cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SSL Enablement - Authentication mechanism

Former Member

on ‎08-27-2016 9:34 AM

0 Kudos

Hi All,

We are currently in SAP PO 7.4 single stack environment.

For one of the banking Integrations, we need to hit HTTPS URL of bank's Server.

Authentication: Certificate based Authentication.

Please give more information on One-way Authentication and two-way Authentication mechanism. (Transport level mechanism)

Process done so-far:

1. We have generated Private key and generated CSR Request (PKCS# 10) and share it to Partner for getting CA Signed Public Certificate.

2. Partner provided with Root and Intermediate Certificate and our Public Certificate.

Queries:

1. For SSL configuration to connect HTTPS url steps to be done in SAP PO level?

2.  Do we need to import the Partner's Public Certificate into Trusted CA's keystore in which order ?

3. Certificate based Authentication --> Which Certificate do we need to refer in SAP PO Receiver HTTP_AAE Communication Channel?

Best Regards,

Suresh S

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

former_member204100
Active Participant
‎08-28-2016 11:29 AM
0 Kudos

Hi Suresh,

to your questions:

1. For SSL configuration to connect HTTPS url steps to be done in SAP PO level?

-->

Here you will need to specify in the receiver communication channel the HTTPS endpoint of the target server.

2.  Do we need to import the Partner's Public Certificate into Trusted CA's keystore in which order ?

-->

yes, import the root CA certificate into the Trusted CA's keystore view.

3. Certificate based Authentication --> Which Certificate do we need to refer in SAP PO Receiver HTTP_AAE Communication Channel?

-->

You will need to get one other certificate form the target server. This certificate needs to be different than the cert from point 2.

So basically the target server creates a certificate for your user. And this certificate needs to be imported into the NWA keystore and you will need to use it in PO configuration in the receiver channel.

Best Regards,

Viktor

Show replies
Show replies
Former Member
‎08-28-2016 12:37 PM
0 Kudos

Hi Viktor,

Thank you for your response.

1. For SSL Configuration what are the Certificates we need to import into Key store?

We checked SSL check box in Receiver Communication Channel.

Best Regards,

Suresh S

former_member204100
Active Participant
‎08-28-2016 12:44 PM
0 Kudos

Hi Suresh,

if the PO system connects to the target server using SSL than into the Trusted CAs keystore view you will need to import the root CA of the target server's public key.

Best Regards,

Viktor

Former Member
‎08-28-2016 12:58 PM
0 Kudos

Hi Viktor,

Thank you for the quick response.

Best Regards,

Suresh S

Ask a Question