Entering content frameProcedure documentation Creating the Anonymous SSL Client PSE Locate the document in its SAP Library structure

Use

The SAP Web Application Server uses the anonymous SSL client PSE when accessing other Web servers using the SSL protocol. Note that the server does not use the information contained in this PSE for its own authentication; it only uses the PSE's information to authenticate the Web server that it is accessing. Therefore, you do not have to have the corresponding public-key certificate signed by a CA and the steps for generating and importing a certificate request are not necessary.

Procedure

  1. Create the anonymous SSL client PSE.

    2. In this case, the system automatically defines the server's Distinguished Name (CN=anonymous). You cannot modify this name.

  2. Maintain the PSE's certificate list.

Import the root certificates from the CAs that have issued the public-key certificates to the Web servers that the SAP Web Application Server accesses using the anonymous SSL client PSE.

Example

For example, if the SAP Web Application Server accesses a Web server that possesses a public-key certificate issued by myCA, then the certificate list in the application server's SSL client PSE must contain myCA's root certificate so that the application server can authenticate the Web server accordingly.

Result

The SAP Web Application Server can authenticate the Web servers that it accesses using the SSL protocol.

Leaving content frame