Home » Products » API Monitoring » SOAP API Monitoring
  • SOAP API Monitoring
  • WSDL · WS-Security · XPath

Keep Your Enterprise SOAP Services From Quietly Breaking With Dotcom-Monitor SOAP API Monitoring

Dotcom-Monitor imports your WSDL, runs synthetic SOAP calls from 30+ global locations, validates every XML envelope via XPath, and pages the right team when a service starts misbehaving. Built for banking, insurance, healthcare, and government APIs that still run on SOAP — and need to.
Start 30-day free trial
Talk to a performance engineer
SOAP API monitoring snippet showing a signed payment envelope with passing XPath assertions on status, confirmation, and p95 latency.
  • SOAP 1.1 & 1.2 native
  • WS-Security supported
  • Private Agents for on-prem
  • Cancel anytime · No auto-charge after trial
10,000+

Organizations Worldwide

99.99%

Platform Uptime SLA

30+

Global Monitoring Locations

Since 1998

Website Monitoring Leader

Aflac logo — Dotcom-Monitor customer
Dell logo — Dotcom-Monitor customer
Comcast logo — Dotcom-Monitor customer
Dish Network logo — Dotcom-Monitor customer
Citrix logo — Dotcom-Monitor customer
xerox
Quick Answer

SOAP API monitoring is the continuous testing of SOAP-based web services from outside your infrastructure — validating SOAP envelope structure via XPath, WSDL contract conformance, WS-Security compliance, response time, and SOAP fault detection (a SOAP fault returns HTTP 200, so uptime monitors miss it). Alerts your team the moment any of those break.

WSDL import

Drop in Your Wsdl. Monitors Generated Automatically.

SOAP services come with a contract. Dotcom-Monitor reads your WSDL, parses every operation and binding, and turns it into monitors you can run from 30+ global locations within minutes — without hand-crafting envelopes.

  • WSDL 1.1 and 2.0 — operations, port types, bindings, message schemas all parsed automatically.
  • Generated SOAP envelopes — choose an operation, fill in parameters, run it. No XML hand-coding.
  • Schema-aware validation — response payloads checked against the WSDL’s XSD contract.
  • SOAP 1.1 & 1.2 — both protocols handled, with correct content type and headers per binding.
Try WSDL import
SOAP API monitoring setup screen showing 12 auto-discovered operations from a PaymentService WSDL with a "Generate monitors" action.
XPath and WS-Security validation on a SOAP API monitor — five checks pass, one fails on a missing processedAt XPath node.
XPath validation & WS-Security

Inspect the Envelope, Not Just the Status Code.

A SOAP fault wrapped inside HTTP 200 is still a failure. Dotcom-Monitor evaluates XPath expressions against the response envelope, validates SOAP faults, and runs the full WS-Security suite — so your monitor reflects the actual contract, not just the wire.

  • XPath assertions — evaluate expressions against the envelope body, header, or any node.
  • SOAP fault detection — flag responses even when HTTP returns 200.
  • WS-Security — X.509 signing, UsernameToken, SAML assertions, timestamp validation, message-level encryption.
  • Enterprise transport — mTLS / Client Certificate auth, NTLM, Kerberos, and proxy configurations.
See full auth matrix
Use cases

Where SOAP Still Runs the Business

Most modern guides ignore SOAP. But it’s still the backbone of regulated industries — and the cost of a silent SOAP failure is usually higher than a REST one. Here’s what teams monitor with us.

Payment & Banking Gateways

Long-lived SOAP integrations to Visa, Mastercard, ACH networks, and bank-internal services. Monitor ProcessPayment, RefundPayment, GetTransactionStatus end-to-end.

Insurance Claims & Underwriting

Carrier APIs for quote, bind, claim submission, policy lookups. Mostly SOAP. Catch the silent contract drift that breaks a downstream policy management system.

Healthcare HL7 / Fhir-Over-SOAP

EHR-to-EHR exchange, lab orders, prescription routing, insurance verification. Monitor that the envelope still parses and the patient data still validates against schema.

Government & Tax Services

State filing systems, federal lookups, e-government identity services. SOAP, almost always with WS-Security and strict SLAs. Outages here trigger audit issues.

Enterprise Esb & Integration Buses

BizTalk, MuleSoft, WSO2, Tibco, IBM Integration Bus. The integration layer that ties ERP/CRM/HR systems together. Drop a Private Agent inside the network and monitor every queue.

Legacy Erp & Supply Chain

SAP, Oracle, JD Edwards, Lawson — most ERP exposes SOAP for inventory, orders, shipping. Catch the integration that hangs and quietly stops syncing.

Not ready for a trial?

Want a 15-Minute Walkthrough First?

A performance engineer will walk you through WSDL import, XPath assertions, and WS-Security in your regulated environment — no sales pitch, just a working monitor by the end of the call.

Book a 15-min walkthrough
Fits your stack

Routes Alerts Into the Tools Your Team Runs

PagerDuty
ServiceNow
Microsoft Teams
Slack
Opsgenie
Jira / ITSM
Email / SMS
Webhook
SNMP
Splunk / SIEM
Grafana
Azure DevOps
Global monitoring network

Monitor Public SOAP Endpoints—and the Internal Ones

Run distributed checks from 30+ owned monitoring locations to catch regional latency, DNS, and CDN issues against externally exposed SOAP services.

