SAP Mantra

  Implementing SSL using Wildcard certificate in PO system (wildcard extension .pfx ) A SSL Wildcard certificate is a single certificate with a wildcard character (*) in the domain name field. This allows the certificate to secure multiple sub domain names (hosts) pertaining to the same base domain. The wildcard certificate was provided by the client with the extension .pfx. Step 1 - Convert “.pfx” to “*.pse” sapgenpse import_p12 -p domain.pse domain.pfx Failed due to unrecognition of root certificate : but certificate chain is incomplete, need certificate of 'CN= Secure Certificate Authority , OU=XXXX, O="XXXX", L=XX, SP=XX, C=XX' Step 2 - Convert pfx to pem first through openssl command Note:   The PKCS#12 or PFX format is a binary format for storing the server certificate, intermediate certificates, and the private key in one encryptable file. PFX files usually have extensions such as .pfx and .p12. PFX files are typically used on Windows machine...

 End to End SAP on Oracle Database Refresh Procedure  Convention : In this document we follow the given convention while refreshing to system Source system : The whose database backup is taken and applied on the other system. Target system : The system which will be refreshed   1.      Login to the target system : As <sid>adm à stopsap 2.      If the target system is in a host which house no other AS then stop the listener à lsntctl stop Note : In case the host houses other AS proceed without this step . 3.      In the target system switch user to ora<sid> à su -ora<target-sid> 4.      In the target system moved the contents of the /oracle/sid/saptrace/directoey : Mkdir /oracle/SID/saptrace/background/old Mkdir /oracle/SID/saptrace/usertrace/old   Mv /oracle/SID/saptrace/background/* /oracle/SID/saptrace/background/old Mv /oracle/SID/saptrac...

  Wildcard certificate generation for SAP systems & SSL using WC  on S4HANA_Fiori_WebDispatcher 1-What is wild card certificate: A SSL Wildcard certificate is a single certificate with a wildcard character (*) in the domain name field. This allows the certificate to secure multiple sub domain names (hosts) pertaining to the same base domain. 2-Format of the Wildcard certificate A {SSL} Wildcard certificate should be considered an option when looking to secure a number of sub domains, such as “secure.<domainname>.com”, “www.<domainname>.com” with a single certificate.The format of the common name entered for the SSL Wildcard Certificate will be '*.(domainname).com'. 3-Prerequisite 1.         Login to OS level as sidadm 2.         Check the SHELL then manually change the SHELL file (csh or bsh)   3.         Check environment variable (SECDIR) is set or not by executing sapgenpse ...

  SAML2 configuration in Fiori system via web dispatcher with 3 rd party portal SP : Service Provider – SAP systems IDP : Identity Provider – Non SAP Portal or AD Ref Note :  2485474 - How to configure SSO from Fiori Launchpad to a back-end system with logon ticket 2740052 - Which paths are necessary to configure Web Dispatcher for Fiori Launchpad scenarios Pre Requisites ( A ) Add the system in Web dispatcher wdisp/system_0 = SID=<Fiori SID>, MSHOST=<Fiori host>, MSPORT=8101, SRCSRV=*:<srcport>,SRCURL=/sap/bc/webdynpro/sap/saml2;/sap/saml2/sp/metadata;/sap/saml2;/sap/public/bc/themes;/sap/public/bc/ui2/logon;/sap/public/bc/ui2/services;/sap/vui/;/sap/bc/ping/;/sap/bc/lrep;/sap/bc/ui2/;/sap/bc/ui2/flp/;/sap/bc/ui5_ui5/;/sap/opu/odata/;/sap/bw/ina;/sap/opu/odata4/;/sap/resources/sap/ushell/;/sap/bc/webdynpro/sap/dba_cockpit;/sap/bc/webdynpro/sap/sec_diag_tool,SSL_ENCRYPT=1,SSL_IGNORE_HOST_MISMATCH=true (B) Activate webgui and wendyanpro service...