cancel
Showing results for 
Search instead for 
Did you mean: 

FIPS-compliant SSL as client in XI 7.0

Former Member
0 Kudos

Hello experts,

I am configuring an RFC destination in SM59 to send data to an external system via HTTPS.

The partner requires FIPS 140 compliant cryptography (which means TLSv1 cipher suites) - or else they deny the SSL request. Everything I have seen thus far shows SSLv3 as the highest encryption level supported in this scenario.

Wondering if anyone out there has encountered something similar, and if TLSv1 is supported at all in this sort of integration scenario.

FYI - SAP XI 7.0 SPS 16, SAPCRYPTOLIB = 5.5.5.C pl22

Accepted Solutions (1)

Accepted Solutions (1)

marksmyth
Product and Topic Expert
Product and Topic Expert
0 Kudos

Hi

Unfortunately, the SAP Cryptographic Module is not FIPS compliant and at the moment there are no immediate plans to make it FIPS compliant.

If you have any further queries regarding this issue you can contact the SAP Security team directly via the email: security at sap.com.

Regards

Mark

Former Member
0 Kudos

Understood. Thanks for your help.

Former Member
0 Kudos

Hi Mark,

Any chance that you could post the ciper list for SSLv3 that is supported in PI 7.1 or a URL that shows the same?

Best Regards

Former Member
0 Kudos

Hi Mark,

Any chance that you could post the ciper list for SSLv3 that is supported in PI 7.1 or a URL that shows the same?

Best Regards

Answers (0)