Skip to Content
Former Member
Jan 05, 2016 at 09:14 PM

Updating SSL Certs in STRUST for SSL server Standard


I recently started receiving a notice of an expiring PSE cert when I logged into my BW instance. I ran the SE38 report SSF_ALERT_CERTEXPIRE and saw which one was causing the issue in STRUST.

I have a few questions related to this issue as I've troubleshot how to update the cert.

How do I set the Own Cert to by from my CA rather than a self-signed Cert?

I noticed that for all other PSEs the Own Certificate was self-signed except for the SSL server Standard Node. To get the node to turn back green I had to replace the current Own Certificate but it did it when a self-signed. I also added my local CAs cert to the Certificate List. Is this a problem?

What's the relationship between the Own Certificate and the Certificate List underneath it?

I'm working with my Infrastructure team and they are using a Windows Server CA to generate the cert. Since they aren't familiar with SAP and I'm not familiar with the Microsoft CA tools I'm curious if someone who might know both sides of it could help me navigate both side of this with my team.


CA Cert.png (45.6 kB)