11-03-2016 9:04 AM - edited 01-21-2024 9:47 PM
Hi
The already runnning scenario where we need to change one of the certificates.
After replacing the certificates with new one, and re-importing other unchanged one in order did not solve the issue.
Below is the error from XPI inspector. (for information we jus have upgraded the ECC system)
This Adapter Engine
Instance is not trusted by the IS or the IS is not configured to accept SAP
Logon Tickets.
You can check and configure the trust by using
ABAP transaction: strustsso2.
Use ABAP transaction: rz10 in order to check
whether the IS is configured to accept SAP Logon Tickets.
thanks
Hi All
Security has been changed from SSl to TLSv1.2 and hence was the error.
Closing the thread.
Thank you all.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Yes we did but no luck we stil get the same error,
I found the below link which is same as our issue
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Did you restart and check SAP PI?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi
I dont see Principle propagation in channels. Need to check elsewhere if it is maintained.
The issue is stil the same. PI system is 7.31 sp12. The scenrio RFc to soap(thrd party) wherein third party has informed today that security has been changed to TLS now from SSL.
Now the changes needs to be done for the same. can anyone suggest the changes required in PI system. I am also exploring more on this. Thanks
,No i don have any options for principle propagation in channel..
Also to update that Third party(R3 -->PI-->ThirdParty) has changed the security from SSl to TLS. We are informed today itself.
We are onP I7.31 sp12.
We will have to see how to change teh communication using TLS....Any experience shared shall be appreciation/any suggestions..
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Are you using prinical propagation here?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Bhavesh
Thanks For the reply. No it was not started.
I think Bhavesh its not mandatory, as few months back i remember we imported few certificates in Production without restart it worked. Maybe in this case we would require.
I will try that too.
But Can you suggest if something is required at this end "Configuring a Trust Relationship for SAP Assertion Tickets"
Thanks
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Was the Java Stack Restarted after your certificates had been changed in the SAP Keystore?
Do note any Certificate re-loads in the TrustedCAs Keystore View requires a Java Restart.
Regards,
Bhavesh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
90 | |
10 | |
10 | |
10 | |
7 | |
7 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.