Show TOC

Maintaining Application-Specific InformationLocate this document in the navigation structure

To use more than one security product for secure store and forward (SSF) functions or to use the same product but different SSF profiles or private address books for different applications, configure the functions in transaction SSFA.

Prerequisites

  • The security products have been installed on each application server.

  • The SSF profile parameters (or environment variables) ssf<n>/name and ssf<n>/ssfapi_lib contain the names of the security products and the names and locations of the libraries of the security products.

Procedure

  1. Start Change View "Application-Specific Parameters": Overview (transaction SSFA).

    If only one entry exists, the system displays the entry, otherwise it displays a table containing all entries.

  2. Determine if you want to edit an existing entry or create a new one.

    • To edit an existing entry, select an entry and choose (Details).

    • To create a new entry, choose the New Entries pushbutton and enter the application name.

    The maintenance screen for the entry appears.

  3. Enter data as required.

    This table reflects the capabilities of SAP Cryptographic Library. Other security products may vary.

    Table 1: SSF Application-Specific Maintenance Fields

    Field

    Value

    Comment

    Security Product

    Name of the security product

    The name of the product must match the name specified in one of the profile parameters ssf<n>/name.

    The system then uses the library specified in the corresponding profile parameter ssf<n>/ssfapi_lib for the application.

    SSF Format

    PKCS7

    PKCS7, PKCS1-V1.5, PKCS1-OAEP, DSA are supported.

    Private Address Book

    The name and location of the private address book

    The private address book contains the public keys of the users and components.

    The name and location of the private address book is determined by the security product you use.

    SSF Profile Name

    The name and location of the SSF profile

    The SSF profile contains the complete security information for the users and components (for example, the private keys).

    The name and location of the SSF profile is determined by the security product you use.

    Include Certificate

    Enable or disable

    Only enable if either of the following is true.

    • Certificates of users or components should be included with their digital signatures.
    • Certificates are used to verify digital signatures.
    Digital Signature with Data

    Enable or disable

    Select if the data that is signed is to be included with the digital signatures.
    Distribute PSE (Only SAPSECULIB)

    Enable or disable

    		 Select if the PSE shall be stored in the database and copied to all application servers.
    Note

    The information you can maintain for an application is defined by the application. Only the fields required by the application appear.

  4. Save your entries.
Related Information