- SAP Community
- Groups
- Interest Groups
- Application Development
- Discussions
- Verisign certificate response fails with Error 950...
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Verisign certificate response fails with Error 9508 -empty/invalid fields
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-17-2008 11:24 PM
We are trying to generate a trial 14-day Certificate Response file from Verisign. It fails with error "Error 9508 - Certificate Signing Request contains empty field(s)" when supplied with the certificate request. We have made several attempts to through transaction STRUST and via sapgenpse command to create certificate request file with unique DN which has values for CN, OU, O, ST, L, C. But no success.
Has anyone successfully created a CSR from verisign for enable SSL in NW2004s?
Thanks,
Asif
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-17-2008 11:35 PM
Hi Asif,
Check whether you have provided correct location/state name.
-Pinkle
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-18-2008 4:38 PM
Hello Pinkle,
Thanks for your response. I am specifying "Texas" which is a valid state name. For location I am using "Plano".
Am I providing incorrect information? or parameter name?
-Asif
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-21-2008 9:24 AM
Looks like [SAP Note 511919|https://service.sap.com/sap/support/notes/511919] could help you ...
Notice: the printable notation of the OIDs (such as "CN", "OU", ...) is not standardized.
In particular: "ST" (Street / State) -> "SP" (State-or-Province).
Cheers, Wolfgang
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-22-2008 10:31 PM
Hello Wolfgang,
Now it is importing the response file into STRUST. I have the Verisign Trial CA Root, Trial intermediate and the CA issued CSR (Certificate Signing Response) files. I have tried to follow OSS note 508307 to apply the certificate response but it fails with message "CA certificate missing in database". I have tried to import the certificate trial CA Root into database and then tried to import the trial intermediate and CSR together and getting error message "Cannot import certificate response".
Please share your expertise.
Thanks,
Asif
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-22-2008 11:31 PM
Have you tried putting all in one file and them import CSR?
-
BEGIN CERTIFICATE-----
<Base64-coded contents of the re-issued certificate>
-
END CERTIFICATE-----
-
BEGIN CERTIFICATE-----
<Base64-coded contents of the certificate of the intermediate CA>
-
END CERTIFICATE-----
-
BEGIN CERTIFICATE-----
< Base64-coded contents of the certificate of the root CA>
-
END CERTIFICATE-----
If yes, then try putting each cert in individual file and save it as .crt format to check all certs are ok and valid.
-Pinkle
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-12-2011 8:37 AM
You can also use a p7b file which contains the whole certification chain and imports easlily in STRUST.
Regards,
Olivier
- SAP Managed Tags:
- Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-11-2011 9:32 PM
