Skip to Content
0

Problem wit the SSL Certificate

Feb 16 at 03:29 AM

82

avatar image

Hello,

I have added the SSL certificate in the Certificates and Keys in SAP PO. I have done the same to both Test and Prod systems. Now the problem is, the interface using this works fine on test, but fails on production. I used the xpi_inspector and fond that the certificate is referenced/added while running the interface on test, but does not get referenced/added in production. I tried after clearing both CPA cache and mapping cache. In certificates view, the certificate is accepted and displayed as green status.

We are running SAP PI 7.4 on java.

My guess is that the Certificates are cached and my newly added cert is not getting referenced. Initially I have added the cert under TrustedCAs, but later added it under its own keystore and updated the keystore name in the channels with 'trustStore'=<keystoreName>. But still no success.

Any help with this will be highly appreciated.

Regards,

Prashant

10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

3 Answers

Best Answer
Prashant Bhavsar Feb 18 at 11:20 PM
0

Thanks for all your responses. The problem was fixed after the server restart.

Regards,

Prashant

Share
10 |10000 characters needed characters left characters exceeded
Pavan Dogiparthy Feb 16 at 07:03 AM
0

Hi Prashant,

May i know what is the interface?

I guess you have imported client ssl cert into TrustedCAs

you need to assign the newly added production certificates to your interfaces as you moved the interface from QA to production still the interface is pointing to QA certificate and also remove QA certificate if it is there in prod

Edit your interface manually in production by pointing the production certificate.

Regards

Pavan

Show 1 Share
10 |10000 characters needed characters left characters exceeded

The interface is already on production. old certificates were in Trusted CAs but it was not working on prod so I tried giving it its own keystore and updated the channels to point them to the new keystore. But it still has the same problem,

I did the same channel updates in test and they are working fine there.

Regards,

Prashant

0
Andrzej Filusz Feb 16 at 12:03 PM
0

Hi Prashant,

I'm sorry for a such childish question but have you restarted your communication channel after you imported your certificate into TrustedCA?

Best Regards,

Andrzej Filusz

Show 1 Share
10 |10000 characters needed characters left characters exceeded

Hello,

Yes I have restarted the channels. I have cleared the cache, now planning to restart the server tomorrow.

Regards,

Prashant

0