Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • ADS SSL Configuration ABAP To JAVA

    Încărcat de

    Sumeet Sharma
    78 vizualizări3 pagini
    1. The document discusses setting up SSL configuration between an ABAP system and JAVA engine for Adobe Document Services (ADS). 2. It involves creating an SSL client certificate in ABAP, assigning it to the ADS HTTP destination, changing the target system settings to use the SSL port, copying the certificate to the JAVA host, loading it into the JAVA engine's key storage, and assigning it to the ADS user. 3. Additionally, the J2EE server's certificate must be extracted, uploaded to the ABAP system's certificate store, and the ICM restarted to enable secure communication between the two systems using ADS over SSL.

    Descriere originală:

    Digital Signature in SAP

    Titlu original

    ADS SSL Configuration ABAP to JAVA

    Drepturi de autor

    © © All Rights Reserved

    Formate disponibile

    PDF, TXT sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document
    1. The document discusses setting up SSL configuration between an ABAP system and JAVA engine for Adobe Document Services (ADS). 2. It involves creating an SSL client certificate in ABAP, assigning it to the ADS HTTP destination, changing the target system settings to use the SSL port, copying the certificate to the JAVA host, loading it into the JAVA engine's key storage, and assigning it to the ADS user. 3. Additionally, the J2EE server's certificate must be extracted, uploaded to the ABAP system's certificate store, and the ICM restarted to enable secure communication between the two systems using ADS over SSL.

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    78 vizualizări3 pagini

    ADS SSL Configuration ABAP To JAVA

    Încărcat de

    Sumeet Sharma
    1. The document discusses setting up SSL configuration between an ABAP system and JAVA engine for Adobe Document Services (ADS). 2. It involves creating an SSL client certificate in ABAP, assigning it to the ADS HTTP destination, changing the target system settings to use the SSL port, copying the certificate to the JAVA host, loading it into the JAVA engine's key storage, and assigning it to the ADS user. 3. Additionally, the J2EE server's certificate must be extracted, uploaded to the ABAP system's certificate store, and the ICM restarted to enable secure communication between the two systems using ADS over SSL.

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 3

    Getting Started New sletters

    Welcome, Guest

    Login

    Products

    Services & Support

    About SCN

    Downloads

    Industries

    Training & Education

    Partnership

    Developer Center

    Lines of Business

    University Alliances

    Events & Webinars

    Innovation

    dezso.pap

    ADS SSL configuration journal I. / ABAP -> JAVA / 640


    - 70x
    Previous
    Next
    Posted by Dezso Pap in dezso.pap on 25-Jan-2008 05:27:12
    Share

    Tw eet

    Like

    Store

    Search the Community

    Register

    I would like to show you, how I have set up SSL for the Adobe Document Services.
    The configuration was done on a NW04s system.
    Instead of words let's begin:

    1. First we ensure we have a certificate in the ABAP, what can be used for the communication.
    a. Go to Tr. STRUST:
    b. I created "SOAP" Client certificate /* self-signed */ with help of menu option:
    c. Environment >> SSL Client Identities.
    postpost

    2. We have to assign this certificate to the ADS HTTP destination in Tr. SM59
    a. Go to Tr. SM59
    b. Choose you ADS destination, than choose tab: 'Logon & Security' activate SSL
    c. and choose your freshly created certificate:

    3. Change the target System settings to the SSL Server proxy.


    a. Go to Tr. SM59
    b. Choose tab: Technical Settings
    c. Change the Service No. to the SSL port of the J2EE engine
    d. Change the path prefix to:
    /AdobeDocumentServicesSec/Config?style=rpc

    4. Copy the certificate to the JAVA host at OS level.


    We can download the certificate from Tr. STRUST.
    a. Open the certificate and press the export certificate button. Save the certificate in base64 format. I choosed the

    Activity
    Brow se

    Communications

    Actions

    name: ERP_SOAP.cert
    b. This certificate has to be copied at os level to the NW JAVA engine to a directory that is accessibble by the
    j2ee_admin user. We will need the certificate in the Visual administrator.

    5. Load the certificate into the JAVA engine .


    In the Visual Administrator navigate to the Key Storage Service.
    a. Create a view with the Name: 'ADSCerts'.
    b. Load the certificate with help of the 'Load' button.
    After this step, you should have something similar to this: / you will have only 1 certificate /.

    c. With the same mechanismus also load this certificate into the TrustedCAs view. / We do not have CA cetificate as
    we use self-signed certificate in this scenario so the CA cert is the same as the ADSUser's cert. /

    6. Assign the certificate to the ADSUser.


    a. Go to the security provider Service.
    b. On the tab User management search for the ADSUser. Click change.
    c. At Certificates choose Add, and assign the certificate you have just loaded to the ADSCerts view.
    d. Click the change again.

    7. Set up the SSL provider to request the ADSUsers's certificate


    a. Go to the SSL provider Service.
    b. Open the HTTPS port of the j2ee engine and go to the tab: Client authentication.
    c. Add the certificate we loaded to the TrustedCAs to the list. / Ensure the request client certificate option is selected /.
    It should look similar to this:

    8. Extract the J2EE servers server cetificate.


    a. Go to the SSL provider Service.
    b. Open the HTTPS port of the j2ee engine and go to the tab: Server Identity. Here you will find the name of the
    certificate the J2EE server is using as Indentification certificate.
    c. Go to the Key Storage Service and choose the: service_ssl view.
    d. Here choose the certificate you have found in point 8.b.

    e. Download this file from the OS of the J2EE enginge to your Desktop.

    9. Upload the J2EE server identity to STRUST


    a. In the ABAP stack go to Tr. STRUST.
    b. Choose the certificate you created for the communication.
    c. Click on import Certificate >> A dialog opens. Choose the certificate you downloaded to your desktop. / J2EE Server
    Identity /
    d. Click on Add to Certificate list.
    e. Go To Tr. SMICM and restart the ICM.

    With these steps the SSL communication from the ABAP to the JAVA side should work.
    At least it did for me ;-)
    In the next part of the Jurnal we set up the SSL for the destination service. / JAVA -> ABAP /

    3346 View s

    Average User Rating

    My Rating:

    (1 rating)

    Share

    Tw eet

    Like

    17 Comments
    samba m 31-Mar-2008 04:02

    Hi,
    This blog was very useful thanks onec again.
    Regards.
    Like (0)

    Amit Rai 02-Jan-2009 12:21

    Hi Dezso,
    Nice blog, we followed all the steps written in your blog and tested the connection by running report
    "FP_CHECK_DESTINATION_SERVICE". But we are getting error "Problem in accessing data from
    destination FP_ICF_DATA_E1S//sap/bc/fp/form/layout/FP_FORM_SECUTIRY_TEST.xdp"
    What could be the possible cause of error?
    Thanks in Advance,
    Amit
    Like (0)

    Davinderpal Singh 27-Feb-2009 10:20 (in response to Amit Rai)

    Check FPADS service and change your Logon Procedure to Standard , also choose SSL
    under Security Requirement. Deactive, activate and restart ICM.
    Please update whether this solves the issue or not.

    S-ar putea să vă placă și