04-08-2015 12:37 PM
Hi
I dont find any way to export load balancing Portal server certificate. Lets say, the server PER1.domain.net and PER2.domain.net are load balanced to PER.domain.net. I have successfully exported the certificate of PER1.domain.net and PER2.domain.net but I don't find any way to export load balancing server certificate (i.e PER.domain.net). My portal version is 7.3. We are using Web dispatcher for load balancing
Please advise
04-09-2015 7:41 AM
Hi
Try to find .pse files on file system.
SECUDIR environment variable can help you.
Default place is: /usr/sap/<SID>/<INSTANCE>/sec
Execute command for export:
sapgenpse export_own_cert -o <output_file> -p <PSE_name> [-x <PIN>]
Regards
Przemek
04-09-2015 7:41 AM
Hi
Try to find .pse files on file system.
SECUDIR environment variable can help you.
Default place is: /usr/sap/<SID>/<INSTANCE>/sec
Execute command for export:
sapgenpse export_own_cert -o <output_file> -p <PSE_name> [-x <PIN>]
Regards
Przemek
04-09-2015 7:50 AM
Hi
Which system I need to run this command
As informed, I have two application server and I have already export the certificate for these server. Only Load balancing is remaining and there is no server for load balancing and its being done from Web Dispatcher
04-09-2015 8:00 AM
On web dispatcher.
In general there is a configuration file (sapwebdisp.pfl) where you can find configured destination for pse store.
04-09-2015 8:58 AM
Thanks a lot for a helpful answer.
Just one more help needed. When I run the command sapgenpse to export the certificate it asks me for a PIN. Unfortunately I don't remember the pin. How can I resolve this issue
04-09-2015 10:28 AM
04-09-2015 10:37 AM
Hi
I start the command using <sid>adm user. Cant I reset the password without knowing the old password ?
04-09-2015 11:46 AM
User running web dispatcher have entry in SSO-Credentials and have access to pse without pin.
Somehow web dispatcher must to know the pse content. Maybe other user than <sid>adm is used.
The pin protects pse from unauthorized access. You can guess it or recreate pse from scratch.
You can also mess with cred_v2 file where sso credentials are stored, but I can't help you with this.