cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Certificate Expiration

Go to solution
former_member223432
Participant

on ‎03-08-2012 10:33 AM

0 Kudos

Hi Experts,

we have an interface to integrate wiht BANK which is working fine and now their Certificates are getting expired on 20th of march....they have given us the new certificates to deploy but they want us to activate them only on 20th march.

Will it hav any problem if we deploy now itself? ia m planning to import this certificates and rename them now and activate on 20th? wil it have any issues?

Renaming the certificates create any problem?

please reply. thanks

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎03-08-2012 12:02 PM
0 Kudos

Hi,

> Will it hav any problem if we deploy now itself?

Right now you are using old certificate so bank people sends the data by using old certificate. When message comes to PI it verifies the old certificate if it is not found then it throw an error.

> ia m planning to import this certificates and rename them now and activate on 20th? wil it have any issues?

There is no issue here.

> Renaming the certificates create any problem?

If you rename the certificate you need to do the changes in your receiver agreement and sender agreement. But inside the certificate one common name (CN) is there we don't suppose to change that one.

Regards,

Venkata Ramesh

Show replies
Show replies
former_member223432
Participant
‎03-08-2012 12:54 PM
0 Kudos

Thanks Venkata for your reply.

we are deploying now but will activate ONLY on 20th march till then OLD certificates only be used...

But in our sender/receiver agreements, we have not specified any certificate name...we have justr "*" after keystore as shown below.

TRUSTED\BANK\*

is that fine?

regards

Edited by: ayrahcaanilan on Mar 8, 2012 1:55 PM

former_member223432
Participant
‎03-08-2012 2:48 PM
0 Kudos

Any Valuable suggestions please.

Your help would really be appreciated.

thanks

former_member4985
Employee
Employee
‎03-08-2012 5:08 PM
0 Kudos

Dear customer,

You can import it now as it'll be set not to work Before march 20th.

Further information, please check:

"HTTP and SSL"

http://help.sap.com/SAPHELP_NWpi71/helpdata/EN/14/ef2940cbf2195de10000000a1550b0/frameset.htm

Regards,

Caio Cagnani

Former Member
‎03-09-2012 5:51 AM
0 Kudos

Hi,

As per my understanding if we are using * then it checks all the certificates then continue so if you import the new certificate also that doesn't effects any thing. You can install new certificate its not an issue.

But recommendation is instead of * if we mention the name of the certificate system directly goes to that particular certificate and validates so that performance is good.

Regards,

Venkata Ramesh

Answers (1)

Answers (1)

Former Member
‎03-08-2012 11:32 AM
0 Kudos

It depend on type of connection that you've used.

In some cases, you need to deploy certificate when also the bank system has changed it.

If you import/deploy the new certificate related to the same System's name, some connection problems could be raised.

Remember to restart the Java instance, after certificate import.

Show replies
Show replies
Ask a Question