Skip to Content
avatar image
Former Member

certificate error:

Hi

The already runnning scenario where we need to change one of the certificates.

After replacing the certificates with new one, and re-importing other unchanged one in order did not solve the issue.

Below is the error from XPI inspector. (for information we jus have upgraded the ECC system)

This Adapter Engine Instance is not trusted by the IS or the IS is not configured to accept SAP Logon Tickets.
You can check and configure the trust by using ABAP transaction: strustsso2.
Use ABAP transaction: rz10 in order to check whether the IS is configured to accept SAP Logon Tickets.

thanks

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

7 Answers

  • Nov 03, 2016 at 09:26 AM

    Was the Java Stack Restarted after your certificates had been changed in the SAP Keystore?

    Do note any Certificate re-loads in the TrustedCAs Keystore View requires a Java Restart.

    Regards,

    Bhavesh

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Nov 03, 2016 at 09:42 AM

    Hi Bhavesh

    Thanks For the reply. No it was not started.

    I think Bhavesh its not mandatory, as few months back i remember we imported few certificates in Production without restart it worked. Maybe in this case we would require.

    I will try that too.

    But Can you suggest if something is required at this end "Configuring a Trust Relationship for SAP Assertion Tickets"

    Thanks

    Add comment
    10|10000 characters needed characters exceeded

  • Nov 03, 2016 at 10:03 AM

    Are you using prinical propagation here?

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Nov 10, 2016 at 07:39 AM

    Hi

    I dont see Principle propagation in channels. Need to check elsewhere if it is maintained.

    The issue is stil the same. PI system is 7.31 sp12. The scenrio RFc to soap(thrd party) wherein third party has informed today that security has been changed to TLS now from SSL.

    Now the changes needs to be done for the same. can anyone suggest the changes required in PI system. I am also exploring more on this. Thanks

    ,

    No i don have any options for principle propagation in channel..

    Also to update that Third party(R3 -->PI-->ThirdParty) has changed the security from SSl to TLS. We are informed today itself.

    We are onP I7.31 sp12.

    We will have to see how to change teh communication using TLS....Any experience shared shall be appreciation/any suggestions..

    Add comment
    10|10000 characters needed characters exceeded

  • Nov 10, 2016 at 08:11 AM

    Did you restart and check SAP PI?

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Nov 10, 2016 at 08:24 AM

    Yes we did but no luck we stil get the same error,

    I found the below link which is same as our issue

    https://archive.sap.com/discussions/thread/3855131

    https://archive.sap.com/discussions/thread/3852649

    Add comment
    10|10000 characters needed characters exceeded

  • avatar image
    Former Member
    Nov 18, 2016 at 05:24 AM

    Hi All

    Security has been changed from SSl to TLSv1.2 and hence was the error.

    Closing the thread.

    Thank you all.

    Add comment
    10|10000 characters needed characters exceeded