Show TOC Start of Content Area

Function documentation Certificate Management  Locate the document in its SAP Library structure

Function

Certificate management for the Adapter Engine is a prerequisite for using certificates in adapter configurations for logging on to databases, queue systems, FTP servers, or the Integration Server.

If no certificate is entered in certificate management, the Adapter Engine will accept any certificate. Authentication does not then take place.

Integration

      You have installed the Adapter Engine and the required adapters.

      You have started the Adapter Engine and have called it from your Web browser.

      You have selected the Certificate Management menu option on the configuration screen, and are now in the Certificate Management menu.

Prerequisites

      You have installed the Adapter Engine and the adapter you require, started the Adapter Engine and called it using your web browser. On the configuration screen, you have chosen the Certificate Management menu option, and are now in the Certificates menu.

      You have set up the Integration Server to support SSL.

More information: Configuring the SAP Web AS for Supporting SSL

Features

This menu option is available for users with the Adapter Engine Administrator or Adapter Configurator role.

In the Certificates menu you have the following options:

      Display Certificates

Displays all certificates saved in the Adapter Engine.

      Insert Certificate

Insert a certificate into the Adapter Engine.

Choose Browse and select the certificate.

      Delete Certificate

To delete a certificate, select the certificate in the list and choose Delete.

Activities

Set Up Adapter Engine as SSL Server

To use the Adapter Engine as an SSL server (for receiver adapters) for performing certificate-based authentication, make the following settings:

...

       1.      Choose Services ® HttpServer.

       Enter HTTP.authentication=none.

       Enter HTTP.transmission=SSL.

       Enter the path to the key pair for parameter HTTP.SSLcertificate.

Enter the path relative to the installation directory for the Adapter Engine.

The key pair must be in P12 or PFX file format.

       To protect the key pair file, you can enter a password for parameter HTTP.SSLcertificatePassword.

       To activate the validation of the client certificate, enter HTTP.SSLauthenticate=true.

More information: Services

       2.      Import the public SSL client certificate and the corresponding root certificate to certificate management.

Enter the complete certificate path

       3.      Start the Adapter Engine.

Set Up Adapter Engine as SSL Client

To use certificates for the authentication in sender adapters, make the following settings:

...

       1.      Choose Adapter and then select the adapter for which you want to set up authentication using a certificate.

       Enter a target URL that uses the HTTPS protocol for parameter XI.TargetURL.

       Enter the path to the key pair for parameter SSLcertificate.

Enter the path relative to the installation directory for the Adapter Engine.

The key pair must be in P12 or PFX file format.

       To protect the key pair file, you can enter a password for parameter SSLcertificatePassword.

       To check the server certificate by using the certificate in certificate management, enter SSLauthentication=true.

       2.      Import the SSL server certificate and the corresponding root certificate to certificate management.

Enter the complete certificate path.

       3.      Start the Adapter Engine.

 

End of Content Area