Need to change CSR key size from 1024 to 2048

Former Member · ‎01-25-2011

Hello SAP experts,

I am encountering an error when generating new certificates:

· Invalid Key Size

Current Key Size: 1024

The key size in the provided CSR is not valid. The key size must be at

least 2048. Please attempt the request again. If the problem persists

contact Entrust Certificate Services support for assistance.

The CSR was generated using Visual Admin -> Server_Name -> Services ->

Key Storage -> ServiceSSL -> Generate CSR

For ABAP systems, I know that the following parameters can control the

key size/length:

sec/dsakeylengthdefault

sec/rsakeylengthdefault

Are these parameters applicable to a pure Java stack system?

How can the CSR key size be changed from 1024 to 2048?

System: GRC Production

Installation: NW Installation for GRC

System Type: Production system

Product Version: SAP GRC RISK MANAGEMENT 2.0

Operating System: AIX 5.3

Database: ORACLE

Technical Usage Type: Application Server Java

Thanks in advance!

Regards,

Kris Caldoza

Former Member · ‎01-25-2011

This message was moderated.

mvoros · ‎01-26-2011

You can also try to generate certificate using external tools such as OpenSSL and then import it into key storage. The question is if it Java AS will be able to work with this certificate.

Cheers

Former Member · ‎01-31-2011

See knowledgebase article [1548872|http://service.sap.com/~form/handler?_APP=01100107900000000342&_EVENT=REDIR&_NNUM=1548872]

Cheers, Uwe

Former Member · ‎07-20-2011

Thanks Uwe - we had a similar issue and your link popped up before SAP help did

regards,

VJC