on 06-17-2021 2:47 AM
I'm trying to consume as service in S/4HANA from CPI via the Cloud Connector. In the receiver adapter the only authentication options available are
The first two options are no good for as our security team will not endorse those to methods. I can use principal propagation where I have a client (Sender) but I have a problem where the iFlow is started by a Timer event in CPI. In this scenario I have no Principal.
A sample scenario is CPI polls an SFTP site for Journal file produced by another system. It picks up this file and consumes the API in S/4HANA to post the Journal.
My question are:
It seems bizarre that the cloud connector is forcing me to use a less secure authentication method.
I can get secure certificate based authentication if I don't go via the cloud connector but this means I need to expose the S/4 API to the internet which is not ideal.
Looks like the situation did not change. I do want to use Client Cert based authentication for my backend on-prem S4 systems.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Jon,
The Cloud Connector is actually a secure connection to the on-prem system which may explain why you do not need "extra" security.
I'm assuming you have S/4 On-prem? Are APIs also exposed via a communication arrangement? If so, then only the Communication User can ever access the exposed endpoints (at least that is how it works in the Cloud.)
Kind regards,
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi David,
Yes this is for on-prem. The API are just exposed via SOAMANAGER.
The issue I have is that our security team don't want any user to authenticate to the system using BASIC authentication otherwise the user account must have a PWD set in SU01 which is something they don't want.
Cheers
Jon
Hi Jon,
Please go through this blog post if it helps.
principal propagation in Cloud Connector
Regards,
Priyanka
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
81 | |
11 | |
10 | |
8 | |
8 | |
6 | |
6 | |
6 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.