on 06-22-2015 2:22 PM
Hi Guys, Currently I am facing an error while installing the SHA2 certificate in SAP Web Dispatcher. Just after updating the SAPCRYPTO to version 8.4.36 there seems to be an issue regarding the installation of the certificate. Used SAPGENPSE to import the SSL certificate As shown it's giving error Import_own_cert: Installation of certificate failed. Am attaching the images for reference, Suggest me a way to make it work. Thanks in advance. Regards, Kaushik G
Kaushik,
The "import_own_cert" is what I use once I have exported my PSE, got it signed by my CA, and then ready to pull back into my PSE. Like when your SSL cert is about to expire. Is that what you are trying to do?
NICK
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello,
If you're running a Web Dispatcher 7.42, try managing the certificates through the Web Administration page .
Managing PSE files at the Web Dispatcher - Application Server Infrastructure - SCN Wiki
Kaushik,
I'm not sure about your syntax on that command. When I do an import of a signed cert, I grab the whole "chain", not just the .cer. Also, I see you are doing the "-r" for the intermediate cert. You can import that later if you wish, or before you do this part. See what happens if you just did that.
Sort of like this:
./sapgenpse import_own_cert -p YOURPSE.pse -c SignedCertResponseChain.p7b
Hi Guys,
Successfully installed the certificates , we Exported the Thawte certificate from Internet Explorer and added it to the below command.
sapgenpse.exe import_own_cert -c C:\Users\wdqadm.SAPWDQ000\Desktop\cert\ssl_certificate.cer -p D:\usr\sap\WDQ\W00\sec\SAPSSL.pse -x **********pin -r C:\Users\wdqadm.SAPWDQ000\Desktop\cert\IntermediateCA.cer -r thawteroot.cer -v
Now I want to check whether the installed certificate is using the SHA256 algorithm or not.
When we check through INTERNET EXPLORER (IE) when we click on the lock symbol we are getting the below result as shown in the image.
Suggest me a way to check weather the installation of SHA256 certificate was successful or not.
Best Regards,
Kaushik G
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Kaushik,
Since the original question has been solved, please close this thread.
I would give the "correct answer" to Nick's reply from earlier.
Kaushik,
I'm not sure about your syntax on that command. When I do an import of a signed cert, I grab the whole "chain", not just the .cer. Also, I see you are doing the "-r" for the intermediate cert. You can import that later if you wish, or before you do this part. See what happens if you just did that.
Sort of like this:
./sapgenpse import_own_cert -p YOURPSE.pse -c SignedCertResponseChain.p7b
Please open new threads for different questions.
Anyway, the algorithm is defined at the certificate itself. And as you saw yourself, the certificate is informing that the algorithm is sha256.
Cheers!
User | Count |
---|---|
89 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.