on 06-08-2010 9:11 AM
Hi,
I am setting up SSL connection to my SAP EP. I have imported the certificate under key storage in visual admin. As a part of other remaining configurations In visual admin in left pane under Dispatcher>Services> HTTP Provider I have changed the settings from
(Port:50000,Type:http)(Port:50001,Type:ssl) TO (Port:80,Type:http)(Port:443,Type:ssl) After doing this, when I go to
Server_0>Services> SSL provider, and when I select Dispatcher entry I am getting only 2 entries , 3rd entry is missing.
prior to putting port 443 (under HTTP provider ) I was having 3 enteries in SSL provider namely :
192.125.0.55 50006
192.125.0.55 50003
192.125.0.55 50001
but now under SSL provider (Server_0>Services> SSL provider) I am having only 2 enteries
192.125.0.55 50006
192.125.0.55 50003
Why that 3rd entry is not visible after putting 443 port ??
Hi Rahul,
When you change the ports in HTTP provider, this is the usual case. I have faced a similar issue. When i reverted the settings in HTTP provider, it was fine. I mean i was able to see 50001 as well in SSL Provider.
What is purpose of changing the ports in HTTP provider ?
Cheers...,
Raghu
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Yes raghu,
I also experienced the same thing, when i change the port from 443 back to 50001 I am able to see again 3 enteries in SSL provider, only when i put 443 port , 1 entries gets removed from SSL provider. If I put any other port other than 443 I always see 3 enteries in SSL provider. problem is only with 443 port.
The reason I changed the port to 443 is that 443 port is the pre defined port for setting up SSL into sap ep? Do you think without changing this port to 443 still we can configure SSl into sap ep ?
Hi raghu,
Are you saying if i use 50001 port than I should use the following link to access my portal
https://xxx.companyname.com:50001/irj/portal and my portal comes up. (XXX = my portal host name )
AND if i use 443 port than only this link is sufficient, https://xxx.companyname.com/irj/portal
no port is required in the url as 443 is default understood my web browser as https port so no need to enter it explicitly.
Is it like this ??
Hi raghu
any wazs thanks for the reply. Please do let me know
Do i have to do any settings to enable 50001 port in my portal server I mean do i have to check whether 50001 port is enabled or not in case i wish to go ahead with 50001 port option ? OR by default 50001 port is always enabled in sap ep so no need to check ??
Also If I want to go with 443 port option Do you have any idea why 1 entry get dis appeared in SSL Provider if i change port from 50001 to 443 in HTTP provider?? Ideally enteries should not get dis appeared in SSLProvider
please let me know
Hi Rahul,
You have to map the certificate which is loaded in Key storage to 50001 port in SSL provider and then test the URL.
Even i tried to investigate on that issue, but i was unable to.I had an option to use Web dispatcher with which i configured port 443 so didnt get more into this.
Cheers...,
Raghu
Hi raghu,
What is the diffence between the process of setting up https via web dispatcher method and the current one which I am using that is using the certificate method ?
What all we have to do in web dispatcher method? How to configure https in portal using web dispatcher method, could you please guide me in that wat all i have to do? wat are the advantages if I use web dispathcer method over my current process of certificate? Do we have to use certificate in web dispatcher method also ?
Which one I should go for web dispatcher method or using signed certificate ??
please let me know ?
Hi raghu,
I am able to access my sap ep portal with the default sap EP HTTPS url (default connection that comes with sap ep 7.0, By default in SAP EP, HTTPS is enabled and we can acess portal using HTTPS using port 50001)
https://<hostname:50001/irj/portal, its working fine. my portal is opening. There is no need of signed certificate to be used.
Certificate is not coming into picture at all. Simply use this url and portal is opening up.
I have few queries:
1) how will I restrict user to use only this default https url that is end user can use either default http url http://<hostname:50000/irj/portal
or he can use default https url https://<hostname:50001/irj/portal, how will I restrict end user . I want they should always use https url only.
2) what harm will happen even if I use this default sap ep https url https://<hostname:50001/irj/portal, even when my customer decided to use portal over internet ? why i should not go for this default https url over internet? why do i have to buy certificate when this default url is working ? wat extra advantage that certificate will give me ?? to add into this why anyone should go for certificate method OR web dispatchet method when this default https url is already available in portal.
Why you people are also not using this default URL,to access your portal over LAN or internet and why you people also going for certificate method OR web dispatcher method when this default https url is already available in portal.
3)wat is web dispatcher method to configure https in portal ? can you please guide me on this ? I want to try this method also?
how web dispatcher method is different from certificate method ? Do we have to use certificate even in this web dispatcher method aslo ??
please let me know ?
Hi,
Before working on your SAP portal project, you need urgently to learn about https access on the internet, about signed certificates, about certification authorities, about PKI, about network security, about reverse proxies and about all the concepts that you need to master before trying to configure a system.
You will not learn this knowledge by a few messages on a public forum.
Sorry to seem not very friendly but I think this is the best advice I can give to you.
Good luck !
Olivier
Hi Rahul,
I am surprised to see so many questions....
Well, In this case even i suggest the same as Olivier did. You might have many more questions later once we explain these questions.
So i feel, you stop doing your setup and give some time to go through documents. You might also find more interesting things in the course of time.
Cheers.....,
Raghu
Hi raghu,
I do not know how so many times those questions went to you, and if you see closely it is only 1 questions in that I have only 3 querries , I request you to please for the time being try to answer those that will help me a lot in clarifying my doubts and any ways I am reading some documents on sdn and net to get more information on this.
Hi,
IT mean your HTTPS service has not been started.
Check using JCMON
in JCMON goto option 20
in that select option as display ports
and then check in the list whether you are getting any port for HTTPS , if you get it as 0 , it mean you https service has not been started.
Thanks
Anil
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
85 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.