Show TOC

Importing the Client and Root CertificatesLocate this document in the navigation structure

Prerequisites

You have received a file from your certification authority (CA). It contains the following certificates:

  • the client certificate for the TREX name server in the form PCNAME_client_cert.cer

    Example

    p54896_client_cert.cer

  • the CA root certificate in the form CERTIFICATE_AUTHORITY.cer

    Example

    SAPNetCA.cer

Procedure

You import the client certificate and the root certificate from your CA with the SAPGENPSE cryptography tool:

  1. On the server on which the TREX Web server is installed, use Start of the navigation path Start Next navigation step Run End of the navigation path: cmd to open a prompt on Windows.

  2. Go to the directory in which the executable file sapgenpse.exe is located:

  3. Import the client and root certificates into the previously-created keystore SAPSSLS.pse by specifying the following:

    sapgenpse import_own_cert -c PCNAME_client_cert.cer -r CERTIFICATE_AUTHORITY.cer -p SAPSSLS.pse

    Example

    sapgenpse import_own_cert -c PCNAME_client_cert.cer -r

    SAPNetCA.cer -p SAPSSLS.pse

Overview of Commands for SAPGENPSE

Command

Function

sapgenpse

Starts the SAPGENPSE cryptography tool.

import_own_cert

Imports the response from the CA to a certification request

-c PCNAME_client_cert.cer

File name that contains the client certificate

-r CERTIFICATE_AUTHORITY.cer

File name that contains the root certificate

-p SAPSSLS.pse

Keystore file name that contains the client certificate We recommend entering the name SAPSSLS.pse for the keystore.
Result

You have imported the client and root certificates from your CA into the SAPSSLS.pse keystore.