SSL error

Hi gurus,

i am getting the below error after configuring the SSL i use the self-signed CA

in the certificate i am getting the error

This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store.

please help me on this

thanks,

kishore

SAP Managed Tags:
SAP Enterprise Portal

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Accepted Solutions (0)

Answers (1)

hi gurus,

And also can you please tell me how to desable the HTTP after activating HTTPS

thanks and regards,

Kishore

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Hi Kishore,

I think u have not added the certificate to trusted CA in config tool, make sure u added this and alo look into below link

https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/197e6aec-0701-0010-4cbe-ad5ff670...

Regards

Krishna.

Hello Reddy,

Thanks for you reply

Reddy can you please clear me should i add the certificate in TrustedCA

because i followed the steps of Enabling "Enable SSL on J2EE Engine"

in that the document didtn mention any vr to add the certificate in TrustedCA

but should i configure Client Certificates for Authentication also is it required?

and also how i am able to use both the link with HTTP as well as HTTPS

how can i disable HTTP

cna you please cleare this

thanks

kishore

in the above document see page 30 their they mentioned to store certificate in trusted CA

thats correct that is what i am asking

Client Certificates for Authentication should i do this one also is it necessary

Thanks,

kishore

yes u need to do this also

for trobule shooting SSL see sap note 1019634

Hi reddy,

Thanks for you reply,

one more question please

in the page 37 its its given import pryvate key into browser

this should be done in every user system

thanks,

Kishore

it is optional

Hi Reddy,

i am really confused now

this is what he configuration i haved done

loginto visul admin>>in key storage in service-SSL

created the pivate/public key.

then generated the CSR with ext .crt

and send to SAP for CA signature and afer that the CA received from SAP

imported into CSR

then binded the public/private key to the port 50001 in SSL provider

after that restarted the j2ee engine

and checked with https in browser executed with couple of warnings and and checked the certificate got the error

"This certificate cannot be verified up to a trusted certificate authority"

and aslo i am able to access the http browser

that means SSL is not configured correctely

and about the client certificate for authorization

after creating the user and assigning to the TrustedCAs

that generates the certificate so what is the use of this certificate

please correct me if i am wrong

thanks and Regards,

Kishore

You do not need a client/user certificate for SSL. A client certificate authenticates the user to the website (like the SAP Passport you are probably using to logon to SDN...).

What you want is a certificate that allows the client to validate the SSL cert of the server:

- go to <a href="http://service.sap.com/tcs">http://service.sap.com/tcs</a>

- select "Download Area" in the left-hand menu

- select "Root Certificates"

- select "Test CA Certificate" or "SAP Server CA Certificate", depending on what type of SSL cert you requested: download it

- double-click to open it, and select "Install Certificate"

Each client that wishes to access that server without the warning pop-up will need that certificate installed.

Ask a Question

Top Q&A Solution Author

User

Count

SSL error

Accepted Solutions (0)

Answers (1)

Answers (1)

Re: CDS Projection View parameters not allowed

using Already availble XSUAA service to another ap...

Re: How to show value help with values for Applica...

Crystal jars upgrade with Wildfly and JDK

Re: SAP Business Objects restful api Logoff