Configuring the Use of SSL on the AS Java

You can use this section to configure the use of SSL for the AS Java. If you work in a cluster environment, perform the configuration steps for each server that uses SSL.

Note Note

There are also templates available for automating some of the configuration tasks and for validating the configuration. For more information, see http://service.sap.com/instguides Installation and Upgrade Guides SAP Business Suite Applications Cross-Applications Tools Automated Configuration .

End of the note.

Prerequisites

You have administration rights for performing keystore maintenance on the AS Java.
You have installed the SAP Cryptographic Library. For more information, see: Installing the SAP Cryptographic Library for SSL.

Procedure

There are two ways you can configure the use of SSL:

Manually, by configuring the ICM and the AS Java keystore separately.
By using the SSL configuration tool in the SAP NetWeaver Administrator.

For each server that is to support SSL:

Manual SSL configuration	Maintaining ICM Parameters for Using SSL Configuring the SSL Key Pair and Trusted X.509 Certificates
Configuring SSL by using the SSL configuration tool in the SAP NetWeaver Administrator	For more information about the SSL configuration tool, see: Adding New SSL Access Points.

Recommendation

After you configure the use of SSL, test the SSL connection to the AS Java. For more information, see: Testing the SSL Connection.

End of the recommendation.

Note Note

To also enable client authentication with X.509 client certificates, you must configure authentication with X.509 client certificates on the AS Java. For more information, see: Configuring the Use of Client Certificates for Authentication.

End of the note.

Result

The AS Java is configured for using SSL.