cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP WEB DISPATCHER(error: Initialization of SSL library failed)

Go to solution
Former Member

on ‎06-01-2015 6:01 PM

0 Kudos

Dear Experts,

This is the first time I am configuring SAP WEB DISPATCHER, i followed some docs and reviewed lot of blogs, still something is missing.

http is working fine

I am trying to configure SSL Termination or SSL re-encryption to ECC Abap server from stand alone sap web dispatcher

Created sap web dispatcher profile, created parameters

created pse files

generated pse files with CA

created sec login for service user


I am pasting the logs of dev_webdisp, Please help me to resolve this.

not able to activate https port, its giving the error, all the errors are shown below.


[Thr 1276] Mon Jun 01 12:25:17 2015

[Thr 1276] started security log to file ./dev_icm_sec

[Thr 1276] SAP Web Dispatcher running on: AMBRISAPWD-D

[Thr 1276] MtxInit: 30001 0 2

[Thr 1276] ***LOG IM1=> IcmInit, Startup (SAP Web Dispatcher&AMBRISAPWD-D&3372&) [icxxman.c    2085]

[Thr 1276] IcmInit: listening to admin port: 65000

[Thr 1276] MPI: dynamic quotas disabled.

[Thr 1276] MPI init: pipes=4000 buffers=1279 reserved=383 quota=10%

[Thr 1276] CCMS: SemInMgt: Semaphore Management initialized by AlAttachShm_Ext.

[Thr 1276] CCMS: SemInit: Semaphore 38 initialized by AlAttachShm_Ext.

[Thr 1276] IcrIAddSingleSystem: Added backend system: SID=000, MSHOST=bid, MSPORT=8100, MSSPORT=44300, SRCURL=/, SSL_ENCRYPT=0, SSL_IGNORE_HOST_MISMATCH=false

[Thr 1276] IcrCoreInitSessionTable: Session table initialized

[Thr 3036] Adding HttpAdminHandler: PREFIX=/sap/admin,DOCROOT=D:\usr\sap\BWS\W00\data\icmandir,AUTHFILE=D:\usr\sap\BWS\SYS\global\security\data\icmauth.txt,PORT=8100

[Thr 3036] HttpExtractArchive: files from archive D:\usr\sap\BWS\SYS\exe\nuc\NTAMD64/wdispadmin.SAR in directory D:/usr/sap/BWS/W00/data/icmandir are up to date

[Thr 3036] HttpAdmHandlerInit: admin restricted to the port(s): 8100

[Thr 3036] HttpISubHandlerAdd: Added handler HttpAdminHandler(0000000003CE7520), slot=0, flags=45061) for /sap/admin, active: 1, table 000000001089AA20

[Thr 3036] Adding HttpModHandler: PREFIX=/

[Thr 3036] CsiInit(): Initializing the Content Scan Interface

[Thr 3036]            PC with Windows NT (mt,ascii,SAP_CHAR/size_t/void* = 8/64/64)

[Thr 3036] CsiInit(): CSA_LIB = "D:\usr\sap\BWS\SYS\exe\nuc\NTAMD64\sapcsa.dll"

[Thr 3036] HttpISubHandlerAdd: Added handler HttpModHandler(0000000003CE7480), slot=1, flags=12293) for /, active: 1, table 000000001089AA20

[Thr 3036] Adding HttpAuthHandler: PREFIX=/,FILTER=SAP

[Thr 3036] HttpISubHandlerAdd: Added handler HttpAuthHandler(0000000003CFAD40), slot=2, flags=12293) for /, active: 1, table 000000001089AA20

[Thr 3036] HttpISubHandlerAdd: Added handler HttpWebDispHandler(0000000003D08BD0), slot=3, flags=1060869) for /, active: 1, table 000000001089AA20

[Thr 3036] WebSocketPlugInInit: WebSocket Plugin initialized

[Thr 3036] IcmAddHiddenService: Hidden service WEBSOCKET started

[Thr 3036] Started service HOST=AMBRISAPWD-D,PORT=8100,PROT=HTTP,TIMEOUT=60,PROCTIMEOUT=60

[Thr 3036] IcmAddHiddenService: Hidden service WEBSOCKETS started

[Thr 3036] =================================================

[Thr 3036] = SSL Initialization    platform tag=(ntamd64-msc16)

[Thr 3036] =   (742_REL,May 22 2015,mt,ascii,SAP_UC/size_t/void* = 8/64/64)

[Thr 3036]   DIR_INSTANCE="D:\usr\sap\BWS\W00"

[Thr 3036]   DIR_LIBRARY="D:\usr\sap\BWS\SYS\exe\nuc\NTAMD64"

[Thr 3036] Mon Jun 01 12:25:18 2015

[Thr 3036]   ssl/ssl_lib="D:\usr\sap\BWS\SYS\exe\nuc\NTAMD64\sapcrypto.dll"

[Thr 3036]   profile param "ssl/ssl_lib" = "D:\usr\sap\BWS\SYS\exe\nuc\NTAMD64\sapcrypto.dll"

[Thr 3036]            resulting Filename = "D:\usr\sap\BWS\SYS\exe\nuc\NTAMD64\sapcrypto.dll"

[Thr 3036] =   found CommonCryptoLib (SAPCRYPTOLIB) Version 8.4.37 pl40 (May 12 2015) MT-safe

[Thr 3036] =   current UserID: AMBRISAPWD-D\SAPServiceBWS

[Thr 3036] =   found SECUDIR environment variable

[Thr 3036] =   using SECUDIR=D:\usr\sap\BWS\W00\sec

[Thr 3036]   ssl/ciphersuites="HIGH:MEDIUM:+e3DES:!aNULL"

[Thr 3036]   ssl/client_ciphersuites="HIGH:MEDIUM:+e3DES:!aNULL"

[Thr 3036] *** ERROR =>   secussl_Create_SSL_CTX():  PSE "D:\usr\sap\BWS\W00\sec\SAPSSLS.pse": unable to use! [ssslsecu.c   2395]

[Thr 3036] No LastError / ErrorStack available!

