DevOps and System Administration Discussions
Dive into SAP DevOps and system administration. Join discussions to collaborate on optimizing workflows, share knowledge, and leverage resources effectively.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Wild card SSL Certificate for ABAP systems

former_member683904
Participant

‎07-28-2020 9:17 AM

0 Kudos

Hello Experts,

I want to use a single wild card certificate to be used in all my ABAP systems(ECC, MDG, Fiori,..) is that possible ?

If so is it not required to raise the certificate request at all?

I tried importing a request less response in STRUST but its not working, is the system pse conflicting or what changes to be done in STRUST to allow the import in all the systems please ?

Regards,
Mahesh L

4 REPLIES 4

cris_hansen
Advisor
Advisor

‎07-28-2020 11:18 AM

Hi Mahesh,

You can use wildcard certificates in ABAP, via STRUST.

If the certificate request was not generated via the SSL Standard PSE, then this is the reason why the response could not be imported.

If you have a PKCS#12 file, with public+private key, then you can export the keys to a PSE file, via sapgenpse, then import the PSE via STRUST, replacing the existing one, having then the wildcard certificate in place.

If you don't have the PKCS#12 file, then recreate the PSE, using the wildcard CN you want, then create a request, submit to the CA of your choice, then import the response.

Regards,

Cris

Sriram2009
Active Contributor

‎07-28-2020 9:03 PM

0 Kudos

Hi Mahesh.

You can use the single wildcard to multiple SAP ABAP systems, from public to private you may require to add multiple host A record in the public domain. Could you share the details how business users are getting connected from public network?

Regards

SS

former_member683904
Participant
In response to Sriram2009

‎07-29-2020 5:35 PM

0 Kudos

Thanks for replying, does that mean to add host entries in the respective server or how that can be done pleaee

Business users will be using the web dispatcher URL

From the basis perspective, are u aware of any detailed blog leveraging the wildcard to multiple ABAP systems please..

Sriram2009
Active Contributor

‎07-29-2020 7:15 PM

Hi Mahesh.

1. In your public domain you have to create the host A record for each ABAP systems.

2. In a single web dispatcher you have to create multiple ABAP systems access point with single wildcard SSL cretifaction.

From the web dispatcher pointing to multiple systems refer the SAP wiki link

https://wiki.scn.sap.com/wiki/display/SI/Configuring+the+Web+Dispatcher+for+Multiple+Systems+-+Clari...

Regards

SS