Use
The SAP Web Application Server can also possess additional individual "identities" that it can use to access other Web servers using SSL. These individual identities are defined in the individual SSL client PSEs.
Procedure
See the procedures below.
Creating an Entry for the Individual SSL Client PSE
From the Trust Manager screen:
The Change View: SSL Client Identities maintenance screen appears. Default entries include the anonymous SSL client PSE (
The New Entries: Overview of New Entries maintenance screen appears.
You return to the Trust Manager screen. An entry for each individual PSE appears in the PSE status section.
Creating the Individual SSL Client PSE
The procedure is similar to that for creating the other PSEs. Exceptions are indicated as necessary.
From the Trust Manager screen:
In this case, you specify the CN part of the Distinguished Name (default = system ID). You only need to generate one PSE, which is then distributed to the rest of the application servers.
Generate a certificate request for the individual SSL client PSE.Because the individual SSL client PSE is system-specific and not server-specific, you only need to create a single certificate request and import it once.
Send the certificate request to a CA to be signed. Import the certificate request response into the individual SSL client PSE. Maintain the individual SSL client PSE's certificate list.Result
The SAP Web Application Server can authenticate itself using the individual SSL client PSE when using HTTPS connections to communicate with other Web servers.