When you have configured SAP Solution Manager as described in section Configure SAP Solution Manager, you can configure SAP Signavio Process Manager.
To set up SAP Signavio Process Manager for the integration, you first set up the connection as described in this section. You then define attribute mappings as described in section Configure attribute mappings.
You need to enter credentials for a user in the connection setup. The rights this user needs can be system-specific.
How to create the user in SAP Solution Manager is described in the configuration of SAP Solution Manager, in section Necessary user rights
Set up the connect
ion to SAP Solution Manager
In the SAP Signavio Process Manager explorer, select Setup - Manage SAP Solution Manager 7.2.
The settings open in a new tab.
Point to your Solution Manager endpoint, which typically is <solutionManagerURL>:<port>sap/opu/odata/sap/PROCESSMANAGEMENT/ . <solutionManagerURL> stands for the base URL of your SAP Solution Manager server and <port> for its port number.
Your SAP Solution Manager server needs to accept incoming requests on the port you specified in the URL from SAP Signavio Process Manager's Solution Manager integration service. The IP addresses of this service are 22.214.171.124, 126.96.36.199, and 188.8.131.52 for editor.signavio.com . You need to use all 3 of them.
For https://app-us.signavio.com (region: US), the IP addresses are 184.108.40.206, 220.127.116.11, and 18.104.22.168. You need to use all 3 of them.
For https://app-au.signavio.com (region: Australia), the IP addresses are 22.214.171.124, 126.96.36.199, and 188.8.131.52. You need to use all 3 of them.
For https://app-jp.signavio.com (region: Japan), the IP addresses are 184.108.40.206, 220.127.116.11, and 18.104.22.168. You need to use all 3 of them.
For https://app-ca.signavio.com (region: Canada), the IP addresses are 22.214.171.124, 126.96.36.199, and 188.8.131.52. You need to use all 3 of them.
Enter your credentials.
Enter your solution name.
Enter a branch name of your solution.
- We recommend using the design branch for the SAP Signavio Process Manager import. You find more information about branches in SAP Solution Manager in this article from SAP.
You can limit the imported content by selecting a Scope ID.
Scopes are defined in SAP Solution Manager, for details see this section of the SAP Solution Manager WIKI.
If you don't select a Scope, the full branch content is used as the basis for all imports.
Set up the authentication, for details see below.
Using self-signed certificates for server-side authentication
SAP Signavio accepts certificate chains signed by any common certificate authority by default. Uploading a certificate is only necessary when your Solution Manager server tries to authenticate itself against SAP Signavio using a certificate, which is self-signed instead of signed by a trusted certificate authority.
You can use self-signed certificates with your connection configuration. Once uploaded, this certificate is trusted on every request sent to Solution Manager.
Self-signed certificates must be in the SSL X509 format encoded with Base64 (this happens by default when exporting certificates from a web browser). If your certificate is in the PKCS7 format, you need to convert it. Make sure your certificate is in the following format:
followed by the content of the certificate on a new line.
Then, on another new line, finish the certificate with
To upload your certificate, in the Configure tab, click Select a certificate next to SSL Certificate.
Keystore for client-side authentication
You can additionally upload a keystore containing a private key so that your Solution Manager server can validate that requests are indeed coming from the SAP Signavio Solution Manager connector (client-side authentication).
To set up client-side authentication, follow these steps:
In the SAP Signavio Process Manager Explorer, select Setup - Manage SAP Solution Manager 7.2.
The settings open in a new tab.
In the tab Connection settings, upload the keystore for client-side authentication.
Enter the keystore password.
Two-way authentication is set up.
The PKCS12 format is accepted for keystores. Uploaded files are validated.
SAP Signavio uses the API of the Process Management component of Solution Manager 7.2 to read and update the branch content. We use GET and PUT requests via https.
For session handling, the SAP Signavio connector authenticates with GET request, sending a username and password and requesting a CSRF token. The response from Solution Manager is an unauthenticated session and a CSRF token. The token from the first request is used for all further communication. It's a unidirectional connection.