It's full of stars!

  • All Content
  • About

tls

Technology

Server Name Indication

SNI is an extension to TLS and enables HTTPS clients to send the host name of the server it wants to connect to at the start of the handshake request. This is an important feature, as the host name information is sent inside the HTTP header and the header is Read more…

By Tobias Hofmann, 4 yearsDecember 21, 2020 ago
Technology

Get an A rating from SSL labs

You should secure your web site using TLS. No, that`s not a typo, it`s TLS and not SSL. SSL is dead and should not be used anymore. Praise TLS. This may sound complicated at first, but it`s not. First step is to deactivate HTTP and activate HTTPS. How to do Read more…

By Tobias Hofmann, 9 yearsFebruary 11, 2016 ago
Basis SAP

Install a server certificate in SAP NetWeaver ABAP – 3.6 Import CA certificate into SAP NetWeaver ABAP PSE

In case your ICF will serve only as a HTTPS server, you do not need to do this. In case you want your ABAP server to connect to another web server, this may be of interest. In that case, your ABAP server acts as a client and will receive a Read more…

By Tobias Hofmann, 10 yearsNovember 18, 2015 ago
Basis SAP

Install a server certificate in SAP NetWeaver ABAP – 3.5 Test the new server certificate

After the server certificate is installed, ICM should automatically make use of it. To see if SSL/TLS connections are now working, two tests should be executed: Check SSL port setup Access service using TLS 1. Making Sure the SSL Port is set up correctly This step checks that ICM is Read more…

By Tobias Hofmann, 10 yearsNovember 17, 2015 ago
Basis SAP

Install a server certificate in SAP NetWeaver ABAP – 3.4 Import the certificate response from CA

After the CA issued the certificate, it must be imported into the PSE that issued the CSR. During the import step a verification of the private / public key will happen. This ensures that you import the right public key into the PSE. This also means that you cannot use Read more…

By Tobias Hofmann, 10 yearsNovember 16, 2015 ago
Basis SAP

Install a server certificate in SAP NetWeaver ABAP – 3.3 Submiting the certificate requests to a CA

The certificate request created in the previous step must be send to a CA. The CA is responsible to create a valid server certificate based on the information provided by the CSR. Important: the certificate emitted by the CA must follow the PKCS#7 certificate chain format. The response file must Read more…

By Tobias Hofmann, 10 yearsNovember 13, 2015 ago
Basis SAP

Install a server certificate in SAP NetWeaver ABAP – 3.2 Generate a certificate request for each SSL server PSE

In the previous step a new PSE for SSL server was created, but the containing server certificate is self-signed. This means that no sane web browser will accept your certificate without showing a warning message to the user. To have a valid server certificate, it must be signed by a Read more…

By Tobias Hofmann, 10 yearsNovember 12, 2015 ago
Basis SAP

Install a server certificate in SAP NetWeaver ABAP – 3.1 Create a SSL/TLS Server PSE

SAP stores certificates in PSE files (for the Java guys: JKS). By default, there are several PSEs available, one for each use case (system, SSL, web service, etc). A PSE has a subject which stands for the name of the server. Changes are good that the subject value created by Read more…

By Tobias Hofmann, 10 yearsNovember 11, 2015 ago
Basis SAP

Install a server certificate in SAP NetWeaver ABAP – 2 Set profile parameters

For ICM to work with SSL, some parameters must be set in the profile. These parameters define which PSE and algorithms to use. Normally these parameters are already set to default values. To see if these are acceptable to you and match the location of your CommonCryptoLib 8 installation, you Read more…

By Tobias Hofmann, 10 yearsNovember 10, 2015 ago
Java Mobile SAP SMP

Enable TLS in SMP3

SSL is out, TLS is the new kid in town (although already pretty old) and to keep security high on your SMP3 server, a question remains: how to enable TLS on SMP3? Easy: it is already configured! By default, SMP3 comes with TLS enabled. The trick is to configure it Read more…

By Tobias Hofmann, 10 yearsSeptember 21, 2015 ago

Posts navigation

1 2 Next
  • Datenschutzerklärung
  • Impressum
  • Cookie-Erklärung
Hestia | Developed by ThemeIsle