Show TOC

Procedure documentationCreating the Standard SSL Client PSE Locate this document in the navigation structure

 

To establish outgoing connections that use SSL, the AS ABAP must possess an SSL client PSE. There are different types of SSL client PSEs that the server can use (that is, standard, individual, or anonymous). The standard SSL client PSE is used by default, so we recommend creating this PSE, even if it is not explicitly being used at this time.

Procedure

The procedure is similar to that for generating and maintaining SSL server PSEs. Exceptions are indicated as necessary.

Using the trust manager:

  1. Create the standard SSL client PSE in the same way as you created the SSL server PSE. In this case, you specify the CN part of the Distinguished Name (default = system ID). You only create one PSE, which is then distributed to the rest of the application servers.

    For more information, see Creating the SSL Server PSE.

  2. Generate a certificate request for the standard SSL client PSE.

    The SSL client PSE is system-specific and not server-specific, therefore, you only need to create a single certificate request and import it once.

  3. Send the certificate request to a CA to be signed.

  4. Import the certificate request response into the server's standard SSL client PSE.

  5. Maintain the standard SSL client PSE's certificate list.

    The SSL client PSE's certificate list is typically less restrictive than the list contained in the SSL server PSE.

Result

The AS ABAP can use HTTPS connections to communicate with other Web servers.