cancel
Showing results for 
Search instead for 
Did you mean: 

Recevier FTPS- Hierarchy & How Load trusted keys in keystore

Former Member
0 Kudos

Hi Experts,

Need your help for faster execution . We are stuck at one step :-

http://scn.sap.com/message/7146900#7146900

http://scn.sap.com/people/rajasekhar.reddy14/blog/2010/04/13/how-to-configure-ftps-in-file-adapter


We have IDOC to receiver FTPS scenario in PI 7.1
Port --11005


1. We have created  & Configured  PI Private key

    NWA – Configutation Management ---- Key Store – Service SSL

2. As per this PI Private Key , we “Generate CSR Request “  and sent to our client to get  trusted“ Client Public/Trusted Keys”.
     We got below trusted  keys from client.

          trusted -Leaf
          trusted -Root-CA
          trusted -Server-CA

3.    What will be the hierarchy or priority to load above keys.
        How to -- Load  trusted keys in  keystore

        Is this the option  -- >NWA – Configutation Management ---- Key Store – Service SSL  --- Import CSR Responses.

Kindly suggest !


Accepted Solutions (1)

Accepted Solutions (1)

former_member191911
Contributor
0 Kudos

Hi Anshul,

Just to get clear on the scenario:

ECC sends idoc to PI and PI delivers to SFTP channel ?

A CSR request is a request to have your certificate signed by a certificate authority like verisign.

In your case - I assume you only want to create a trust - it's sufficient to import the certificate of your SFTP channel into the java stack of the PI system.

Kind regards,

Mark

Former Member
0 Kudos

Hi Mark,

Thanks for your response !

Could you please guide us how to "Import certifciate of FTPS/vendor into the java stack of PI 7.1 system".

Below are the three keys given by FTP vendor :-

          trusted -Leaf
          trusted -Root-CA
          trusted -Server-CA

former_member191911
Contributor
0 Kudos

Hi Anshul,

What I usually do is send a test message to the sftp channel. This test message will fail since the certificate is not yet placed in the correct keystore. Then you go to the NetWeaver Administrator -> Configuration -> Certificated and Keys -> TicketKeystore

The certificate of the sftp server should automatically be placed in the TicketKeystore view.

From there you can export it and import it into the keystore that you have configured for your sftp scenario.

Hope this helps!

Kind regards,

Mark

Answers (0)