Skip to Content
Technical Articles
Author's profile photo Ankit Arora


When you install SAP HANA 2.0, SSL certificate in PSE store is self-signed. In order to allow for signed SSL HTTP connections with SAP HANA, we need to replace default self-signed certificate with a new one signed by a CA of your choice.


  1. Go to below URL


  1. Open the tree of SSL and Trust configuration, Click on PSE Management

3. Click on Recreate PSE to get below screen

In Distinguished Name input bar provide below details

CN=full_domain/host/_name_for_which_certificate_to_be_signed, OU=HANA,O=SAP,L=Default City, C=Country

Provide these details as per your organization specification and click on Create.

  1. Now create a CSR with given distinguished name and other details for the PSE you created.

click Create CA request and copy the complete code.

  1. Share this csr code file to CA authority for CA signed certificate.
  2. If you received files in .crt format create single file from all the .crt files

Copy code from each .crt file and paste it in notepad with following sequence.

  • ROOT_CA cert File content
  • Hostname cert file content
  • SSL_CA cert file content

Once the content is ready save the file.

  1. Copy the file content from point 6 and click on Import CA response

8. With this import you should get the output screen as below which indicate the successful import of the certificate.

  1. Try to login with https url and you should not get security warning/error

Hope this article will help you setting up the SAP HANA XS with HTTPS.


Kindly share feedback or thoughts in a comment or ask questions if any

Assigned Tags

      Be the first to leave a comment
      You must be Logged on to comment or reply to a post.