Show TOC

Using the Cryptography ToolLocate this document in the navigation structure

Use

You use the following tools for configuring and managing secure communication:

  • The SAPGENPSE Cryptography Tool

  • SAP NetWeaver Administrator

  • Cryptography Software for Apache Web Server

The SAPGENPSE Cryptography Tool

The SAPGENPSE cryptography tool consists of the following files:

Windows

UNIX

sapcrypto.dll (library)

sapgenpse.exe (executable file)

libsapcrypto.<ext>, 
for example, libsapcrypto.so for the operating system SUN OS 5.8.

sapgenpse (executable file).

ticket (license ticket)

ticket (license ticket)

You use SAPGENPSE to configure secure communication between the TREX preprocessor and the portal Web server and between the TREX Web server and the TREX name server. You download SAPGENPSE as part of the SAP Cryptographic Library from SAP Service Marketplace.

Process Flow

Carry out the following steps to make SAPGENPSE available:

  1. Downloading the SAP Cryptographic Library

  2. Configuring SAPGENPSE for Use

    Note

    If you are using SAPGENPSE for the configuration, you should read the following information: Using Keystores.

SAP NetWeaver Administrator and SAP JAVA Cryptographic Toolkit

  • SAP NetWeaver Administrator

    You can use SAP NetWeaver Administrator to configure secure communication between the TREX Web server and the TREX Java client in Content Management.

  • SAP Java Cryptographic Toolkit

    As of SAP NetWeaver, the Application Server Java is delivered as standard with the SAP Java Cryptographic Toolkits including the policy files.

Cryptography Software for Apache Web Server

You configure the Apache Web server, which communicates with the CM Java client as the TREX Web server, using the OpenSSL cryptography tool. You generate the OpenSSL tool and the mod_SSL.so library, which you need for the security configuration of the Apache Web server, using a build process. For the build process, you need the software packages OpenSSL, mod_SSL.so, and the package of the corresponding Apache Web server, which you download from the Web pages of the Apache Open Source project. You then start the build process using the build_ssl.sh build script.

Required Software

You need the following software for the build process:

Software

Naming

Available From

OpenSSL package

openssl-0.9.7c

http://www.openssl.org/sourceInformation published on non-SAP site

modSSL package

mod_ssl-2.8.16-1.3.29

http://www.modssl.org/sourceInformation published on non-SAP site

Apache Web server package

apache_1.3.29

http://www.apache.org/dist/httpdInformation published on non-SAP site

Build script

build_ssl.sh

Attachment of SAP Note 620169 Information published on SAP site TREX 6.0/6.1/7.0: SSL and HTTPS for Apache Web Server

Process Flow

See Providing Cryptography Software for Apache Web Server.