on 10-01-2015 10:08 AM
Hello,
I have problem with connection from satelite ABAP system to central SLD on PI using SNC. When I test it in RZ70 using "Start SLD data Collection now" and RFC SLD_UC with activ SNC, than I have following error message:
: Execute program: _SLD_APPL_SERV
: Execute program: _SLD_BCSYS
: Execute program: _SLD_CLIENT
: Execute program: _SLD_COMPSYS
: Execute program: _SLD_DBCON
: Execute program: _SLD_DBSYS
: Execute program: _SLD_GWSRV
: Execute program: _SLD_HTTPSERV
: Execute program: _SLD_INSTPRD
: Execute program: _SLD_INSTSC
: Execute program: _SLD_INSTSP
: Execute program: _SLD_IPSERV
: Execute program: _SLD_LIVECACHE
: Execute program: _SLD_MSGSRV
: Execute program: _SLD_NWSYS
: Execute program: _SLD_RCC
: Execute program: _SLD_RFC
: Collection of SLD data finished
: Data collected successfully
: RFC data prepared
: Used RFC destination: SLD_UC
: RFC call failed: Error when opening an RFC connection (CPIC-CALL: 'ThSAPOCMINIT', communication r
: Existing periodic jobs removed.
: Program scheduled: 20151001 230150
: Event-controlled job already exists; scheduling not necessary
In SM59 in destination SLD_UC there is SNC active and SNC name is certificate of SLD server.
Trx SLDCHECK ends fine and without error with HTTPS protocol.
What I must set on SLD for accepting secure communication.
Thanks for your help.
Best regards
Capek Martin
Maybe general question...I have to setup RZ70 and SLDAPICUST (both) for connection to SLD or only SLDAPICUST can be OK?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
Is the SLD correctly configured to listen on this gateway?
You have to therefore ensure in order RZ70 executes that
1) There is an actual available SAP gateway instance on the
host defined in RZ70.
2) This gateway is also defined in the SLD as follows
-> SLD UI -> Administration -> Profile ->
Section= datasupplier -> Parameters = GatewayHost/GatewayService.
Please also refer to below notes.
#584654 Registration setup in the SAP System Landscape Directory
#1018839 Registering information in the System Landscape Directory
Regards,
Aidan
This problem is over...port 4863 is listening...problem was that SNC was disabled on gateway of SLD server.
But now I have problem with certificates....:-(
*** ERROR => SncPEstablishContext() failed for target='p:CN=xxxxx' [/bas/742_R 3386]
*** ERROR => SncPEstablishContext()==SNCERR_GSSAPI [/bas/742_REL/sr 3352]
GSS-API(maj): Miscellaneous failure
GSS-API(min): A2210223:Server does not trust my certificate path
Unable to establish the security context
target="p:CN=xxx"
<<- SncProcessInput()==SNCERR_GSSAPI
*** ERROR => ThSncIn: SncProcessInput (SNCERR_GSSAPI) for T47_U11196_M0 failed [thxxsnc.c 1156]
{root-id=E41F13FDC3DD1ED59A99D60171CFDB48}_{conn-id=00000000000000000000000000000000}_0
*** ERROR => ThSncIn: SncProcessInput for T47_U11196_M0 [thxxsnc.c 1160]
*** WARNING => ThCPICProcessInlineRequest: ThSncIn failed (766), delete 97232364 [thxxcpic.c 3732]
ON SLD gateway and on backend site are different certificates (different publisher of certificate).
Hi,
The error message "A2210223:Server does not trust my certificate path" means that exchange of certificates were not properly done and both parts (client and server) does not trust each other.
It does look like cached certificates may be causing the issue
You could try the following:
=> On the client side, delete the server certificate from the Client SNC PSE and save the client pse;
=> Restart the client server;
=> On the server side, delete the client certificate from the Server SNC PSE and save the client pse;
=> Restart the server side server;
After that, perform the certificate exchange again and see if the issue persists.
Regards,
Aidan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Martin
Could you check this SAP KBA
1727745 - RFC connection error while executing transaction RZ70
Regards
SS
User | Count |
---|---|
87 | |
10 | |
9 | |
9 | |
9 | |
6 | |
6 | |
5 | |
4 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.