Skip to Content

SSL certificate is not valid & server supports SSL 3.0

Hi Basis experts,

Recent security scan on our SAP systems has shown threats related to SSL, TLS and Webserver. Below are the threat details.


The certificate is NOT valid. It is issued by CN=root_ED1, OU=sapstartsrv, O=SAP System PKI, C=DE. Verification status: PartialChain. Information: A certificate chain could not be built to a trusted root authority. Certificate's CN: SAPERPDEV-ED1_ED1_00

The certificate is NOT valid. It is issued by CN=SSL_Self_Signed_Fallback. Verification status: UntrustedRoot. Information: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider. Certificate's CN: SSL_Self_Signed_Fallback

The remote host supports connections using SSL 3.0 protocol.

The remote host supports connections using TLS 1.0 protocol.


I have regenerated the certificates in strust and applied the new certificates. But still these threats are not getting cleared.

Could any of you guide on how to resolve these threats ?



Add a comment
10|10000 characters needed characters exceeded

Related questions

1 Answer

  • Posted on Dec 11, 2017 at 06:34 PM

    Hello Naresh,

    That certificate is related to the "System PKI" feature of the SAP kernel.

    Your security scan software must be raising that alert for the HTTPS port of the sapstartsrv (5XX14, where XX is the instance number).

    This port is not accessed (or should not be accessed) by end users.

    You can read the SAP Note 2200230 (S-user required) for more details about the System PKI.



    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.