on 10-21-2007 1:24 PM
Hi gurus,
i am getting the below error after configuring the SSL i use the self-signed CA
in the certificate i am getting the error
<b>This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store.</b>
please help me on this
thanks,
kishore
hi gurus,
And also can you please tell me how to desable the HTTP after activating HTTPS
thanks and regards,
Kishore
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Kishore,
I think u have not added the certificate to trusted CA in config tool, make sure u added this and alo look into below link
Regards
Krishna.
Hello Reddy,
Thanks for you reply
Reddy can you please clear me should i add the certificate in TrustedCA
because i followed the steps of Enabling "Enable SSL on J2EE Engine"
in that the document didtn mention any vr to add the certificate in TrustedCA
but should i configure Client Certificates for Authentication also is it required?
and also how i am able to use both the link with HTTP as well as HTTPS
how can i disable HTTP
cna you please cleare this
thanks
kishore
Hi Reddy,
i am really confused now
this is what he configuration i haved done
loginto visul admin>>in key storage in service-SSL
created the pivate/public key.
then generated the CSR with ext .crt
and send to SAP for CA signature and afer that the CA received from SAP
imported into CSR
then binded the public/private key to the port 50001 in SSL provider
after that restarted the j2ee engine
and checked with https in browser executed with couple of warnings and and checked the certificate got the error
<b>"This certificate cannot be verified up to a trusted certificate authority"</b>
and aslo i am able to access the http browser
that means SSL is not configured correctely
and about the client certificate for authorization
after creating the user and assigning to the TrustedCAs
that generates the certificate so what is the use of this certificate
please correct me if i am wrong
thanks and Regards,
Kishore
You do not need a client/user certificate for SSL. A client certificate authenticates the user to the website (like the SAP Passport you are probably using to logon to SDN...).
What you want is a certificate that allows the client to validate the SSL cert of the server:
- go to <a href="http://service.sap.com/tcs">http://service.sap.com/tcs</a>
- select "Download Area" in the left-hand menu
- select "Root Certificates"
- select "Test CA Certificate" or "SAP Server CA Certificate", depending on what type of SSL cert you requested: download it
- double-click to open it, and select "Install Certificate"
Each client that wishes to access that server without the warning pop-up will need that certificate installed.
User | Count |
---|---|
86 | |
10 | |
10 | |
9 | |
7 | |
7 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.