Setting the SSL Profile Parameters for the SAP Web Dispatcher 

In addition to the standard parameters used by the SAP Web Dispatcher, set the following SSL-relevant parameters.

·        DIR_INSTANCE=<SECUDIR_Directory>

·        icm/server_port_<xx>= PROT=HTTPS, PORT=<HTTPS_Port>, TIMEOUT=900

·        icm/HTTPS/verify_client=<0,1>

·        ssl/ssl_lib=<Location_of_SAP_Cryptographic_Library>

·        ssl/server_pse=<Location_of_SSL_server_PSE>

·        ssl/client_pse=<Location_of_SSL_client_PSE>

·        wdisp/ssl_encrypt=<0,1,2>

·        wdisp/ssl_auth=<0,1,2>

·        wdisp/ssl_cred=<File_name_of_client_PSE>

·        wdisp/ssl_host=<Common_host_name>

Note the following:

·         If the SAP Web Dispatcher is to pass the SSL connection to the server in the backend, then set the parameter icm/server_port_<xx> to PROT=ROUTER, PORT=<port>, TIMEOUT=<timeout_in_seconds>. In this case, the rest of the parameters are not necessary.

·         The parameter wdisp/ssl_cred is only necessary if wdisp/ssl_auth = 2.

·         Use the parameter wdisp/ssl_host if multiple servers in the backend use the same host name in their SSL server certificates (for example, www.mycompany.com).

 

See also:

·        For more information about the individual parameters, see The SAP Web Dispatcher Profile Parameters.

·        For an example, see Sample Profile for the SAP Web Dispatcher When Using SSL.