Skip to Content

Key store and certificate issue

Hi,

I was referring below blog and got few questions. Can anyone please clarify -

https://blogs.sap.com/2016/03/31/hci-deciphering-hci-keystore/

We will have some cloud third party (JSON) -> HCI -> C4C scenario. Hence, using HTTPS at sender end and SOAP 1.x at receiver end.

Question on system.jks -

1) Generated one key pair using key explorer. This might be signed by some HCI trusted CA. So we need to talk to some CA and provide them the CSR to get CA Reply and it will incur some cost. Am I correct?

2) Load Balancer certificate is required to import in system.jks. What is Load balancer url? I took 3 certificates from https://tenant id-tmn.hci.eu1.hana.ondemand.com/itspaces. Is it correct URL?

Getting below error(for the time being used self signed key pair) -

Question on C4C -

1) Need to import Root certificate of C4C in system.jks. Am I correct?

Question on third party JSON sender -

1) We will provide then one url like below as after deployment HTTPS will not create any endpoint - https://tenant id-iflmap.hcisbp.eu1.hana.ondemand.com/endpoint created in Channel

2) Third party JSON sender should import HCI root certificate on their server to white list HCI. IS it correct?

Please help

capture.jpg (19.8 kB)
Add a comment
10|10000 characters needed characters exceeded

Related questions

1 Answer

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.