https://community.sap.com/t5/application-development-and-automation-discussions/ssl-termination/m-p/7097153#M1507947 <HTML><HEAD></HEAD><BODY><P>You still have variables in the port parameters of the ICM http settings, so if it might just be restarting it in SMICM needed. </P><P></P><P>I did not look further yet if that is why it does not work?</P><P></P><P>Cheers,</P><P>Julius</P></BODY></HTML> Thu, 15 Jul 2010 20:02:34 GMT Former Member 2010-07-15T20:02:34Z https://community.sap.com/t5/application-development-and-automation-discussions/ssl-termination/m-p/7097152#M1507946 <HTML><HEAD></HEAD><BODY><P>Hello!</P><P></P><P>Could ypu help me?</P><P></P><P>I need to get data from other system (B) (used ssl) to my sap system A via abap webservice.</P><P>Another http web service already exists (switching on to https is not planned...) in A.</P><P>sap crypt. library is installed. Parameters were added:</P><P>ssl/ssl_lib = $(DIR_CT_RUN)/libsapcrypto.so</P><P>sec/libsapsecu = $(DIR_CT_RUN)/libsapcrypto.so</P><P>ssf/ssfapi_lib = $(DIR_CT_RUN)/libsapcrypto.so</P><P>ssf/name = SAPSECULIB</P><P>icm/server_port_0 = PROT=HTTP,PORT=80$$,TIMEOUT=60,PROCTIMEOUT=1500</P><P>icm/server_port_1 = PROT=HTTPS,PORT=443,TIMEOUT=50,PROCTIMEOUT=1500</P><P>wdisp/ssl_encrypt = 0</P><P>wdisp/ssl_auth = 1</P><P></P><P>For configuration SSL-termination of B and using client certificate:</P><P>1) I need to create the PSE request for my sap system (not for B host)?</P><P>2) To decrypt data I have to create request to CA and order certificate for my system or I can use existing client certificate?</P><P>3) After ssl-termination abap application configured on communication via webservice as HTTP?</P><P><A href="http://help.sap.com/erp2005_ehp_04/helpdata/EN/a6/f19a3dc0d82453e10000000a114084/frameset.htm" target="test_blank">http://help.sap.com/erp2005_ehp_04/helpdata/EN/a6/f19a3dc0d82453e10000000a114084/frameset.htm</A></P><P></P><P>If SAP Cryptolib'll be install on AS (not only on Web Dispatcher) in future, only https we'll be used for webservices?</P><P></P><P></P><P>Thank you!</P><P></P><P>Antonina</P></BODY></HTML> Thu, 15 Jul 2010 16:22:40 GMT https://community.sap.com/t5/application-development-and-automation-discussions/ssl-termination/m-p/7097152#M1507946 Former Member 2010-07-15T16:22:40Z https://community.sap.com/t5/application-development-and-automation-discussions/ssl-termination/m-p/7097153#M1507947 <HTML><HEAD></HEAD><BODY><P>You still have variables in the port parameters of the ICM http settings, so if it might just be restarting it in SMICM needed. </P><P></P><P>I did not look further yet if that is why it does not work?</P><P></P><P>Cheers,</P><P>Julius</P></BODY></HTML> Thu, 15 Jul 2010 20:02:34 GMT https://community.sap.com/t5/application-development-and-automation-discussions/ssl-termination/m-p/7097153#M1507947 Former Member 2010-07-15T20:02:34Z https://community.sap.com/t5/application-development-and-automation-discussions/ssl-termination/m-p/7097154#M1507948 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>this [how to guide|http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/60b1edfb-2a5c-2d10-2294-d1777056c46a] should help you to set up web dispatcher in SSL termination mode. You need to create PSE used by web dispatcher (check section 3.2). I don't understand what you mean by client certificate in question 2. Yes, your web service needs to be accessible via HTTP if you want to terminate SSL on web dispatcher.</P><P></P><P>Cheers</P></BODY></HTML> Thu, 15 Jul 2010 23:40:55 GMT https://community.sap.com/t5/application-development-and-automation-discussions/ssl-termination/m-p/7097154#M1507948 mvoros 2010-07-15T23:40:55Z