Show TOC

Creating Individual SSL Client PSEsLocate this document in the navigation structure

Use

The AS ABAP can also possess additional individual "identities" that it can use to access other Web servers using SSL. These individual identities are defined in the individual SSL client PSEs.

Procedure
  1. First, you must create an entry for each individual SSL client PSE in the table STRUSTSSL.

  2. Then create and maintain the individual SSL client PSEs.

See the procedures below.

Creating an Entry for the Individual SSL Client PSE

From the Trust Manager screen:

  1. Choose Start of the navigation path Environment Next navigation step Client Identities End of the navigation path.

    The Change View: SSL Client Identities maintenance screen appears. Default entries include the anonymous SSL client PSE ( ANONYM) and the standard SSL client PSE ( DFAULT).

  2. Choose New Entries.

    The New Entries: Overview of New Entries maintenance screen appears.

  3. Enter the PSE's information ( SSL ID and Description) in the appropriate columns.

  4. Save the data.

  5. Go Back.

    You return to the Trust Manager screen. An entry for each individual PSE appears in the PSE status section.

Creating the Individual SSL Client PSE

The procedure is similar to that for creating the other PSEs. Exceptions are indicated as necessary.

From the Trust Manager screen:

  1. Create each individual SSL client PSE in the same way as you created the SSL server PSE. In this case, you specify the CN part of the Distinguished Name (default = system ID). You only need to generate one PSE, which is then distributed to the rest of the application servers.

    For more information, see Creating the SSL server PSE.

  2. Generate a certificate request for the individual SSL client PSE.

    The individual SSL client PSE is system-specific and not server-specific, therefore, you only need to create a single certificate request and import it once.

  3. Send the certificate request to a CA to be signed.

  4. Import the certificate request response into the individual SSL client PSE.

  5. Maintain the individual SSL client PSE's certificate list.

Result

The AS ABAP can authenticate itself using the individual SSL client PSE when using HTTPS connections to communicate with other Web servers.