Dear Experts,
Basically my scenario communicate from Web service(online payments) to SAP ISU, sender side using SOAP adapter and receiver side using proxy(XI receiver adapter addressing type is HTTP destination).The interface working very fine at production system. Now we are implementing for SSL sap pi.
All interfaces communicate like PROXY to SOAP (SYN/ASYN communications) and SOAP to PROXY communications (for online payment).
Network team provide certification key that key we are deploy on directly on production server its working fine for SAP EP(potal). The same way if we ll deploying in SAP PI
system level. Is it working or not?
Why i am asking this doubt .if any parameters adding Tcode RZ10 in Instance profile below mentions list and Restart SAP PI SAP MMC instance after that ABAP stack only working, java stack not working in process list disp+exe showed yellow color there some j2ee failuredispaled.
This is the 'Developer Trace':
WARNING => DpNetCheck: NiAddrToHost(1.0.0.0) took
6 seconds
***LOG GZZ=> 2 possible network problems detected
- check tracefile and adjust the DNS settings
Error
No 10054
Error Text
WSAECONNRESET: Connection reset by peer
(#-----------------------------------------------------------------------
# SSL parameters
#-----------------------------------------------------------------------
ssl/ssl_lib =
$(DIR_EXECUTABLE)$(DIR_SEP)$(FT_DLL_PREFIX)sapcrypto$(FT_DLL) or
G:usr/sap/PD1/SYS/exe/run/libsapcrypto.dll
sec/libsapsecu = $(ssl/ssl_lib)
ssf/name = SAPSECULIB
ssf/ssfapi_lib = $(ssl/ssl_lib)
ICM/HTTPS/verify_client = 1
RDISP/start_icman = TRUE
icm/server_port_0 = PROT=HTTPs,PORT=50213,EXTBIND=1,TIMEOUT=3600,PROCTIMEOUT=900
login/create_sso2_ticket = 1
login/create_sso2_ticket = 2)
and update SAP environment variable with the following value with user SIDADM.
SECUDIR=/usr/sap/<SID>/<Instance>/sec; export SECUDIR
SMICM:HTTP:50200 sapdevpi1 active and HTTPs:50213 also active mode there is no active problem. If selected any service has been successfully .
At NWA:
Create
Private key and Certificates and generate CSR certificate these are steps dome after that restarted java j2ee instance here also its working fine all status green show started .Basically I am not aware of configuration for ssl just reading blog I was deployed .
My doubts:
Actually that certificate key related production system but i am using development system level. So if i used same key in development .is it working possible or not?.
Some of the SDN blogs suggested parameters adding instance profile and some of sdn persons suggested default profile adding ssl related parameters . my question which is right one?.
If SSL implemented SAP PI level. how to connected third party systems(webservices ) with sap ISU(ECC) system.
Now working URL for
saop sender cc with out SSL:
http://sapdevpi1:50200/XISOAPAdapter/MessageServlet?senderParty=&senderService=WS_DV&receiverParty=&...
IF SSL
implementation done the URL looks like: is it fine ?
https://sapdevpi1:50213/XISOAPAdapter/MessageServlet?senderParty=&senderService=WS_DV&receiverParty=... but here one doubt WSDL file imported from ID so default start with HTTP url generated.but If need to connected Https by
using SSL we need physically change URL or not ?.This is about conncetion from third party systems.
Coming to the SAP PI all(dir/sld/rwb) URL open with https://sapdevpi1:50213/dir/start/index.jsp
Finally I am very much confusion .......dear experts anybody could help .
Thnaks & Regards,
Sridhar Nalla.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.