Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

SSL Handshake Error

Former Member

on ‎2019 Jul 31 8:32 AM

0 Likes
4,718

I am currently using an RFC of Type " HTTP Connections to External Sever" to establish connectivity with a third party system with Target Host as Spectrum.pitneybowes.com and Path Prefix as /Soap/ .

I have installed the SSL Certificate of the above Target Host in Strust and I am able to establish connectivity.

But when I use the Sub Domain of the above mentioned Target Host i.e. microbatch.spectrum.pitneybowes.com and Path Prefix as /Soap / with the very same SSL Certificate then I am not able to establish connectivity as it throws an SSL Handshake Error.

According to the owner of the third party system the SSL Certificate is a wild character certificate which supports multiple Sub Domains of Spectrum.Pitneybowes.com and it works fine for them over the URL and other applications .

However it's not working in SAP , kindly advice.

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies
Matt_Fraser
Active Contributor
‎2019 Aug 01 3:43 PM

Hi Vishwam,

I've slightly changed the tags on your question, as "Security" is clearly the primary issue you are trying to solve, and "logging of RFC and web services" is more about collecting trace files. Although you've already got one of the top experts on the case with you in Samuli, but the new tag may attract the attention of others besides, as well as making this more visible to others with the same issue in the future who may be interested in the ultimate solution.

Cheers,
Matt Fraser
SAP Community Moderator

View Entire Topic
SamuliKaski
Active Participant
‎2019 Jul 31 12:30 PM
0 Likes

The 3rd party is right, their wildcard certificate is correctly setup. Their wildcard certificate has 3 parts to it: root CA, intermediate and SSL server. All 3 must be trusted by SAP. You do not specify, how exactly you are accessing the target. You may have to store the certificates in multiple nodes in STRUST: System PSE, SSL standard, SSL anonymous, etc. If your system has multiple instances, you might have to make sure all instances see the certificates either by synchronizing the instances or saving the certificates on each instance.

Show replies
Show replies
Former Member
‎2019 Jul 31 12:52 PM
0 Likes

Hey Samuli , thanks for the reply.

I have stored the SSL Certificate already into multiple nodes that you have suggested above but it still throws SSL handshake error for the Sub Domain UR and not for the Main URL.

No System does not have multiple instances that I would need to sync.

Ask a Question