on 05-24-2017 11:32 PM
Hello All,
I have installed the HANA cockpit 2.0 using XSA. When launching the cockpit via the webbrowser, I get an untrusted/unsecure error, because of the fact that the XSA is using an self signed certificate (default.root.crt.pem). The certificate is located in directory /hana/shared/<SID>/xs/controller_data/controller/ssl-pub/router, but I don't see an option to generate an csr file, so the certificate can be signed by our CA.
How can we achieve this?
Versions:
SAP HANA Cockpit2.2.4 (2017-03-31 07:47:17)
SAP HANA Database Explorer2.1.3 (2017-03-13 21:22:02)
SAPUI51.38.17 (20170124144
BR
Michael
Hello Michael,
SAP Note 2243019 - Providing SSL certificates for domains defined in SAP HANA extended application services, ... describes this, i.e. you do not need a certificate request but generate a respective RSA key instead.
However, my CA tool does not support the required format, so I had to convert it:
How to convert a certificate into the appropriate format
Best regards
Frank
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
i have created a new KBA with easy steps creating an SSL Certificate for HANA 2.0 Cockpit (XSA)
BR
Andreas
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Michael,
We are getting the same error. How did you get the certificate key file.
Regards,
Arun
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thanks Frank, much appreciated.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Michael,
In case you were interested, I put a few more details into this blog:
Providing OpenSSL certificates for domains defined in HANA XSA
Best regards
Frank
User | Count |
---|---|
78 | |
9 | |
9 | |
7 | |
7 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.