Technology Blogs by SAP
Learn how to extend and personalize SAP applications. Follow the SAP technology blog for insights into SAP BTP, ABAP, SAP Analytics Cloud, SAP HANA, and more.
cancel
Showing results for 
Search instead for 
Did you mean: 
AndreasSeifried
Product and Topic Expert
Product and Topic Expert
291
Server certificates for the domains of SAP Master Data Governance, cloud edition are issued by DigiCert. In order to comply with changes to the Mozilla Root Store Policy, DigiCert started issuing certificates under a new “DigiCert Global Root G2” certificate authority (CA). Due to this change, new or updated server certificates of SAP Master Data Governance, cloud edition will be issued by this new CA, and no longer by the current “DigiCert Global Root” CA. In addition, new or updated server certificates of other SAP services, for example, SAP BTP, will also be issued by this new CA. For example, the certificates of SAP BTP Cloud Foundry environment are planned to be switched by the end of Q4 2023.

More details about the DigiCert Global Root G2 CA, the background, and test possibilities can be found in this blog post of related changes in the SAP BTP Cloud Foundry environment.

Call to Action


Action is required to ensure that applications/services trust the new DigiCert Global Root G2 CA.

Inbound Connections


If you manage trust stores of client applications/services, which connect to your tenant of SAP Master Data Governance, cloud edition by yourself, then add the DigiCert Global Root G2 CA to these trust stores to ensure that your applications/services still can connect when the new server certificates are used. This also applies to connections to the API URLs that you can see the app Communication Arrangements.

Outbound Connections


For outbound connections please see the blog post SAP BTP ABAP Environment – New Root Certificate Authority.