https://community.sap.com/t5/enterprise-resource-planning-q-a/authentication-methods-apis-s4hana-cloud/qaa-p/13760499#M4190945 Hi Jerry, the API I need to use is Post Journal Entry - Synchronous SOAP call. Also, I am using a lot of Custom CDS Views of type External API as APIs. Last API that I am using is an API based on a Custom Business Object in S4Hana Cloud. Mon, 15 Jul 2024 06:14:14 GMT StefanieSchulke 2024-07-15T06:14:14Z https://community.sap.com/t5/enterprise-resource-planning-q-a/authentication-methods-apis-s4hana-cloud/qaq-p/13756772 <P>Hi experts,</P><P>For my customer I am trying to set up API connections with S4Hana Public Cloud without the use of the BTP (other middleware). I need to configure the communication arrangements for SOAP incoming APIs, OData incoming APIs but also some custom CDS Views of type External API and a Custom Business Object (which I both added to custom communication scenarios).</P><P>The security levels of the customer do not accept Basic Authentication for API authentication and they wanted to use IP whitelisting.<BR />I already in the Business Accelerator Hub found that the SOAP API does not support any other authentication method then Basic Authentication. The OData standard API is open for all types of authentication. What is applicable for the Custom CDS Views of type External API and for the Custom Business Object?&nbsp;<BR />Also, is it possible to whitelist IP ranges to make sure that all attempts outside of that IP range are blocked?</P><P>Thanks in advance!&nbsp;</P> Wed, 10 Jul 2024 09:28:31 GMT https://community.sap.com/t5/enterprise-resource-planning-q-a/authentication-methods-apis-s4hana-cloud/qaq-p/13756772 StefanieSchulke 2024-07-10T09:28:31Z https://community.sap.com/t5/enterprise-resource-planning-q-a/authentication-methods-apis-s4hana-cloud/qaa-p/13757302#M4190747 <P>Hi Stefanie</P><P>Could you be a little more specific about the api you want to implement?</P><P>For example, on the API Hub, if i look at Bank Statement - Post (<A href="https://api.sap.com/api/BANKSTATEMENTPOST_IN/overview)" target="_blank">https://api.sap.com/api/BANKSTATEMENTPOST_IN/overview)</A>&nbsp;if you click the Authentication Methods, it supports&nbsp;X.509.</P><P>Same for BDR&nbsp;<A href="https://api.sap.com/api/BDR_REQUEST_IN/overview" target="_blank">https://api.sap.com/api/BDR_REQUEST_IN/overview</A></P><P>Are they using API Management?</P><P>here is a similar blog</P><P><A href="https://community.sap.com/t5/technology-blogs-by-sap/sap-cloud-identity-now-available-for-all-rise-with-sap-customers/ba-p/13532571" target="_blank">https://community.sap.com/t5/technology-blogs-by-sap/sap-cloud-identity-now-available-for-all-rise-with-sap-customers/ba-p/13532571</A></P><P>thanks Jerry</P> Wed, 10 Jul 2024 19:12:59 GMT https://community.sap.com/t5/enterprise-resource-planning-q-a/authentication-methods-apis-s4hana-cloud/qaa-p/13757302#M4190747 Jerry_Lowery 2024-07-10T19:12:59Z https://community.sap.com/t5/enterprise-resource-planning-q-a/authentication-methods-apis-s4hana-cloud/qaa-p/13760495#M4190944 <P>.</P> Mon, 15 Jul 2024 06:14:45 GMT https://community.sap.com/t5/enterprise-resource-planning-q-a/authentication-methods-apis-s4hana-cloud/qaa-p/13760495#M4190944 StefanieSchulke 2024-07-15T06:14:45Z https://community.sap.com/t5/enterprise-resource-planning-q-a/authentication-methods-apis-s4hana-cloud/qaa-p/13760499#M4190945 Hi Jerry, the API I need to use is Post Journal Entry - Synchronous SOAP call. Also, I am using a lot of Custom CDS Views of type External API as APIs. Last API that I am using is an API based on a Custom Business Object in S4Hana Cloud. Mon, 15 Jul 2024 06:14:14 GMT https://community.sap.com/t5/enterprise-resource-planning-q-a/authentication-methods-apis-s4hana-cloud/qaa-p/13760499#M4190945 StefanieSchulke 2024-07-15T06:14:14Z