cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

HTTP-ADAPTER with HTTPS = ICM_HTTP_SSL_ERROR

Former Member

on ‎10-04-2005 8:53 AM

0 Kudos

Hi,

we are trying to sending data via HTTPS with the HTTP-Adapter. Therefor we create a RFC_Destination with SM59. For HTTP it works fine but after changing to HTTPS we receive a ICM_HTTP_SSL_ERROR.

The server on the other side expect authentification via User/Pwd on port. Also we added an entry in STRUST for CN=anonymous in STRUST.

Any idea whats wrong ?

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (2)

Answers (2)

Former Member
‎10-09-2006 10:06 AM
0 Kudos

Hallo Bernd,

were you able to solve the problem. We are facing the same challenge !

Any input would be great !

Gruss,

Zubair

Show replies
Show replies
Former Member
‎10-04-2005 12:08 PM
0 Kudos

Hi Bernd

How have you configured your RFC destination, are you using SSL client certificates for authentication or just userid-password authentication.

If site to which you are connecting doesn't require SSL authentication then make SSL inactive.

If site to which you are connecting it doesn't require any authentication, change to 'No Logon'.

If site to which you are connecting requires uid-pwd change logon procedure to 'Basic Authentication' and supply uid and pwd.

Also try making SSL inactive in sm59.

cheers

Sameer

Show replies
Show replies
Former Member
‎10-04-2005 1:11 PM
0 Kudos

Hi Sammer,

- authentification is username/pwd.

- SSL is active because of https

- Service is set to the https-port of the server.

I receive the following error in the log.

[Thr 10] >> ---------- Begin of Secude-SSL Errorstack ---------- >>
[Thr 10] ERROR in ssl3_get_server_certificate: (9/0x0009) the verification of the server's certificate chain failed
ERROR in af_verify_Certificates: (24/0x0018) Chain of certificates is incomplete : "OU=Class 3 Public Primary Certification Auth
ERROR in get_path: (24/0x0018) Can't get path because the chain of certificates is incomplete
[Thr 10] << ---------- End of Secude-SSL Errorstack ----------
[Thr 10]   SSL_get_state() returned 0x00002131 "SSLv3 read server certificate B"
[Thr 10]   SSL socket: local=10.172.11.11:41579  peer=195.14.237.44:3577
[Thr 10] <<- ERROR: SapSSLSessionStart(sssl_hdl=0x1054e08b0)==SSSLERR_SSL_CONNECT
[Thr 10] *** ERROR => IcmConnInitClientSSL: SapSSLSessionStart failed (-57): SSSLERR_SSL_CONNECT {00021653} [icxxconn_mt.c 1813]

when I delete in STRUST all the certificates under Client_certificate (standard/anonymus) I receive the same error msg. it also the same error when I am trying to connect to another server with https.

regards bernd

Former Member
‎10-04-2005 6:47 PM
0 Kudos

Hi Bernd

Have a look at the following blog,

/people/eddy.declercq/blog/2005/06/14/it146s-a-matter-of-trust

and also check SAP note 510007

cheers

Sameer

Ask a Question