The user needs to have a valid X.509 certificate to be able log on at the SAP System (via ICM service). This certificate is issued by the intermediate CA. Create a CSR for a user and let the intermediate CA sign it. Following my own blogs, I get a certificate Read more…
From time to time I have to create a PKI with a root and intermediate CA. As I do not want to have to search for the correct commands, I created a setup for OpenSSL and a Jupyter notebook that guides me through the steps. This allows me to go Read more…
The overall process is: Create CA Private CA key Create private key Check private key Public CA certificate Create public certificate Check public certificate Sign CSR SHA-1 Create CSR using SHA-1 Check CSR Sign CSR enforcing SHA-256 Check signed certificate SHA-256 Create CSR using SHA-256 Check CSR Sign CSR Check Read more…
The overall process is: Create CA Private CA key Create private key Check private key Public CA certificate Create public certificate Check public certificate Sign CSR SHA-1 Create CSR using SHA-1 Check CSR Sign CSR enforcing SHA-256 Check signed certificate SHA-256 Create CSR using SHA-256 Check CSR Sign CSR Check Read more…
The overall process is: Create CA Private CA key Create private key Check private key Public CA certificate Create public certificate Check public certificate Sign CSR SHA-1 Create CSR using SHA-1 Check CSR Sign CSR enforcing SHA-256 Check signed certificate SHA-256 Create CSR using SHA-256 Check CSR Sign CSR Check Read more…
OK, now it will get complicated. Certificate based logons do not really like reverse proxies. First step is to ensure that the client has a certificate that is accepted by the SAP NetWeaver ABAP PSE. For this, the certificate must be signed by a CA that the ABAP PSE trusts. Read more…
Afaria mobile client can request a client certificate from a corporate CA for the user. This means that the user will get automatically a valid certificate made available for him, without having to go through the complicated process of requesting and installing a certificate. The user won`t even know that Read more…
To ensure confidentiality of user data, access to SAP Afaria by users needs to be done using SSL. For this to work, IIS must use its own valid SSL certificate. To do so, first a certificate request for IIS must be created. This request will be handled by the CA Read more…