cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SM59 and https

Duraz
Explorer

on ‎01-17-2014 11:28 AM

0 Kudos

Hi,

I have a problem with connection to external https server. I have had activated https protocol in tcode SMICM but I still can't connect to remote server. When testing the connection in SM59 we get error code HTTPIO_PLG_CANCELED. I know that it is a problem with SSL certificate and that we should set something in tcode STRUST but I don't know what kind certificate i should import or set up. And should we change anything in a section 'Logon and Security' in SM59.

Could someone tell us how to set it up.

Greetings,

Honza

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (4)

Answers (4)

Former Member
‎01-19-2014 8:04 AM
0 Kudos

Hi Jan

When you do a connection test , please check the SMICM logs for the corresponding messages.  They will give you a hint as to what might be actual problem.

it might be related to SAP System PSE or to the certificates for the external interface which you are trying to connect to. 

Please check and let us know.  Also refer the links highlighted above.

Thanks

Rishi

Show replies
Show replies
Duraz
Explorer
‎01-19-2014 8:26 PM
0 Kudos

Hi all,

I still can't find a solution to my problem. I simply want to connect to public web page https://isir.justice.cz from sap system. I have already created http connectio to a different page and it works. But I need a connection to this particular https page. Before that I generated sapssls.pse file and than I activated https port in SMICM. And now I don't know what else I should do. Shall I use STRUST and import a web page https certificate? Or shall I create SSL server (client) in STRUST? I can't find any suitable guide for it. In SMICM trace log is only one error message: NiIRead: SiRecv failed for hdl 28 / sock 8844.

Regards,

Jan 

Former Member
‎01-19-2014 11:36 PM
0 Kudos

Hi,

Have you get the Root and the CA certs.....?

If yes then import the root and the CA in strustsso2 in the SSLclient...

Thanks

Rishi Abrol

Duraz
Explorer
‎01-20-2014 10:00 AM
0 Kudos

Hi,

I imported certificates and it is still the same.

Regards,

Jan

Former Member
‎01-20-2014 10:23 AM
0 Kudos

Hi,

Did you restart the ICM in SMICM... what cert did you import and in what area in strustss02..

Thanks

Rishi Abrol

Duraz
Explorer
‎01-20-2014 12:56 PM
0 Kudos

Hi,

Yes, I restarted ICM before. I imported it to SSL client (Standard).


Jan

Former Member
‎01-20-2014 2:56 PM
0 Kudos

hello jan,

have you Exchanged the certificate to the remote server.If u have created the HTTPS Connection then you need to import certificate in External Server so that both server can easily read the certificate and talk with each other.


Former Member
‎01-21-2014 12:24 AM
0 Kudos

Hi,

Can you add in the Anon SSL client also and then post the screen shot of strutsso2 also for both the tabs.

Also the rfc setting in the sap logon tab in Sm59

Thanks

Rishi Abrol

Duraz
Explorer
‎01-21-2014 9:04 AM
0 Kudos

Hi,

Screenshots in SM59:

Screenshot in STRUSTSSO2

Regards,

Jan

Former Member
‎01-21-2014 9:54 AM
0 Kudos

HI,

I cant see the root and the CA certs in strustsso2..

Please extract the root and the CA cert and add in strustsso2.

Thanks

Rishi Abrol

Duraz
Explorer
‎01-28-2014 12:24 PM
0 Kudos

Hi,

Finally it's solved. The problem was in our firewall and I imported a bad format of a certificate.

Thank you all for your help.

Regards,

Jan

former_member45419
Active Contributor
‎01-19-2014 4:51 AM
0 Kudos

Hi Jan,

Pls check the below links for similar error,

http://scn.sap.com/thread/2108858

http://scn.sap.com/thread/2140654

http://scn.sap.com/thread/3296273

http://scn.sap.com/thread/1843220

Regards

Nayeem

Show replies
Show replies
Former Member
‎01-17-2014 12:50 PM
0 Kudos

Hi,

Have you got ROOT and CA cert added in strustss02. in the SSL client  section ..

If not then import the certs..

Once the certs are imported restart the SMICM ..

Once this is done . Are you trying to create http type connection. If yes then select the option SSL Active  and SSL certs Anon SSL client in sap logon tab in the RFC..

Thanks

Rishi Abrol

Show replies
Show replies
Former Member
‎01-17-2014 11:54 AM
0 Kudos

Hello Jan,

Here are the list of thinks that u need to check.

1:Firstly check that your PSE is correct .You can go through this SAP note 506314 .

Creating or Replacing a PSE (SAP Library - System Security)

You can see all your PSE is created in this DIrectory D:/usr/sap/<SID>/DVEMGS<NR>/sec .

2: Secondly go to STRUST and see that SSL Client cerificate is exchanged between your target server and your server so that both server can recognise each other

2: logon and security is such a user which will be there in target system . you can go with BASIC authentication , check that user that u are putting is there in target system.

Do not set the logon ticket option

Thirdly in security option put SSL client standard.

Also exchange both certificate from source and target .

Regards,
Dipak

Show replies
Show replies
Ask a Question