Hi Experts,
We are configuring SSL between SAP PI7.1 and third party application based on tomcat. Both are in same domain.
The communication between SAP PI and tomcat is happening thorough communication channel
My query is
- Can we use Self signed certificate exchange between both the application?
- We tried with self signed certificate we have imported SSL server certificate from STRUST PI in to tomcat application and also imported public key of view from NWA and tomcat certificate to STRUST and NWA.
- Using self sign certificate the tomcat application is giving error as
senderChannel '4bb4bae47bfa34db85ce289daae33f4d': Catching exception calling messaging system; nested exception is:
com.sap.engine.interfaces.messaging.api.exception.MessagingException: Error transmitting the message over HTTP. Reason: java.lang.RuntimeException: Error while silently connecting: org.w3c.www.protocol.http.HttpException: Peer certificate rejected by ChainVerifier"
- When we user SAP signed public key (valid for 8 weeks only) and SAP server CA then scenario is working fine
Can you please suggest the method by which we should go either self signed or CA certificate?
Also which certificate should we import in tomcat whether it is from STRUST or NWA?
Thanks in advance
Regards,
Aditya