The process of creating a certificate request (CSR) and import the certificate response, received from the CA, is not always simple as it looks like. The objective here is to make life easier using the principle: “a picture is worth a thousand words”.


How to create the CSR?

The first step is double click on the web application server name:

CSR1.png


Now click on the “Create Certificate Request” button:

CSR2.png


Now it is possible to submit the CSR to any CA:

CSR3.png



How to import the certificate response?

Once response from the CA arrived, it is possible to import the certificate response. Just click on the “Import Cert. Response” button, available in the “Own Certificate” section:

Import1.png


It is necessary to paste the certificate response along with the intermediate and the root certificate – there can be no, one or more intermediate certificates.

In this example, there is only the root certificate that is appended to the end of block.

Finally, click on the green ticket:

Import2.png


Note that now there is no “(Self-Signed)” message bellow the DN of the certificate (see green rectangle). Now save the PSE (see arrow):

Import3.png


The ICM processes need to be restarted, if the release is lower than 7.02 (details in SAP note 510007):

Import4.png


By double clicking the DN of the certificate, it is possible to have more information about it:

Import5.png

In higher releases, you will also find the Algorithm, the Key Length and SAN information.



The ICM should be restarted (again, if the release is lower than 7.02) via transaction code SMICM (confirm the restart of the ICM processes):


Import6.png

To report this post you need to login first.

1 Comment

You must be Logged on to comment or reply to a post.

Leave a Reply