Skip to Content
0
Feb 22, 2016 at 12:16 PM

Client Certificate Authentication Issue with SAP PO 7.4

1056 Views

Dear All,

I am developing scenario to push data from DELL Boomi Integration tool to SAP PO 7.4 via AS2 protocol.

Unfortunately DELL Boomi supports only Client certificate authentication. So I need to change SAP PO configuration as below.

I created new user in SAP PO 7.4 and assign public certificate of DELL Boomi in Identity Management.

I changed the policy configuration for application "sap.com/com.sap.aii.adapter.as2.app*AS2" to client_cert. File is attached with configuration.

I am getting following error in DELL Boomi.

Test execution of SAP PO - AS2 - Send completed with errors. Embedded message: Error sending message to AS2 Server; Caused by: Error sending message to AS2 Server, Code 401: Unauthorized

I tried with Anonymous Login setting and it works but we would like to go with client certificate authentication.

With Anonymous login I tested Encryption, Signing and MDN acknowledgment all works well.

And SAP PO authentication log show following error.

Wrong salt value. See SAP Note 1441999 for more information. No salt received. Policy configuration name: sap.com/com.sap.aii.adapter.as2.app*AS2 INITIALIZE() for auth stack [sap.com/com.sap.aii.adapter.as2.app*AS2]. LOGIN() for auth stack [sap.com/com.sap.aii.adapter.as2.app*AS2]. Entering method Trying to get cert chain using login module specific callback... Entering method Handle com.sap.engine.interfaces.security.auth.X509CertificateChainCallback@3898664a Get certificate chain from request: <null> Exiting method Successfuly handled login module specific callback: com.sap.engine.interfaces.security.auth.X509CertificateChainCallback@3898664a No certificate provided by the callback. Unsuccessful login: no login module succeeded. The size of the used authentication stack sap.com/com.sap.aii.adapter.as2.app*AS2 is 1. Login failed! [EXCEPTION] java.security.PrivilegedActionException: com.sap.engine.services.security.exceptions.BaseLoginException: Login failed. at java.security.AccessController.doPrivileged(Native Method) at com.sap.engine.services.security.login.FastLoginContext.login(FastLoginContext.java:285) at com.sap.engine.services.servlets_jsp.server.servlet.AuthenticationFilter.doFilter(AuthenticationFilter.java:111) at com.sap.engine.services.servlets_jsp.server.runtime.FilterChainImpl.doFilter(FilterChainImpl.java:79) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:441) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:210) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:441) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:430) at com.sap.engine.services.servlets_jsp.filters.DSRWebContainerFilter.process(DSRWebContainerFilter.java:38) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.servlets_jsp.filters.ServletSelector.process(ServletSelector.java:81) at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:78) at com.sap.engine.services.servlets_jsp.filters.ApplicationSelector.process(ApplicationSelector.java:278) ABORT() for auth stack [sap.com/com.sap.aii.adapter.as2.app*AS2]. Unsuccessful login: no login module succeeded. The size of the used authentication stack sap.com/com.sap.aii.adapter.as2.app*AS2 is 1.

Could you please help me to resolve issue ?