on 05-15-2009 7:34 AM
Hi,
Could somebody explain me the functionality of this feature? I was reading some document in sdn but unable to get clear picture of it. I would like to understand the risk/ security aspects of it.
Also, please let me know how STRUST t-code is used for this?
Thanks!
Which document? Public key infrastructure is a mechanism for helping encrypt traffic. It relies on a public key/private key pair. The public key can be used to encrypt a message but it can only be decrypted by the private key. So, I can let aanyone have my public key to send me things as only I can decrypt it. It is often used for SSL.
Try Googling for more details.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Shaila,
Thanks for the reply and the document attached!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Pranav,
You are welcome.
Adding something on this, public-key technology can be used to create and verify digital signatures.This mechanism can be used at both the system level and the business level.
The system level includes security for internal and cross-system operations like SAP EP with BW , CRM etc.infact between Non-SAP n SAP systems also
The Business level includes security at business documents such as orders, invoices,and payments. through FPN i.e federated portal network where we have both consumer and producer for info review.
Hope i was clear at this point.
Regards,
Shaila
Hi,
public key and private key are not an invention of SAP. You may read something more about security standards and SSL in the internet.
If you've got an SAP specific question we may need a link to the document you refer to. Maybe you can also specify in detail what's not clear to you.
Cheers,
Anja
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Pranav,
Public/private key comes into picture if we are using SSL which act as the Digital signatures of the SAP systems. Generally during integration os portal with any other SAP/ non-SAP system we use the Public keys . So that mesages can be decrpted only by a private key.
The STRUST T-code is at R/3 level for any SAP system which contains the authorizations to accept these public keys tickets from Portal .i.e. The Keypair certificated is downloaded from portal's Key Store administration (under sys admin->sys configuration->key store admin) and then importaed at this TCODE . WE import this ticket key pair so that we can establish Single sign on (SSO) between the SAP R/3 sys and Portal. (this can be a BW or CRM sys ).
In this case we have two types of download options as .DER or .PSE which depends on SAP or Non SAP systems.
For further info pls refer teh below link
Hope this was helpful.
Shaila
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
82 | |
10 | |
10 | |
9 | |
6 | |
6 | |
5 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.