Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

Trusted Server Setup in xMII 12.0?

Former Member

on ‎2008 Jan 13 12:10 PM

0 Likes
112

Is Trusted Server Setup not possible in xMII 12.0? We invoke xMII Transactions from other applications by calling the URL for Runner like below:

http://[host:50000]/XMII/Runner?Transaction=[TransactionName]&InputParameter=&OutputParameter=

Since we did the Trusted Server Setup for the host from where this request was originated, it invoked the xMII Transaction without going to the logon screen. Since it looks like, the Trusted Server Setup has been removed in xMII 12.0, now the request is redirected to the logon screen. How this request can be processed without being redirected to the logon screen in xMII 12.0?

Thanks,

Sara

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (0)

Answers (1)

Answers (1)

jcgood25
Active Contributor
‎2008 Jan 13 1:54 PM
0 Likes

Yes, Trusted Servers no longer exist (NetWeaver's UME = No More Anonymous Free Pass).

Having a trusted certificate in the UME environment would be one way to accomplish this, but appending XacuteLoginName and XacuteLoginPassword to your request would be the quick way.

Regards,

Jeremy

Show replies
Show replies
Former Member
‎2008 Jan 13 2:02 PM
0 Likes

Jeremy,

Thanks, for the quick reply. Rightnow we have configured our system passing username and password in the URL. But we don't want the password to be passed in clear text in the URL.

Can you please help me guiding how to install a trusted Certificate in UME?

Thanks,

Sara

jcgood25
Active Contributor
‎2008 Jan 13 4:36 PM
0 Likes

Your best bet is to search for UME and SSO in the SAP help docs, and then depending upon your particular application needs follow the appropriate route.

If an incoming request is already authenticated through the UME with the xMII instance (like would be the case for a user already logged into Enterprise Portal), the trusted sign-on will happen automatically, so you gain the xMII related session.

Regards,

Jeremy

Former Member
‎2008 Jan 14 4:22 PM
0 Likes

A potentially easier alternative is simply to set up HTTPS on the system. This way neither the URL nor the content can be (easily) compromised, enabling use of clear text passwords. It should be noted that a number of web service security methods pass cleartext credentials in the XML payload, but the recommended practice in those cases is to use HTTPS. If you search SDN, there are some articles on this topic.

salvatore_castro
Product and Topic Expert
Product and Topic Expert
‎2008 Jan 25 8:15 PM
0 Likes

Sara,

The reason that you don't know how to setup a Trusted System in xMII v12 is because you can't. The entire security engine that was previously present in xMII v11.5 has been removed and replaced with the NW security engine. This means that in order to setup SSO or any kind of certificate validation you have to configure it in NetWeaver. In short SSO authentication with Enterprise Portal will also work with xMII since they are using the same authentication mechanism. Here's a link to the NetWeaver help where this is talked about: [Portal Authentication|http://help.sap.com/saphelp_nw70/helpdata/en/a3/e5a0404dd52b54e10000000a1550b0/content.htm]

Hope this helps.

Sam

Edited by: Salvatore Castro on Jan 25, 2008 3:15 PM

Ask a Question