Hello,

we configured one webdispatcher für different Domains and Backends.

https://Domain1:443 --> is routet to a JAVA Netweaver

https//Domain2:443 --> is routet to an ICM of an ABAP ERP System

wdisp/system_<xx> - SAP Web Dispatcher - SAP Library

In our stage environment we don't have any problems, because we used an internal company certificate. We only delivered the two domains and get anpfx file, which we could import to webdispatcher without problems.

Now we want to set this configuration in our productive environment. We did a certificate request with IIS

http://techontip.wordpress.com/2011/06/06/how-to-create-a-san-certificate-signing-request-for-iis-we...

an send it to our certificate issuer. We get back an p7b file.

We tried to import this file, it doesn't work.

We changed p7b file to pfx file and tried to import it.

But we always get an error:

Error in import_p12: (9/0x0009) af_verify_Certificates failed

Error in af_verify_Certificates: (1538/0x0602) invalid algorithm

Algorithm md2WirhRsaEncryption (OID 1.2.840.113549.1.1.2), Parameter: NULL

Error in sec_verify_init: (1538/0x0602) invalid algorithm

Algorithm md2WirhRsaEncryption (OID 1.2.840.113549.1.1.2), Parameter: NULL

Error in sec_hash_init: (1538/0x0602) invalid algorithm

Algorithm md2WirhRsaEncryption (OID 1.2.840.113549.1.1.2), Parameter: NULL

Error in sec_verify_init: (1538/0x0602) invalid algorithm

Algorithm md2WirhRsaEncryption (OID 1.2.840.113549.1.1.2), Parameter: NULL

Error in sec_hash_init: (1538/0x0602) invalid algorithm

Algorithm md2WirhRsaEncryption (OID 1.2.840.113549.1.1.2), Parameter: NULL

ERROR in af_pse_get_PCAList: (42130/0x1022) Obejct PCAList doesn't exist

ERROR in af_pse_get_PKRoot: (42130/0x1022) Obejct PKRoot doesn't exist

We now want to try to create a certificate request with sapgenpse get_pse.

But we didn't find a description how to do this with two Common Names (CN).

So please somebody help us.

Best regards

Petra Wöritz