Use the procedure below to create the PSE that the server uses for SNC.
If you are using a single PSE for all server components and you have already created the PSE on a different server, see Importing the SNC PSE.
If the SAP Cryptographic Library is not installed, the trust manager does not display the node for the SNC PSE.
Using the trust manager (transaction STRUST):
The <Create/Replace> PSE dialog appears.
If you use a reference to a CA namespace, the elements contained in the CA field are automatically used for the server's Distinguished Name. In this case, you are also unable to modify the Country field. Use the toggle function () to activate or deactivate the reference to a CA name space.
The application server's Distinguished Name for SNC must also be unique. You cannot specify a Distinguished Name that the server uses in a different PSE, for example, the system PSE.
You return to the Trust Manager screen.
The PSE dialog appears.
You return to the Trust Manager screen.
The system creates the SNC PSE and distributes it to the individual application servers. The system protects the PSE with a password and creates credentials for the server so that it can access the PSE at runtime.
If you are using individual PSEs, the next step is to exchange the servers' public-key certificates. Otherwise, export the SNC PSE to the file system.