When developing SAP PI/PO interfaces, one might come across a requirement to provide a more secure way of sending messages back and forth. Especially, when setting up communication with banks, you want to ensure files send to bank reach their destination with original content. We want to be sure nobody modified details of our payment. This requirement can be met with use of PGP (Pretty Good Privacy) software, provided with SAP PGP module and adapter modules it provides. The idea behind PGP is to encrypt the message in such a way that only the intended recipient can decrypt it’s content. This is achieved using shared keys.
In the example below, we use Secure Store feature to store encryption/decryption keys, however, SAP PI/PO file system can be used as well.
On the screenshot above we can see three keys imported into PGP Secure Store:
Now we can configure our communication channels to implement PGP security with provided adapter modules.
First, let’s set up decription for messages we receive from third party. For this purpose, we use ‘localejbs/PGPDecryption’ module in our sender communication channel:
In order to send out encrypted messages to third party, use ‘localejbs/PGPEncryption’ adapter module in our receiver channel and configure following parameters:
For more details on additional parameters and allowed values, you can visit website below: https://help.sap.com/viewer/5336c62e683348a8886ff7ef4b15c40f/1.0.5/en-US/08d47f0c5abd4f4f9d0b167ff693b1a7.html
Write to us