Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

HTTPS external und internal to SAP PI - certificate configuration under STRUSTSSO2

Former Member

on ‎2014 Dec 02 9:41 AM

0 Likes
540

Hello Colleagues,

we have following problem.

We have company internal and company external HTTPS interfaces to our SAP PI system.

For HTTPS in Transaction STRUSTSSO2 under "SSL server Standard" we have to trust (certificate sign request "CSR") the own certificate.

Currently, the ssl own certificate is trusted by our own internal CA.

Now the problem. For external HTTPS interfaces to our SAP PI system we need to have a own certificate trusted by an external CA like VeriSign.

How we are able to configure this, internal and external trusted sign under transaction STRUSTSSO2 for SSL server Standard?

Many thanks in advance!

Regards,

Jochen Schertel

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies
View Entire Topic
Former Member
‎2014 Dec 02 10:13 AM
0 Likes

Hello Jochen,

is this a PI connection, SOAP adapter, for example? Or do you do plain HTTP? I'd recommend you to go for a SOAP adapter and use keystore in NWA. You'll have a lot more freedom and options there.

Regards,

Jörg

Show replies
Show replies
Former Member
‎2014 Dec 02 12:27 PM
0 Likes

Hello Jörg,

many thanks for answer.

The problem is, all SAP PI incoming connections terminates on the ICM (ABAP). So the HTTPS configuration has to be done in transaction STRUSTSSO2.

Regards,

Jochen

Former Member
‎2014 Dec 02 12:43 PM
0 Likes

Hello Jochen,

you may be right if that communication is to the ABAP stack directly. However, if you send messages to the AS Java, you have to do the configuration in NWA. See here:

Configuring the Use of SSL on the AS Java - Network and Transport Layer Security - SAP Library

In this case, all configuration in ABAP stack will have no effect and is not required.

Regards,

Jörg

Ask a Question