on 06-14-2016 4:33 PM
una consulta ciando instalo el certificado en mi móvil y verifico el certificado me para rece en el usuario no en el sistema, sera que eso tiene relación con mi consulta anterior.
Gracias,
Saludos
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hola Alma, ¿Puedes copiar y pegar aqui los pasos exactos que estas siguiendo para generar el certificado?
Los mismo me paso, segun yo estaba siguiendo bien todos los pasos y me salia el mismo error que a ti. Revisando a conciencia me percate que me estaba brincando un paso.
Luego de eso ya tengo la aplicacion corriendo.
Saludos.
Alessandro.
El password viene en C:\Program Files (x86)\SAP\SAP Business One Integration\B1iServer\Tomcat\conf\server.xml y deberia ser sapB1iP
Tu la cambiaste a "ejje" ???
Valida igual tus rutas, no es copiar y pegar por ejemplo en donde ponen:
C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator
Y yo tengo
C:\Program Files (x86)\SAP\SAP Business One Integration\B1iServer\Tomcat\webapps\B1iXcellerator
Saludos.
Alessandro
Message was edited by: Alessandro Lopez Santinelli
Hola Alessandro fíjate que ya genere el certificado pero hoy resulta que no puedo hacer conexión con la base de datos me parece el siguiente error.
XCE001 Nested exception:
java.rmi.RemoteException: Error on completion of HTTPS-roundtrip: java.net.ConnectException: Connection refused: connect; nested exception is:
java.net.ConnectException: Connection refused: connect
eh estado leyendo algunas notas que indican que se debe de reiniciar el servicio de SAP BUSSINES ONE DI PROXY SERVICE pero yo tengo un problema no se me inicia me da error que ninguna aplicación lo usa, me podrías orientar en esto.
Saludos,
Hola Alma, revisa el siguiente link, hay varias alternativas para lo que expones.
Cannot connect to SAP Business One Integrated S... | SCN
¿Ya lograste conectar el movil?
Saludos.
Alessandro.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
ya Genere el certificado, pero cuando lo instalo aun me sigue apareciendo el error de seguridad alguien tiene alguna idea de como solventar este paso.
Gracias,
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hola de nuevo compañera.
No comprendo a que error te refieres pero tal vez esta nota te pudiera servir:
| ||||||||
|
Content: Summary | Header Data | Validity | References
|
No lo olvides que:
Es importante contar con el apoyo y la aceptación entre los miembros que formamos parte de esta comunidad. Tanto quien escribe una pregunta, como quien responde la misma, debe recibir un feedback constante.
Si no llegaramos a comprender para qué dar puntos, o dar feedback, la relación de comunidad se rompe. Cuando abrimos un nuevo tema (una nueva discusión) y recibimos ayuda, pero no agradecemos dando "puntos de reputación", es como que no nos importara que otras personas hayan gastado su tiempo en compartir sus soluciones con nosotros.
Puntos de reputación en las discusiones:
Saludos.
Estimada Alma,
Concuerdo con lo que te menciono Gonzalo Gomez, en que revises en e B1if, lo que tiene que ver con que todo este configurado con IP nombre del servidor, esto me sucedia hasta que revise la nota SAP de problemas de dispositivos y en esta se tiene un apartado que dice:
Slds,
IFV
Si pero ahi tienes que revisar que el escenario de la empresa en la que te conectas, tiene ip en todos los campos que hacen referencia al servidor.
Detecto que el escenario es BOCADELI, pues en todos los datos de arriba hacia abajo tiene que tener especificada la ip del server
Y también en el escenario de WS for Mobile tiene que estar la ip y no el nombre.
Reinicias los servicios después del cambio.
Como complemento a lo que atinadamente te sugiere el compañero Ivan, checa el siguiente documento y los comentarios que se visualizan al final:
Saludos.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Creo que estás poniendo -destorepassword y la instrucción es -deststorepass.
Espero puedas darte una vuelta al documento que te comente sobre reputar a quienes ayudan.
Aquí te anexo la nota de sap sobre el tema:
Symptom
To ensure the highest security standard for your company and your business data, SAP introduced the exclusive use of valid SSL certificates.
Securing your SAP Business One mobile application with a valid SSL certificate can be crucial. Fortunately, it is quite simple to do this.
In some situations it may be required that you buy a trusted certificate, but there are many cases where you can generate and use a self-signed
certificate for free.