[Thr 3036] *** ERROR => SapISSLAddCredential(): Error SSSLERR_PSE_ERROR trying to create SERVER Credential

        for "D:\usr\sap\BWS\W00\sec\SAPSSLS.pse" [ssslxxi.c    2805]

[Thr 3036] *** ERROR => Initialization of SSL library failed -- NO SSL available!

[Thr 3036] =================================================

[Thr 3036]

[Thr 3036] <<- ERROR: SapSSLInit(read_profile=1)==SSSLERR_PSE_ERROR

[Thr 3036] = SSL Server PSE (SAPSSLS.pse) created with DN=(CN=AMBRISAPWD-D), rc=(5)

[Thr 3036] *** WARNING => IcmServInitSSL: Creation of default PSE files failed: (rc=-40) [icxxserv.c   378]

[Thr 3036] =================================================

[Thr 3036] = SSL Initialization    platform tag=(ntamd64-msc16)

[Thr 3036] =   (742_REL,May 22 2015,mt,ascii,SAP_UC/size_t/void* = 8/64/64)

[Thr 3036]   DIR_INSTANCE="D:\usr\sap\BWS\W00"

[Thr 3036]   DIR_LIBRARY="D:\usr\sap\BWS\SYS\exe\nuc\NTAMD64"

[Thr 3036] =   found CommonCryptoLib (SAPCRYPTOLIB) Version 8.4.37 pl40 (May 12 2015) MT-safe

[Thr 3036] =   current UserID: AMBRISAPWD-D\SAPServiceBWS

[Thr 3036] =   found SECUDIR environment variable

[Thr 3036] =   using SECUDIR=D:\usr\sap\BWS\W00\sec

[Thr 3036]   ssl/ciphersuites="HIGH:MEDIUM:+e3DES:!aNULL"

[Thr 3036]   ssl/client_ciphersuites="HIGH:MEDIUM:+e3DES:!aNULL"

[Thr 3036] *** ERROR =>   secussl_Create_SSL_CTX():  PSE "D:\usr\sap\BWS\W00\sec\SAPSSLS.pse": unable to use! [ssslsecu.c   2395]

[Thr 3036] No LastError / ErrorStack available!

[Thr 3036] *** ERROR => SapISSLAddCredential(): Error SSSLERR_PSE_ERROR trying to create SERVER Credential

        for "D:\usr\sap\BWS\W00\sec\SAPSSLS.pse" [ssslxxi.c    2805]

[Thr 3036] *** ERROR => Initialization of SSL library failed -- NO SSL available!

[Thr 3036] =================================================

[Thr 3036]

[Thr 3036] <<- ERROR: SapSSLInit(read_profile=1)==SSSLERR_PSE_ERROR

[Thr 3036] *** ERROR => IcmServInitSSL: SapSSLInit (rc=-40): SSSLERR_PSE_ERROR [icxxserv.c   390]

[Thr 3036] *** WARNING => IcmAddService: Could not start service (rc=-14) HOST=AMBRISAPWD-D,PORT=44300,PROT=HTTPS,TIMEOUT=60,PROCTIMEOUT=60,VCLIENT=1 [icxxserv.c   1034]

[Thr 1276] IcmCreateWorkerThreads: created worker thread 0

[Thr 1276] IcmCreateWorkerThreads: created worker thread 1

[Thr 1276] IcmCreateWorkerThreads: created worker thread 2

[Thr 1276] IcmCreateWorkerThreads: created worker thread 3

[Thr 1276] IcmCreateWorkerThreads: created worker thread 4

[Thr 1276] Mon Jun 01 12:25:18 2015

[Thr 1276] IcmCreateWorkerThreads: created worker thread 5

[Thr 1276] IcmCreateWorkerThreads: created worker thread 6

[Thr 1276] IcmCreateWorkerThreads: created worker thread 7

[Thr 1276] IcmCreateWorkerThreads: created worker thread 8

[Thr 1276] IcmCreateWorkerThreads: created worker thread 9

[Thr 4720] IcmWatchDogThread: watchdog started





Regards,

Surya

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

sandeep_kumar60
Participant
‎06-03-2015 2:53 PM
0 Kudos

Hi Surya

Had u resolved this issuee?

Show replies
Show replies
Former Member
‎06-03-2015 2:59 PM
0 Kudos

Hi Sandeep,

yes its working now,

Followed SSL Termination scenario.

Previously I missed SECUDIR environment variablle in OS level created it, I removed all pse's and certificates and created again, pse's, certificates, imported signed certificates from CA, seclogin to service user (SAPServiceSID), Previously https port is also not activating , after doing all this port is also working and able to test and its working.

Regards,

Surya

Answers (0)

Ask a Question