cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Certificate with wrong host name

Former Member

on ‎04-10-2012 12:35 PM

0 Kudos

The certificate installed on our PI quality system shows the desgnated host name of PI production system . that means whenever iam opening the java home page of Pi Quality , the error thrown as the ceertificate belongs to wrong host, can i chagne the host name soemwhere in that certifcate.................please revert at eraliest..this is urgent.............

Tahnks,

Somya

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

baskar_gopalakrishnan2
Active Contributor
‎04-10-2012 4:41 PM
0 Kudos

> can i chagne the host name soemwhere in that certifcate..

You cannot edit the certificate. You need to apply a new one with the required host name. Changing the server host name according to the certificate host name will impact other issues.

Show replies
Show replies
Former Member
‎04-11-2012 9:09 AM
0 Kudos

Hi,

The exact error thrown is that when we open the Quality server NWA Link:

https://QID.<Domain>.com/nwa , in the right most side, it says Certificate Error :  the detaile derror will be :

The issuer and issued to is actually  PID.<Domain>.com which is our production server , although it should be  QID.<Domain>.com which is our test server so that needs to be changed.

Screenshot for error is attached hereby.

Thanks,

Somya

Former Member
‎04-11-2012 10:11 AM
0 Kudos

Hi,

Please check the folllowing points:-

1. The correct server certificate is present in the TrustedCA
   keystore view of NWA .

2. The server certificate chain contains expired certificate.

3. The server certificate chain is not ordered in right way. Basically
   the server certificate chain should be in order Own->Intermedite->

   Root. If issuer certificate A is B and for B it is C(root), then the
   chain should be A->B->C and not as B->C->A or other combinations.

If this does not help, then I would recommend coming up with a new certificate with the URL maintained correctly and approved by the signing authority.

Thanks,

Atul

Former Member
‎04-11-2012 11:24 AM
0 Kudos

Hi Atul,

Thanks for your reply. I did not understand how to check for the correct order as u said

Own->Intermedite->Root,how to understand this:

Actually we need to import a self signed certificate, the certificate in Quality is self signed and there is no signing authority for the same. Are u aware , how to create an dimport a self signed certificate.

Thanks,

Somya

Former Member
‎04-11-2012 11:43 AM
0 Kudos

Hi Sowmya,

Please see the links:-

http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/60ff2883-70c5-2c10-f090-a744def2b...

http://help.sap.com/saphelp_nwpi711/helpdata/en/a7/1cd08ffe25e34799cbbe1a7ecdb8ed/frameset.htm

Hope this helps. If not, let me know what further problems are being faced.

Thanks,

Atul.

Former Member
‎04-10-2012 3:52 PM
0 Kudos

Hi Somya,

Please set the fqdn as follows:-

Go to NWA->Configuration management->security->services and keys->trusted CA's->create a new certificate with the correct fqdn

If this does not help, please provide the exact error text seen

Regards,

Atul

Show replies
Show replies
Former Member
‎04-10-2012 4:25 PM
0 Kudos

Hey....once we have filled all the details , it wont provide us with the certificate rite.....

we need to raise a CSR request .which needs to get approved by signing authority , after that we can import that into system.

Please lemme know the deatiled resolution with steps if possible that how it will work so that i get clarity.

Thanks,

Somya

Former Member
‎04-10-2012 7:22 PM
0 Kudos

Hi,

I believe creating a new certificate by the steps i gave previously would help here.Yes, that would require the signing authority's approval. Would this not be acceptable?

I am not quite sure what the issue is here then. If the previous solution is not acceptable then providing the exact error text you are seeing would be very helpful.Meanwhile it would be helpful to go through SAP note 821267[Q. 24].

Thanks,

Atul

Ask a Question