on 01-17-2013 10:06 AM
Hi all, could you please tell me how to enable v3 of https?
Could ou please tell me how to check which version of https is enable?
SAP Nw 7.3 is the version
Thank you very much
With SAP the SSL version is determined by the SAPCRYPTOLIB in use. SSLv3/TLSv1.0 has been supported since SAPCRYPTOLIB pl28 which was released in 2010. Notice that your SAP kernel needs to be at least as new as the SAPCRYPTOLIB in use. This is because the list of supported ciphers is defined by the kernel.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi and thank you very much for your answer.
Ok that from pl28 SSLv3 is supported, but in default setting, SAP communicates on SSLv1 or SSLV3?
I ask you this becase in my CRM SAP NW 7.01 I enabled HTTPS services, and if I try to connect with browser I receive a certificates that in the description has got Version1. I don't know if this Version1 is SSLv1 meaning... but I need to understand if SAP communication on SSLv3 or SSlv1 in default setting and if I need to modify some parameter...
What version of SSL will be used depends on the cipher suite. The cipher is something that the client and server have to agree on. If you force a cipher which requires TLSv1.0, SSLv3 will be used. See SAP note 510007 for details.
In the notes I read that
but for example if I want to disable the BC option CLIENT.HELLO, is it possibile?
Can you share a link to the IBM WebSeal documentation which says that Client Hello is not supported? As far as I know, some version of Client Hello is required since it's part of the SSL handshake. See the attached link for an explanation of Client Hello.
Can you please provide details on how you plan to use IBM WebSeal together with SAP? If you are using it as a reverse proxy for SAP, it will act as an client to SAP meaning IBM WebSeal will send the Client Hello and SAP will be happy to accept it.
http://technet.microsoft.com/en-us/library/cc785811(v=ws.10).aspx
User | Count |
---|---|
80 | |
24 | |
11 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.