dilip, have you tried using CAP with SAP Cloud SDK, see more here: https://sap.github.io/cloud-sdk/docs/js/guides/trust-and-keystores ?

I don't see any reason why you might be having any issues with the scenario you've described. Take a closer look in the official documentation for SAP BTP Connectivity https://help.sap.com/docs/connectivity/sap-btp-connectivity-cf/connectivity and more specifically and how to manage destinations: , as well as how to programatically consume the Destination service: https://help.sap.com/docs/connectivity/sap-btp-connectivity-cf/consuming-destination-service

andreas.mazzola, The so-called "Check Connection" functionality in Destination service is very lightweight and offered just for simplicity for the users to be able to check if the connection to the target is generally possible, but not whether it is operational, which falls into the category of "Test Connection" functionality, and there's no such offering.

You can safely use such kind of destinations, there are plenty of productive use cases served by Destination service.

However, there's a small caveat, you need to know which code will consume this destination and actually perform the execution of the request, i.e. the technical establishment of the TCP/HTTP/TLS connection and therefore the usage of the client certificate, as well as the trust of the server certificate. In BTP Neo, this is usually handled by the client libraries incorporated in the Neo runtime itself. In BTP CF, it depends on the app development framework you're using, e.g. CAP with SAP Cloud SDK, see more here: https://sap.github.io/cloud-sdk/docs/js/guides/trust-and-keystores