Steps to import Private Key (PPK) in SAP PI/PO for key based authentication
2023-11-15 01:43:38 Author: blogs.sap.com(查看原文) 阅读量:19 收藏

Steps to import Private Key (PPK) in SAP PI/PO for key based authentication.

Introduction: This document describes that how to connect SAP PI/PO to any SFTP server, using private key authentication.

 In this process, we will generate Private key and Public Key

Private key will be generated from Puttygen in PPK format, which we have to convert in P12 format   because SAP PI/PO will only accept P12 Private key format.

Public Key will also be generated from Puttygen and it will be shared with SFTP partner,They will import this public key for an user of SFTP server.

In SAP PI/PO’s communication channel, we will user SFTP user and keystore with Key entry instead of password SFTP user.

Step by step process:

  1. Open Puttygen tool and click on generate to generate Private and Public key

  1. Save Private and Public key.

Enter passphrase and save private key as Private.ppk and public key as Public.pub.

Give Public.pub key to partner to import into SFTP server for a SFTP user which will be configured in SFTP communication channel of SAP PI/PO

Remember the passphrase to use in further steps and don’t change it for converted key as well so that it will be easy to remember

  1. Export open SSH file and save it with .pem file.
  2. Now we have PrivatePEM.pem file which has to be converted in to P12 file then only it can be imported into SAP PI or PO
  1. Download openssl (win32) from https://slproweb.com/products/Win32OpenSSL.html and Install on your system, if already installed then Generate x509 key pem key using openssl tool
     Command ->openssl  req -new -x509 -days 3650 -key PrivatePEM.pem -out x509_Private.pem

   Enter the passphrase and then it will ask to enter some parameter, only country is mandatory parameter.

      6. Now using x509 and pem key , generate p12 key

     Command-> openssl pkcs12 -export -in x509_Private.pem -inkey PrivatePEM.pem -out PrivateP12.p12

   Enter pem passphrase and set p12 password, which is required while importing it into SAP PO

    7. Now go to SAP PO using http(s)://<host>:<port>/nwa and create a key store view

     8. Import key Privatep12.p12 as an entry.

   9. Configure Private key view and entry in Channel with SFTP user (Public key must be imported        for this user in SFTP server)

Conclusion: This document explained how to you key based authentication in SAP PI/PO.


文章来源: https://blogs.sap.com/2023/11/14/steps-to-import-private-key-ppk-in-sap-pi-po-for-key-based-authentication/
如有侵权请联系:admin#unsafe.sh