Expand my Community achievements bar.

Public SOAP API access

Avatar

Level 2
Level 2
9/24/19 11:37:51 AM

I have defined a SOAP method on a custom data schema.  The system that will be calling this service is hosted in a cloud infrastructure, not fixed IP address.

I created an operator for the service to authenticate with and linked it with the Public Security Zone as the authorized connection zone.  The logon request works fine and the session & security tokens are returned.   However, when I make the subsequent call to my custom SOAP method from the cloud infrastructure the response is an HTTP 403. What do I need to configure to allow requests for this operator from a variable IP infrastructure?

Views

5.5K

Replies

4
Sign in to like this content

Total Likes

Translate
Translate
4 Replies

Avatar

Community Advisor
Community Advisor
9/24/19 2:44:33 PM

Hi,

Are you able to use the service with any users?

Are there any firewalls between the server and the cloud?

Thanks,

-Jon

Views

5.3K

Replies

3
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
9/24/19 3:10:58 PM
In response to Jonathon_wodnicki

The service request works fine if it is made from an IP configured in the VPN security zone using the same operator.  e.g. From my machine all requests are fine.

Firewalls are not an issue ... the logon request works fine and I am getting a response from the application when it returns the HTTP 403.  I can see in the web logs on the campaign server this error: 

  1. 2019-09-24 18:00:17Server response:\nXTK-170019 Access denied.

  2. 2019-09-24 18:00:17XTK-170019 Access denied. (iRc=-69)

I can see in the log for the logon request just before that the IP is found in the public security zone.

  1. 2019-09-24 18:00:16xx.xxx.x.xxx found in public security zone

  2. 2019-09-24 18:00:16Finding client ip with xx.xxx.x.xxx in public security zone

Views

5.3K

Replies

2
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Community Advisor
Community Advisor
9/25/19 7:01:31 AM
In response to kevinh95689533

Hi,

Are the securityZone's configured differently, i.e. does one have allowUserPassword="true" and the other not?

Thanks,

-Jon

Views

5.3K

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 2
Level 2
9/30/19 1:55:40 PM
In response to Jonathon_wodnicki

They differ with these 3

allowDebug="true" 

allowHTTP="true"

sessionTokenOnly="true"

Since I am passing the session and security tokens over HTTPS, it should be accepted.

I did notice that the public security zone has a proxy configured with a localhost IP mask: proxy="127.0.0.1, ::1"
Does this mean that only request from the local server AC is on can make requests through the public zone?  If that is true, this is why my requests are being denied. 

Views

5.3K

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
Configure access to Amazon Redshift

Views

230

Likes

0

Replies

0
Configure access to Snowflake

Views

381

Likes

0

Replies

0
API staging mechanism with FFDA in Adobe Campaign v8

Views

630

Like

1

Replies

0
How to create user profiles in Adobe Campaign via Javascript or through SOAP API ?

Views

1.2K

Like

1

Replies

5
[Video Tutorial] Accessing built-in reports

Views

504

Likes

0

Replies

0