If you are configuring and using the cryptography tool SAPGENPSE, you should be aware of which files you require and know where they are stored. These files are not only required initially for the authentication of the communication partner. They are also required during data transmission in order to encode the data and ensure data integrity. This means that the files must be stored in particular places so that the system can find them and access them at runtime.
Prerequisites
Required Files
Windows | UNIX |
---|---|
sapcrypto.dll (library) sapgenpse.exe (executable file) |
libsapcrypto.<ext>, for example, libsapcrypto.so for the operating system SUN OS 5.8 sapgenpse (executable file) |
ticket (licence ticket) |
ticket (licence ticket) |
SAPSSLS . pse Keystore for server certificates |
SAPSSLS.pse |
SAPSSLC . pse Keystore for client certificates |
SAPSSLC.pse |
SAPSSLA.pse Anonymous keystore |
SAPSSLA.pse |
SAPSSNCS.pse Keystore for SNC communication |
SAPSSNCS.pse |
You create the keystoresSAPSSLS.pse, SAPSSLC.pse, SAPSSNCS.pse, andSAPSSLA.pse using the cryptography tool SAPGENPSE. These are not part of the SAP Cryptographic Library installation package.
Process Flow
You need a system environment variable SECUDIR on Windows and an environment variable SECUDIR on UNIX in order to store the licence tickets (tickets) and the generated keystores(SAPSSLS.pse, SAPSSLC.pse, SAPSSLA.pse, SAPSNCS.pse). Set up the variable by checking existing environment variables and creatingSECUDIR if it does not already exist. You then store the files in the recommended storage locations. On UNIX the needed variables are set automatically by a shell script.
The procedure is basically the same on Windows and UNIX:
The procedures for Windows and UNIX are described in the following sections: