We have a PI 7.11 system. Currently configured to use ABAP STRUST for certificate storage. As per SAPs recomendation we are updating the configuration to use the JAVA Keystore for all certificates - ABAP and JAVA. I have some questions regarding the organisation of certificates in the keystore.
For all outbound communications from the ABAP stack (RFC destinations to a Parter) the anonymous and client certificates shoudl be stored in the CLIENT_ICM_SSL_<iinstallation#> keystore.
For all outbound communications from the JAVA stack (FTPS for example) the anonymous certificates should be stored in the TRUSTEDCAs keystore.
*For all inbound communications the certificates should be stored in the ICM_SSL_<iinstallation#><port> keystore
I'm just going to bump this up to the top of the queue. I'm interested if anyone has any links to documents discussion what keystores are for which certificates so I can make sure that I'm following the SAP standards,
Java based adapters require certicates in Java stack (done with Netweaver Administratr), ABAP based adapters (WS-RM, XI, HTTP) require certificates in ABAP stack.
It is related to PI but it may be more appropriate if I post this in anotehr area.
We are running 7.11 in a dual stack environment and have changed the keystore from ABAP to Java. I just wanted to understand the various VIEWS available in NWA Keystore Management and which I should be using. We've worked it out from trial and error but I'm looking for the official SAP documentation. I have found several links which help but I was hoping there was an official guide.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.