Importing SAP IBP SSL Certificate to TA Trust Store

When the SSL certificates for your SAP IBP instance are renewed, SAP might notify you to import an intermediate CA or a CA certificate. SAP should provide you with the instructions to download the certificate(s) in the notification. Once the certificate is downloaded, follow the instructions in the Import Target Server Certificates into a Java Keystore section to import the certificate to the TA trust store.

Import Target Server Certificates into a Java Keystore

Note: It is assumed that a JRE or JDK is added to your system PATH.

Note: Use a Windows environment to performt this procedure .

To import certificates into a Java keystore:

  1. Open the command prompt.

  2. Change to the directory where certificates are stored. For example, if the certificates are stored in the C:\IBP_Certs directory, enter the command from your C drive:

    cd \IBP_Certs

  3. Use the Java keytool utility to import a certificate. This syntax is used:

    keytool -import -file <certificate-filename> -alias <server-name> -keystore Ibp.keystore

    Example: C:\IBP_Certs>keytool -import -file servername.cer -alias servername -keystore Ibp.keystore

  4. Enter a password at the prompt, when prompted to create a password for the keystore. The keystore utility displays the certificate information.

  5. Enter yes and press Enter at the Trust this certificate [no] prompt. The certificate is imported into the Ibp.keystore and the message “Certificate was added to keystore” is displayed.

  6. Repeat this procedure for each target server.

  7. Navigate to the folder where the adapter is installed and create a new directory called config:

    <install dir>\master\services\{5139E317-9A36-46E5-9272-2481B7DFA4E1}

  8. Create a text file called service.props if the file does not already exist.

  9. Open the service.props file and add this line:

    Keystore=C:\\IBP_Certs\\Ibp.keystore

    Note: Use escaped backslashes as above for Windows directories.

See Configuring service.props for information about general and adapter-specific properties that can be set to control things like logging and connection properties.