(DI-2308) Configuration of SSL Client Identity for HTTPS connection

To add a certificate to SAP, create a new SSL Client Identity or use an existing SSL Client Identity (Anonymous or Standard) in transaction STRUST.

Create new SSL Client Identity

  1. Go to transaction code STRUST.

  2. Navigate to Environment > SSL_Client Identities, and click New Entries from the menu bar.

  3. Enter Identity name, Description, and save it.

  4. Get back into transaction code STRUST, choose the SSL identity node in the context menu and select Create to create a PSE file for a new SSL identity.

  5. On the Create PSE window, enter the required PSE options and submit.

Add a certificate to SLL Client Identity

  1. Go to transaction code STRUST.

  2. Select Certificate > Import from the menu bar.

  3. On the Import Certificate window, select your certificate file (*.pem, *.cer, etc.) and confirm the selection.

  4. View the file content under the Certificate pane. 

  5. Double-click on the used SSL Client Identity to load it.

  6. Click Add to Certificate List in the Certificate pane.

  7. Click Save.

HTTPS Service

In order for any SSL connections to work, the SAP system must have an active HTTPS service setup. Go to transaction code SMICM, click Goto > Services and make sure that the list contains an HTTPS row that is marked as active.