For the SOAP services that never leave your network — ESB endpoints, internal integration buses, on-prem service catalogs — deploy a Private Agent inside your VPC or datacenter. Outbound-only connection, no inbound firewall rules.

30+

Global monitoring locations

6

Continents covered

1 min

Minimum check interval

Private Agents

For behind-firewall

Abstract world map showing Dotcom-Monitor's global API monitoring checkpoints scattered across six continents.
What teams say

Enterprise Teams Depend on Monitoring That Takes SOAP Seriously

"I absolutely love the comprehensive monitoring services Dotcom-Monitor provides. The real-time alerts and detailed performance analytics have been a game-changer for our website's uptime and speed. The global monitoring feature ensures that our site is optimized everywhere, and the intuitive dashboard makes it easy to track performance. Their customer support is exceptional — always responsive and efficient."
Tomer C.
Managing Director · Facilities Services
Verified Capterra review · March 2025
"One of Dotcom's best features is the push/pull API capabilities that provide us with network performance data. We use this to monitor for performance issues as well as page loading stats. Dotcom-Monitor allows us to monitor multiple services within one interface and platform. It's allowed us to operate more efficiently."
Gregory S.
Manager · Broadcast Media
Verified Capterra review · May 2020
"I have been thoroughly impressed with the level of detail and comprehensiveness of the reports generated by the software. Moreover, the support team at Dotcom-Monitor has exceeded my expectations. On almost a daily basis, I reach out with various questions and they have consistently demonstrated unwavering patience, providing detailed and insightful answers."
Shirin R.
Software Test Engineer · Computer Software
Verified Capterra review · February 2023
"I'm a network analyst and use Dotcom tools inside the ISP I work, it's a really good and reliable tool for monitoring things along the network, and testing network components, I usually use it to make diagnostics of servers latency, and dns resolve time."
Leonardo J.
IT & Network Infrastructure Analyst Internet
Verified Capterra review · October 2022

4.5

Capterra

80 reviews

4.6

Ease of Use
Capterra Score reviews

4.6

Customer Service
Capterra Score reviews

All reviews sourced from Capterra verified reviews. Ratings as of January 2026.

Want to kick the tires without committing? Free Forever plan available — up to 25 targets, 2 monitoring locations, 7 days of data retention.   Get started free →  or  Compare plans

Frequently asked questions

SOAP Monitoring Questions Teams Ask Before Signing Up

Continuous testing of SOAP-based web services from outside your infrastructure. Validates that the service is reachable and responsive, that the XML envelope is well-formed, that XPath assertions pass, and that the response conforms to the WSDL contract — and alerts your team the moment any of those break.

Yes. Drop in a WSDL 1.1 or 2.0 file. Dotcom-Monitor parses operations, port types, bindings, and message schemas, then generates request templates so you can run monitors against any operation without hand-coding XML envelopes.

Yes — WS-Security with X.509 certificate signing, UsernameToken, SAML token, message-level encryption, and timestamp validation. Plus mTLS at the transport layer for client certificate auth.

Both. SOAP 1.1 (text/xml content type with SOAPAction header) and SOAP 1.2 (application/soap+xml) are fully supported, with correct content negotiation per binding.

Configure XPath expressions to evaluate against the response envelope, header, or any node. The monitor fails if an assertion returns an unexpected value, a missing node, or a wrong type. Common patterns: //transaction/status = 'approved' or count(//errors) = 0.

A SOAP fault returns HTTP 200 with a <soapenv:Fault> element inside the envelope — uptime monitors miss it entirely. We check explicitly for the Fault element and surface the faultcode and faultstring in the alert payload.

SOAP validates XML envelopes via XPath instead of JSON via JSONPath, parses WSDL contracts rather than OpenAPI specs, and handles enterprise auth schemes (WS-Security, SAML, mTLS) that are common in SOAP services. The underlying platform — global locations, multi-step chains, alerting, Private Agents — is shared. See REST API monitoring →

Yes. Deploy Private Agents inside your network — common for internal enterprise integration buses, on-prem service catalogs, and regulated environments. Outbound-only connection, no inbound firewall rules.

Long-lived integrations in banking, insurance, healthcare (HL7-via-SOAP, FHIR over SOAP), government, and ERP. SOAP’s strict WSDL contracts, the WS-* security stack, and transaction guarantees remain valuable in regulated environments. Replacing them with REST is rarely worth the risk — monitoring keeps them visible alongside modern services.

Yes. WS-Addressing headers (Action, To, MessageID, ReplyTo) can be set explicitly per request or imported automatically from a WSDL when the binding requires them.

Yes. MTOM/XOP attachment requests and responses are supported, including binary payload validation against expected size or content-type constraints.

The same as any other SOAP endpoint — point a monitor at the published WSDL URL or directly at the endpoint URL with a request envelope. For internal-only services, deploy a Private Agent inside the network where the integration bus runs.

Each failed run captures the full request envelope, response envelope (or socket-level error if the endpoint was unreachable), HTTP headers, timing breakdown (DNS, TLS, server processing), the specific XPath assertion that failed, and the SOAP fault if returned.

Monitoring more than SOAP? See the full API Monitoring platform →

Catch Your Next SOAP Failure Before the Auditor Does

30-day free trial. No credit card. WSDL import, WS-Security, mTLS, Private Agents — all included.

Start Free 30-Day Trial
Book a 15-min walkthrough
  • 10,000+ organizations
  • Monitoring leader since 1998
  • 99.99% Uptime SLA