Configuring Communication with SSL Authentication on Systems Running SAP Basis 7.5

IT Asset Management (Cloud)
The SAP system needs to be configured to accept SSL communication. For this, a cryptographic library has to be installed. For more information, see SAP Note 510007.

To use SSL authentication, you need to install a Root Certificate (as described below). Contact the Certificate Authority (CA) for an SSL certificate that is used by the inventory beacon server. You can download the Root Certificate in binary format or base64 format.

To configure communication using SSL authentication on a system running SAP Basis 7.5:

  1. Start the SOA Manager on the SAP system on which you want to configure the web service using the transaction code SOAMANAGER.
  2. On the SOA Management page, on the Service Administration tab and click Web Service Configuration.
  3. On the Web Service Configuration page, under Search Criteria, specify the following search parameters:
    • Object Type is All
    • Consumer Proxy contains *SAPSERVICE*.
  4. Click Search.
    The search returns the web service SAPServiceSoap.
  5. In the Internal Name column, click the hyperlinked name for the SAP web service.
  6. On the next page, on the Configurations tab, click the Create button and choose Manual Configuration.
  7. In the Logical Port Name step, input Logical Port Name and an appropriate description. Select the Logical Port is Default check box.
  8. In the Consumer Security step, select User ID / Password.
  9. Under User ID / Password, provide the user name and password that are used in IT Asset Management.
    Important: If the user name and password change in IT Asset Management, you need to make matching changes in the SOA Manager.
  10. In the HTTP Settings step, provide the following information:
    • URL Access Path: Enter the URL access path /SAPService/SAPService.asmx.
    • Computer Name of Access URL: Enter the IP address of the relevant inventory beacon server.
    • Port Number of Access URL: Enter 443 which is the port number for SSL authentication.
    • URL Protocol Information: Select HTTPS.
    Accept the default values for all other options in this step.
  11. In the SAP Protocol step, open the Message ID Protocol menu and select Suppress ID Transfer.
    Accept the default values for all other options in this step.
  12. In the Operation Settings step, manually add the SOAP action for every web-service operation as follows:
    1. In SOAP Action check box, select Use non-default value to ensure that the SOAP action is active for the configuration, and to enable the SOAP Action field.
    2. Add the web-service operations in the grid on the left. For each operation, specify the appropriate SOAP action in the SOAP Action field.
      The table SOAP Actions for the Web-Service Operation lists the operations and corresponding SOAP action. If you copy the SOAP actions from the table to paste each action into the SOAP Action field, ensure that you copy the entire line.
  13. Click Finish.
  14. Connect to the SAP system and run transaction STRUST to start the Trust Manager.
  15. Click Import Certificate .
  16. On the Import Certificate dialog, select the appropriate Root Certificate.
  17. Under File format, select the file format of the Root Certificate. Click OK.
  18. In the system tree on the left pane of the Trust Manager, select SSL client SSL Client (Anonymous) and click Add to Certificate List.
  19. Start the Internet Communication Manager (ICM) using the transaction SMICM. (The ICM sends and receives requests to and from the Internet.)
  20. In the ICM Monitor screen, open the Administration menu and select ICM > Exit Soft > Global.
    This step resets the ICM Monitor. The new certificate is activated only after the reset.
  21. On the toolbar of the ICM Monitor screen, click Services .
  22. On the ICM Monitor - Service Display screen, click Refresh.

IT Asset Management (Cloud)

Current