cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Required Both connection type http and https

Former Member

on ‎10-19-2012 7:42 PM

0 Kudos

Hello,


is there a way to configure a system for portal content (NetWeaver CE 7.1 Java System) with a connection type http and https? Now I use http and it works fine but some user required https for the portal.
I need both types of connections.


Thanks
Ashish

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
‎11-07-2012 10:30 AM
0 Kudos

Hi Ashish,

check if Note 1507174 is helpful

Regards,

Amit

Show replies
Show replies
Former Member
‎10-19-2012 10:31 PM
0 Kudos

Hi Ashish,

Thats very much possible. You just need to implement SSL in your environment. After this is implemented, you will be able to access portal from both.

Here is the SSL implementation guide for you -

http://wiki.sdn.sap.com/wiki/display/EP/Configuring+the+Use+of+SSL+on+the+SAP+J2EE+Engine

This will resolve your query. If you face problem in implementation, get in touch with your basis team.

Regards,

Ashutosh Shukla

Show replies
Show replies
Former Member
‎10-20-2012 12:24 AM
0 Kudos

Hi Ashutosh

Thanks for reply. Already implemented SSL on java system. But HTTP is not wokring after implement.If i disable ssl parameters then am able to login thru HTTP.

Its old verion guide.No more sdm in netwevaer CE 7.1 http://wiki.sdn.sap.com/wiki/display/EP/Configuring+the+Use+of+SSL+on+the+SAP+J2EE+Engine

Please let me know if any other solutions. Thanks

Regards,

Ashish

Former Member
‎10-21-2012 4:33 AM
0 Kudos

Can you tell us what is logged under dev_icm log in work folder .

Thanks,

Dev

Former Member
‎10-22-2012 11:43 AM
0 Kudos

Dear Ashish

Please refer saphelp documenation for configuring SSL (HTTPS) on Java AS:

1. Transport Layer Security on the AS Java

http://help.sap.com/saphelp_nwce711/helpdata/en/bc/2ee9a2d023d64eac961745ea2cb503/frameset.htm

2. Configuring the Use of SSL on the AS Java

 

http://help.sap.com/saphelp_nwce711/helpdata/en/f1/2de3be0382df45a398d3f9fb86a36a/frameset.htm

I hope this helps you.

Tapan

Former Member
‎10-22-2012 7:31 PM
0 Kudos

Thanks Tapan

If i configured SSL then HTTPS working fine but HTTP url is not working.

Our requirement ..we need both urls for different-2 components.

Please let me know ...is it possible or not? If possible then how it's possible?

Regards,

Ashish

Former Member
‎10-23-2012 4:09 AM
0 Kudos

ICM parameter is responsible for keeping http port active , could you please check this in your system.

icm/server_port_<No> = PROT=HTTP, PORT=5<inst_no.>00, TIMEOUT=60

Former Member
‎10-23-2012 4:58 PM
0 Kudos

SSL parameter maintain -

ssl/ssl_lib = $(DIR_EXECUTABLE)\sapcrypto.dll

sec/libsapsecu = $(DIR_EXECUTABLE)\sapcrypto.dll

ssf/ssfapi_lib = $(DIR_EXECUTABLE)\sapcrypto.dll

ssf/name = SAPSECULIB

icm/server_port_0 = PROT=HTTPS,PORT=5$(SAPSYSTEM 00,TIMEOUT=600,PROCTIMEOUT=3600

icm/HTTPS/verify_client = 0

Former Member
‎10-24-2012 4:32 AM
0 Kudos

Above parameters looks fine for SSL but am not able to find icm/server_port_<x> for http.

In MMC -> goto Access points check if you are able to see Http port ?

Would suggest to check dev_icm log and let us know the error.

Former Member
‎10-24-2012 5:27 PM
0 Kudos

dev_icm logs -

[Thr 4176] Tue Oct 23 12:42:07 2012

[Thr 4176] *** WARNING => IcmNetCheck: NiAddrToHost(10.0.0.1) took 5 seconds [icxxman.c    5939]

[Thr 4176] *** WARNING => IcmNetCheck: 1 possible network problems detected - please check the network/DNS settings [icxxman.c    5995]

[Thr 7120] Tue Oct 23 12:42:22 2012

[Thr 7120] JNCMIHttpMsPutLogon: delete http logon information

[Thr 7120] JNCMIHttpMsPutLogon: delete https logon information

[Thr 7120] JNCMIP4MsPutLogon: p4 port information not available

[Thr 7120] JNCMIIIOPMsPutLogon: reset iiop logon information

[Thr 7120] JNCMITelnetMsPutLogon: reset telnet logon information

[Thr 7120] JNCMIHttpMsPutLogon: delete http logon information

[Thr 7120] JNCMIHttpMsPutLogon: delete https logon information

[Thr 7120] JNCMIP4MsPutLogon: p4 port information not available

[Thr 7120] JNCMIIIOPMsPutLogon: reset iiop logon information

[Thr 7120] JNCMITelnetMsPutLogon: reset telnet logon information

[Thr 7120] Tue Oct 23 12:42:52 2012

[Thr 7120] JNCMIHttpMsPutLogon: delete http logon information

[Thr 7120] JNCMIHttpMsPutLogon: delete https logon information

[Thr 7120] JNCMIP4MsPutLogon: p4 port information not available

[Thr 7120] JNCMIIIOPMsPutLogon: reset iiop logon information

[Thr 7120] JNCMITelnetMsPutLogon: reset telnet logon information

One more question

How to generate SSL certificate?

Former Member
‎10-24-2012 6:10 PM
0 Kudos

Did you manage to check icm parameter for http in instance profile ?

SSL certificates can be created via NWA -> content tab -> in keystore view table -> select ICM_INSTANCE_<xxx> view and delete the entries below it and thn create the certificates.

http://help.sap.com/saphelp_nwpi711/helpdata/en/f1/2de3be0382df45a398d3f9fb86a36a/frameset.htm

Former Member
‎10-24-2012 7:17 PM
0 Kudos

I have changed parameter as below but still not work -

icm/server_port_1 = PROT=HTTPS,PORT=5$(SAPSYSTEM 01,TIMEOUT=600,PROCTIMEOUT=3600

icm/HTTPS/verify_client = 0

icm/server_port_0 = PROT=HTTP,PORT=5$(SAPSYSTEM 00,TIMEOUT=600,PROCTIMEOUT=3600

Former Member
‎10-25-2012 12:57 PM
0 Kudos

Well my last attempt ,

create the certificate - sign it with the CA -- restart the ssl provider service and icm and check.

If this dosent work and http works thn we should check the icm log again.

Former Member
‎10-25-2012 6:07 PM
0 Kudos

I have changed the parameter.

icm/server_port_4 = PROT=HTTPS,PORT=5$(SAPSYSTEM 01,TIMEOUT=600,PROCTIMEOUT=3600

icm/server_port_0 / 1 / 2 / 3 already in use so i define

icm/server_port_4 for HTTPS. Now its work.

SSL certifcate error still occur. how to generate and register?

Ask a Question