cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP PI - PGP Encryption Module: No private key with signing capability found in...

Go to solution
rogcoimbra
Participant

on ‎06-12-2017 5:18 PM

0 Kudos

I configured the PGP module in a File type adapter in the SAP PI environment according to the SAP documentation: Configuring the Encryption PGP Module. However, the following error is occurring: "PGP Encryption Module: No private key with signing capability found in E:\usr\sap\PID\J71\sec\private_key.p12." (MessageLog.jpg;

CC_FILE_ADAPTER.jpg).

Note: The private key was exported using "sapgenpse" using the following command: "Sapgenpse export_p12 -p <certificate>.pse -z password <private_key>.p12"

I would like to know what may be wrong with the private key and how to solve it?

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

manoj_khavatkopp
Active Contributor
‎06-12-2017 5:25 PM
0 Kudos

Rogerio,

The .p12 key which you generate is not a PGP key pair its a SSH key pair which is used for authentication.

I don't think you can use sapgenpse to generate PGP key pair , i usually use Gnupg (https://www.gnupg.org/) tool to generate PGP key pair.

or there are many free online websites which helps you to generate PGP key pair you can use those too.

Br,

Manoj

Show replies
Show replies
rogcoimbra
Participant
‎06-12-2017 5:53 PM
0 Kudos

Manoj,

I already have the key pair in a ".PSE" file, but the SAP PI PGP module did not recognize it as a valid private key for signing. I believe that it is necessary to export only the private key of the file ".PSE", however, I do not know how to do this, since I have already exported through the "Internet Explorer" (generated a file ".PFX") and also did not work .

Thanks!

Att.,

Rogério Coimbra.

manoj_khavatkopp
Active Contributor
‎06-12-2017 5:58 PM
0 Kudos

Rogerio,

As i mentioned earlier the steps which were u followed are to generate SSH key for authentication they can't be used for PGP Encryption and Decryption.

I would suggest you to generate PGP key via : https://www.igolder.com/PGP/generate-key/ and store the private key in the location then test it.

Br,

Manoj

rogcoimbra
Participant
‎06-12-2017 7:15 PM
0 Kudos

Manoj,

I am very grateful for the information and even the test with the private key generated through the site "https://www.igolder.com/PGP/generate-key/" worked. However, what I need to generate is a digital signature (PKCS # 7 standard) from a digital certificate generated by a certifying authority (CA) that is the same certificate that we use to sign public document here in Brazil.

Would you like to know if this is possible through the PG PI Module?

Br.

Rogério Coimbra.

manoj_khavatkopp
Active Contributor
‎06-13-2017 6:59 AM
0 Kudos

AFAIK , CA will sign only SSL certificates i don't think they will sign PGP or SSH key.

rogcoimbra
Participant
‎06-13-2017 7:19 PM
0 Kudos

Manoj,

I've been researching and have come to the conclusion that to sign a file in the PKCS#7 standard and convert to BASE64 I will have to develop a Java Mapping or an AFM.

Thank you!

Br.

Rogério Coimbra.

Answers (0)

Ask a Question