Integration with EPIC Interconnect web service

Asked Nov 15 '16 at 11:36

Active Nov 16 '16 at 10:24

Viewed 3,812 times

To secure the communication channel, does EPIC interconnect web service (especially personal management API) supports WS-Security?
To make channel secure between caller and Interconnect web service, the only solution is HTTPS and PKI (public key infrastructure) authentication. Is this a correct statement?

edited Nov 16 '16 at 10:24

Julien Marrec

asked Nov 15 '16 at 11:36

Rahul Borate

Have you tried looking at the documentation? Could you provide links to show some of your research? – Quintin Balsdon Nov 15 '16 at 11:41
Links https://open.epic.com/Interface/WebServices and https://open.epic.com/Operational/PersonnelManagement gives no or very little information on how to secure the channel between caller and EPIC interconnect service. – Rahul Borate Nov 15 '16 at 12:08
The PersonnelManagement SOAP API provided by Epic systems does not include an Authorization layer ("auth-z" in security slang) in the protocol. This means there is no username and password exchanged between SOAP clients (Caller) and the SOAP server (Epic). – Rahul Borate Nov 15 '16 at 12:13

0 Answers0