Ask a Question

Solution ID : SO22368

Last Modified : 05/18/2018

Managed PKI for SSL - Installation Instructions for SAP Web Application Server

Solution


This document provides installation instructions for SAP Web Application Server using the Trust Manager. If you are unable to use these instructions for your server, Symantec recommends that you contact the server vendor or the organization, which supports SAP.

Step 1: Obtain and Install the SSL certificate

Method 1: Download and install the SSL in PKCS#7 format

  1. Download the certificate from Managed PKI for SSL subscriber services page.
    NOTE: When downloading the certificate, please select PKCS#7 as a certificate format and save it as SSL.p7b
  2. From Trust Manager expand the SSL server PSE node.
  3. Double click to select the appropriate application server. The application server's SSL server PSE is displayed in the PSE maintenance section.
  4. In the PSE maintenance section, choose Import Cert. Response. The dialog for the certificate request response will be displayed.
  5. Paste the contents of the SSL.p7b  into the dialog's text box or select the response from the file system by using Load local file.
  6. The signed public-key certificate is imported into the server's SSL server PSE, which is displayed in the PSE maintenance section.
  7. You can view the certificate by selecting it with a double click. The certificate information is then shown in the certificate maintenance section.
  8. Save the data.
    NOTE: If you are using Method 1 you don't need to download and install the Intermediate CA certificates as the PKCS#7 format
    contains your SSL certificate and the Intermediate CA certificates.
     

Method 2: Obtain and install the SSL Certificate sent via e-mail

  1. Once your Managed PKI for SSL administrator has approved your Certificate request, you will receive an email with
    the certificate download link, also attached (cert.cer), as well as in the body of the email itself.
  2. Copy the certificate, from the email and paste it into a text file using Vi or Notepad.
    NOTE: Do not use Microsoft Word or other word processing programs that may add characters.
    Confirm that there are no extra lines or spaces in the file.

    The text file should look like:
    -----BEGIN CERTIFICATE-----
              [encoded data]
    -----END CERTIFICATE-----

    NOTE: Click here to download the certificate from your Managed PKI for SSL subscriber services page.
    Please select X.509 as a certificate format and copy only the End Entity Certificate.
     
  3. Save the file as SSL.pem .
  4. From Trust Manager expand the SSL server PSE node.
  5. Double click to select the appropriate application server. The application server's SSL server PSE is displayed in the PSE maintenance section.
  6. In the PSE maintenance section, choose Import Cert. Response. The dialog for the certificate request response will be displayed.
  7. Paste the contents of the SSL.pem  into the dialog's text box or select the response from the file system by using Load local file.
  8. The signed public-key certificate is imported into the server's SSL server PSE, which is displayed in the PSE maintenance section.
  9. You can view the certificate by selecting it with a double click. The certificate information is then shown in the certificate maintenance section.
  10. Save the data.
  11. Download and install the Intermediate CA certificate by following the steps from this link.
  12. Verify your installation with the Symantec Installation Checker


SAP

          For more information refer to SAP Support