AWS announces preview of AWS Interconnect - multicloud

AWS announces AWS Interconnect – multicloud (preview), providing simple, resilient, high-speed private connections to other cloud service providers. AWS Interconnect - multicloud is easy to configure and provides high-speed, resilient connectivity with dedicated bandwidth, enabling customers to interconnect AWS networking services such as AWS Transit Gateway, AWS Cloud WAN, and Amazon VPC to other cloud service providers with ease.

Custom VPC Endpoints in the AWS SDK for SAP ABAP

4 minute read

Content level: Intermediate

ABAP developers can consume AWS services using custom VPC endpoints for advanced connectivity

Introduction

AWS services are accessed via endpoints, which are typically URLs which are reachable from the public Internet. These URLs are calculated automatically based on many factors such as service, region and IP address type. Customers often want their SAP ABAP systems to consume AWS services without the data traversing the Internet. In this case, customers must create interface endpoints in their VPC and explicitly direct their SDK to use that endpoint. There are two options for specifying the custom endpoint URL with the AWS SDK for SAP ABAP.

Specifying An Endpoint In Code

The first option mirrors the functionality of AWS's other AWS SDKs, as shown in this re:Post article. In the AWS SDK for SAP ABAP, custom endpoints are specified when creating the SDK client using a module's factory method. In this example, we override the calculated endpoint with a custom endpoint:

DATA(lo_rsh) = /aws1/cl_rsh_factory=>create(
  io_session = lo_session
  iv_custom_endpoint = |https://vpce-123.redshift.us-east-1.vpce.amazonaws.com|
).

It is preferable to avoid hardcoding the custom endpoint in code, since it is likely an SAP landscape will have different endpoints for development, QA, and production. A customer could create their own customizing table, or use the AWS SDK for SAP ABAP's own "logical resource resolver":

DATA(lv_rsh_endpoint) = lo_resolver->resolve_lresource( 'RSH_ENDPOINT' ).
DATA(lo_rsh) = /aws1/cl_rsh_factory=>create(
  io_session = lo_session
  iv_custom_endpoint = lv_rsh_endpoint
).

Advanced Routing To Endpoints In Configuration

One disadvantage of the approach above is that everywhere in your code where you create an SDK client, you must remember to specify the iv_custom_endpoint argument. That's why we introduced an advanced routing feature in the SDK release v1.17.0 which allows the endpoints to be configured centrally. This new feature is part of the SDK Profile configuration in the IMG transaction /AWS1/IMG. For each module's TLA (three-letter abbreviation), you specify the URL of the desired endpoint.

IMG screenshot of Advanced Routing

The configuration is organized by SID and client, so that each system can have its own endpoints. As with other SDK Profile configuration, the entire landscape is configured in development and transported through to production, and each execution looks up its own SID and client at runtime to find the correct configuration. This approach means that QA systems do not need adjustment after a system refresh, because all systems have the configuration for the entire landscape.

With this configuration, the factory methods can be called with no endpoint specified, and the endpoint will be determined from the IMG configuration. If no endpoint is specified, the default calculated endpoint will be used.

DATA(lo_rsh) = /aws1/cl_rsh_factory=>create( io_session = lo_session ).

The configuration applies across all the ABAP code in the SAP system, but if different endpoints are required in different applications, customers can define multiple SDK Profiles to flexibly manage different configuration for each business function. Customers who have previously set the endpoint with the iv_custom_endpoint factory argument can remove that argument from all their factory method calls after configuring the central IMG table.

Conclusion

The AWS SDK for SAP ABAP allows customers to access AWS services without traversing the internet, using VPC endpoints, specified programmatically or in configuration. The new configuration option has the advantages of:

• Centralized configuration in an intuitive table • No dependency on specific code to explicitly choose a custom endpoint • Scales well as your use of AWS services grows

This feature will be of particular interest to customers deployed in SAP RISE, customers hosted by managed service providers, and customers with specific security or compliance requirements.

References

Topics: SAP on AWS
Tags: SAP ABAP SDK SAP on AWS
Language: English

EXPERT

Friesen, Jon

published a month ago56 views

No comments

Relevant content

Presigning S3 requests with the AWS SDK for SAP ABAP
EXPERT
Friesen, Jon
published 3 months ago
Using AWS SDK Service-Specific Endpoints for VPC Endpoint Connectivity
EXPERT
Kanwar Bajwa
published a month ago
Access an Amazon OpenSearch Serverless VPC endpoint using AWS Verified Access and Postman
EXPERT
John
published 8 months ago
I am facing a problem while using SAP ABAP Assistant plug-in in Eclipse , it is showing - Error: No Value Present
Accepted Answer
Rutul
asked 6 months ago
AWS SDK for SAP ABAP: is there a Repair Key available for customers
Luis Baila - BSH
asked 2 years ago
Integration with SAP ERP using native AWS services (ESB)
Claudio Hermosilla
asked a year ago
How do I set up my VPC endpoint service to use a custom private DNS name?
AWS OFFICIALUpdated 4 months ago
How do I troubleshoot connectivity issues between an interface Amazon VPC endpoint and a customer managed endpoint service?
AWS OFFICIALUpdated 4 months ago
How do I use an interface Amazon VPC endpoint to resolve default service domain names?
AWS OFFICIALUpdated 2 years ago
How do I configure cross-Region Amazon VPC interface endpoints to access AWS PrivateLink resources?
AWS OFFICIALUpdated a month ago