1.How to create Digital certificate in XI ?
Login to the visual admin tool in XI, select the Service node->Key storage->TrustedCAs from the list of nodes.
In the Entry, select create button to generate a new digital certificate,
If you already have the certificate, you can import the certificate using the Load option as shown above.
Enter the following information,when you create a digital certificate
After entering the required information, Select the check box Store Certificate. Press “Generate” button to generate the certificate
The digital certificate generated is not trusted. There are some external organizations which will trust the certifcates.
We can also get the certifcates trusted by SAP.
SAP also provides trial certificates which are valid for 8 weeks
In order to get the certificate trusted by the external organizations, Keep the cursor on certificate you have created &
select Generate CSR request button. System will request the file name to be stored.
Open the file using note pad, Copy the content
In order get the Trial certificate from SAP, log on to the Service market place using the following URL
Select the option SSL Test server Certificates.
Select the Test it now button, Copy the content of the client certificate request from the file, paste
the content in the space provided & press continue
SAP will generate the test certificate as shown below copy the content into a text file.
Import the Test certificate using the Import CSR Response option as shown below
Now the certificate is trusted, We need to distribute the public key to partners to whom we want to collaborate.
2. How to use Digital Certificates in XI ?
While creating the communication channel for mail adapter, select S/MIME button as shown below
In the Receiver agreement, Enter the following parameters
These are steps involved for configuring the Digital signature & Encryption for mail adapter.