on 12-04-2014 9:54 AM
Hello
We have a requirement to setup an SSL connection between our Java only PI 7.4 system and an on-premise SAP ERP system for IDOC messaging.
Currenly my connection works fine if I specify a technical username and password in the PI RFC Destination. However is it possible to set up the connection both ways using SSL Certificates? Is this even possible?
Thanks,
Krishneel
Yes, absolutely possible.
See here how to configure AS ABAB and AS JAVA for SSL
HTTP and SSL - SAP Process Integration Security Guide - SAP Library
To be more specific you will need the go through following steps if basic SSL setup is already done on AS ABAP (ECC) and AS Java (PI), which i assume reading your post.
1. Create client certificate on AS ABAP. Either self signed or signed by a CA
2. Import certificate in AS Java keystore. You need to trust the CA you used in 1. Configuration of the AS Java Keystore Views for SSL - Network and Transport Layer Security - SAP Lib...
3. Specify certificate from 1. in Destination in AS Java instead of using username / password
Cheers
Jens
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Ok, sorry, missed that...
seems like you are stuck with User / password as of here Network and Transport Layer Security - SAP Process Integration Security Guide - SAP Library and here (row "security") Comparison of IDoc Adapter (IE) and IDoc Adapter (AAE) - SAP PI Reference Documentation - SAP Librar...
Maybe someone else may further clarify if using SNC would be an option here.
Cheers
Jens
User | Count |
---|---|
80 | |
24 | |
11 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.