Versions Compared

Old Version 5

changes.mady.by.user Kevin Wu

Saved on

compared with

New Version Current

changes.mady.by.user Kevin Wu

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Image Removed supports We support TLS/SSL handshaking for one-way authentication between a SAP CC client and SAP CC core server.

...

  1. Configure SAP CC Core Server with one-way authentication for the respective Instance and Services.

  2. Configure Image Removed Client Configure SAP CC Client to trust SAP CC Core Server.

...

SAP CC Architecture Diagram including SAP CM(Image Removed) as CM as a third-party element.

Info

Info!

For more information, please read Identifying services involved in the Client/Server communication

For our case, you will turn on one-way for ExternalSecure targeted service on the Dispatcher instance.

Rw ui textbox macro
typetip

Example!

Example SAP CC Core Server Instance Map:

Code Block
#InstanceId   ; HCISecure ; HCIHost                                               ; HCIPort ; WSSecure ; WSHost                                                ; WSPort ; ExternalSecure ; ExternalHost                                          ; ExternalPort ; InternalSecure ; InternalHost                                          ; InternalPort
 updater#1    ; off       ; ec2-13-229-84-66.ap-southeast-1.compute.amazonaws.com ; 9000    ; off      ; ec2-13-229-84-66.ap-southeast-1.compute.amazonaws.com ; 9080   ;                ;                                                       ;              ;                ;                                                       ;
 dispatcher#1 ; off       ; ec2-13-229-84-66.ap-southeast-1.compute.amazonaws.com ; 9100    ; off      ; ec2-13-229-84-66.ap-southeast-1.compute.amazonaws.com ; 9180   ; oneway         ; ec2-13-229-84-66.ap-southeast-1.compute.amazonaws.com ; 2000         ; off            ; ec2-13-229-84-66.ap-southeast-1.compute.amazonaws.com ; 2100

Configure

...

SAP CC Client To Trust SAP CC Core Server

Take the SAP CC Core Server’s Public Certificate (X.509v3 format encoded in DER), and configure in MZ SAP CC client to trust the SAP CC Core Server.

One of the example method is using the keytool command to add this server certificate to client truststore, and use this truststore for your SAP CC agent.

Rw ui textbox macro
typetip

Example!

Import the server certificate “certificate.x509.pem“ to generate “client.truststore” file.

Code Block
keytool -importcert -alias sapcc -file certificate.x509.pem -keystore client.truststore -storetype pkcs12 -storepass examplepw

In the SAP CC agent, tick Enable Secured Connection checkbox and configure the following fields:

Keystore Path: /path/to/client.truststore

Keystore Password: examplepw

...