You use the following tools for configuring and managing secure communication:
The SAPGENPSE Cryptography Tool
SAP NetWeaver Administrator
Cryptography Software for Apache Web Server
The SAPGENPSE Cryptography Tool
The SAPGENPSE cryptography tool consists of the following files:
Windows |
UNIX |
---|---|
sapcrypto.dll (library) sapgenpse.exe (executable file) |
libsapcrypto.<ext>, for example, libsapcrypto.so for the operating system SUN OS 5.8. sapgenpse (executable file). |
ticket (license ticket) |
ticket (license ticket) |
You use SAPGENPSE to configure secure communication between the TREX preprocessor and the portal Web server and between the TREX Web server and the TREX name server. You download SAPGENPSE as part of the SAP Cryptographic Library from SAP Service Marketplace.
Process Flow
Carry out the following steps to make SAPGENPSE available:
If you are using SAPGENPSE for the configuration, you should read the following information: Using Keystores.
SAP NetWeaver Administrator and SAP JAVA Cryptographic Toolkit
SAP NetWeaver Administrator
You can use SAP NetWeaver Administrator to configure secure communication between the TREX Web server and the TREX Java client in Content Management.
SAP Java Cryptographic Toolkit
As of SAP NetWeaver, the Application Server Java is delivered as standard with the SAP Java Cryptographic Toolkits including the policy files.
Cryptography Software for Apache Web Server
You configure the Apache Web server, which communicates with the CM Java client as the TREX Web server, using the OpenSSL cryptography tool. You generate the OpenSSL tool and the mod_SSL.so library, which you need for the security configuration of the Apache Web server, using a build process. For the build process, you need the software packages OpenSSL, mod_SSL.so, and the package of the corresponding Apache Web server, which you download from the Web pages of the Apache Open Source project. You then start the build process using the build_ssl.sh build script.
Required Software
You need the following software for the build process:
Software |
Naming |
Available From |
---|---|---|
OpenSSL package |
openssl-0.9.7c |
|
modSSL package |
mod_ssl-2.8.16-1.3.29 |
|
Apache Web server package |
apache_1.3.29 |
|
Build script |
build_ssl.sh |
Attachment of SAP Note 620169 TREX 6.0/6.1/7.0: SSL and HTTPS for Apache Web Server |
Process Flow