Be aware that SAP cannot cover all possible security aspects due to customer-specific requirements and conditions. The mobile app needs to be
embedded into each customer’s specific security concept. Nevertheless, some manual action is required.
In this SAP Note, SAP presents examples of how to obtain and install valid certificates.
For more details, technical backgrounds or questions please consult your partner or the diverse information sources that are available on this
standard security technology.
SAP enhanced the security of the SAP Business One mobile app on SSL connections gradually in the following way:
Starting with SAP Business One mobile app 1.10.0 for iOS and SAP Business One mobile app 1.1.4 for Android, the apps showed this warning message during the logon phase if no valid SSL certificate was deployed:
In this stage/this app versions, the message could be suppressed by disabling the parameter 'Enforce Certificate Check' in the settings for SAP Business One mobile app on the device.
Using valid certificates is strongly recommended at the 1st security stage, and mandatory at the 2nd security stage.
SolutionThe following informs on how to keep or make SAP Business One mobile apps working with valid certificates.How to obtain a valid certificatePlease Note: SAP cannot give recommendations when to use a self-signed certificate or a signed certificate from trusted third party. The selection depends on the specific use and the selected environment, as for example VPN, dev/test systems, intranet/internet solutions, value/type of transferred information, incentive for someone to attack the connection, security needs, etc.
**Please read the following instructions carefully and pay attention to uppercase and lowercase (entries are case-sensitive)!** Note: For the keytool commands mentioned below, you need the following information:
Generally there are three options to obtain a valid certificate: A. Purchase a signed certificate from trusted third party certification authority (CA) vendor
Note: In case you encounter any issue in above steps, please consult your CA vendor.B. Create a self-signed certificate using the Certificate ToolAs of integration framework (B1if) version 1.22.0 (delivered with SAP Business One 9.1 PL08 and SAP Business One 9.1, version for SAP HANA PL08), the integration framework provides a Certificate Tool. The certificate tool automates the creation of a root certificate and a self-signed server certificate based on the root certificate, it also deploys the server certificate to the integration framework keystore. Based on the server certificate, the tool creates an SSL certificate for the mobile device that connects to the integration framework with the SAP Business One mobile app.Prerequisites
Procedure
ResultAfter creation, you can find the myCA.cert file in the ..\B1iXcellerator\B1iCert folder. Make the certificate available to the mobile device as detailed in step 5 below. C. Create a self-signed certificate manuallyFor integration framework (B1if) version below 1.22.0 (up to SAP Business One 9.1 PL07 and SAP Business One 9.1, version for SAP HANA PL07), this is the recommended way for creation of self-signed certificate.
On Windows environment, openssl is not pre-installed with system. Download Win32 or Win64 openssl installer from https://www.openssl.org/related/binaries.html
1. Create your own root CA (if it does not exist for other reason)1.1 Create a private key file: openssl genrsa -out ServerKey.key 1024
1.2 Create the certificate (to be deployed to mobile devices): openssl req -new -x509 -key ServerKey.key -out myCA.cer -days 3650 -subj /CN="custom_CA_name"Note: The "custom_CA_name" value should not match the value used for "server_domain_name" in step 2.2
2. Create self-signed certificate for multiple servers 2.1 Create a private key: openssl genrsa -out ClientKey.key 1024
2.2 Create the CSR (Client Signing Request): openssl req -new -key ClientKey.key -out CertReq.csr -subj /CN="server_domain_name"Note "server_domain_name" should be exactly the same value used for the server field in mobile app settings (for example the server name or the server ip address).
