed as follows:

...

       1.      Enable SSL and configure the SSL service to use certificates for authentication (see: Configuring the Use of SSL on the SAP J2EE Engine).

       2.      Select the service Web Service Security in the Visual Administrator.

       3.      In the list of Web service proxies, select the proxy in the Web Service Clients tree.

       4.      Choose the tab Transport Security and set the authentication to X.509 Client Certificate. Select a keystore entry to use for authentication.

For standalone proxies, the settings must be made in the security protocol (see Using the Security Protocol).

See also:

Administration Manual

SAP J2EE Engine Security

Using Logon Tickets for Single Sign-On

Development Manual

Secure Transmission

Using the Security Protocol