2.3 Use the CSR to create the certificate based on your own CA key file: openssl x509 -req -days 3650 -in CertReq.csr -CA myCA.cer -CAkey ServerKey.key -CAcreateserial -out ClientCert.crt
3. Deploy the self-signed certificate on the SAP Business One Integration Framework (B1i) server3.1 Create a PKCS12 keystore and import: openssl pkcs12 -export -inkey ClientKey.key -in ClientCert.crt -out keystore.pkcs12 (For the Export Password, please enter the default Keystore password)
3.2 Copy keystore.pkcs12 file to B1 Integration Framework (B1i) server (for example ./webapps/B1iXcellerator/keystore.pkcs12) to make sure that it can be accessible by keytool3.3 In the Command Prompt, move to the Integration Framework jre bin path (32bit or 64bit based on your system): <SAP Business One Integration path>\sapjre_7_32\bin (for example cd C:\Program Files (x86)\SAP\SAP Business One Integration\sapjre_7_32\bin). NOTE: In previous versions of the Integration Framework this folder might be: \sapjre_6_32\bin.3.4 Delete the original self-signed certificate from the keystore: keytool -delete -alias tomcat -keystore "C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator\.keystore" -storepass <keystorepassword>
3.5 Convert PKCS12 keystore into Java keystore: keytool -importkeystore -srckeystore "C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator\keystore.pkcs12" -srcstoretype PKCS12 -destkeystore "C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator\.keystore" -deststoretype JKS -deststorepass <keystorepassword> -srcstorepass <keystorepassword>3.6 Change the default alias name to tomcat: keytool -changealias -alias 1 -destalias tomcat -keystore "C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator\.keystore" -storepass <keystorepassword>
4. Restart SAP Business One Integration Service from Services panel. 5. Install your own created root CA certificate on mobile devices. The app settings should use the servername/domain or IP as defined in the certificate.Procedure for iOS devices
Procedure for Android devices
6. Verify the certificate has been successfully imported
Check access to the integration framework via the https port (for example, open https://<servername/IP>:8443 in the browser of the mobile device. If successful, you should not receive any warning regarding https/certificates)
Header Data
Released On | 21.04.2016 05:05:23 |
Release Status | Released for Customer |
Component | SBO-INT-MOB Mobile Anwendungen |
Priority | Correction with high priority |
Category | FAQ |
Validity
|
Hola Alma, si el incidente de esta discusión ha sido solucionado te sugiero agradecer a los compañeros que amablemente te apoyaron (puedes hacerlo marcando sus respuestas como respuestas de ayuda) y marcar como respuesta correcta el comentario que te ayudó a lograr tu objetivo que era crear el certificado web.
Es muy importante que se maneje un solo tema por discusión y que éste tenga marcada su respuesta correcta para que así, usuario que tengan el mismo problema que tú, puedan recibir una correcta orientación.
Si tiene un nuevo problema te recomiendo abrir una nueva discusión para exponerlo.
Si de algo te sirvo te dejo algo de documentación sobre movilidad:
Dropbox - B1_MobileApp_Guide_Android.pdf
https://www.dropbox.com/s/jindkrwjj7svlpy/B1_MobileApp_Guide_v9.0.pdf?dl=0
Estimada Alma,
A continuación te dejo los pasos para que generes el certificado.
com.microsoft.sqlserver.jdbc.SQLServerDriver
jdbc:sqlserver://LENOVO-PC:1433;integratedSecurity=false;databaseName=BD_productiva;selectMethod=cursor;applicationName=IntegrServerSBO-COMMON
revizar que tiene java (JRE y JDK) si no se debe instalar
cd C:\OpenSSL-Win64\bin
set OPENSSL_CONF=c:\openssl-win64\bin\openssl.cfg
openssl genrsa -out ServerKey.key 1024
openssl req -new -x509 -key ServerKey.key -out myCA.cer -days 3650 -subj /CN="Certificado"
openssl genrsa -out ClientKey.key 1024
openssl req -new -key ClientKey.key -out CertReq.csr -subj /CN="186.155.236.98"
openssl x509 -req -days 3650 -in CertReq.csr -CA myCA.cer -CAkey ServerKey.key -CAcreateserial -out ClientCert.crt
openssl pkcs12 -export -inkey ClientKey.key -in ClientCert.crt -out keystore.pkcs12
sapB1iP
sapB1iP
copie el archivo keystore.pkcs12 de C:\OpenSSL-Win64\bin a C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator
cd C:\Program Files (x86)\SAP\SAP Business One Integration\sapjre_7_64\jre\bin
keytool -delete -alias tomcat -keystore "C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator\.keystore" -storepass sapB1iP
keytool -importkeystore -srckeystore "C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator\keystore.pkcs12" -srcstoretype PKCS12 -destkeystore "C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator\.keystore" -deststoretype JKS -deststorepass sapB1iP -srcstorepass sapB1iP
keytool -changealias -alias 1 -destalias tomcat -keystore "C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator\.keystore" -storepass sapB1iP
reiniciar servicios
Espero sea de tu ayuda,
Saludos,
IFV
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hola Gracias por la ayuda mi correo es alma.montes@ejje.com
Saludos
User | Count |
---|---|
104 | |
12 | |
11 | |
6 | |
6 | |
4 | |
3 | |
3 | |
3 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.