Solution : https://service.sap.com/sap/support/notes/1718944 (SAP Service marketplace login required)
Summary :
To ensure secure external SQL communication via SSL with SAP HANA, users must configure their Personal Security Environment (PSE). This involves generating a PSE and PKCS#10 certification using the sapgenpse tool, importing the CA response, and configuring the trust store PSE. For SSL setup, it's advisable to use in-database certificates post-SPS10 or maintain file-system-based PSEs for earlier versions. Distributed environments require individual or collective certificates per host. PKCS#10 requests can be signed using OpenSSL. Ensure the hostname matches the server's certificate for SSL validity.
Key words :
customer component han-db-sec sap hana security & user management priority recommendations / additional info category installation information validity software componentfrom rel, /usr/sap/<sid>/sys/global/security/lib 3, 397175 sap cryptographic software - export control 455033 sapcryptolib versions, fixes 397175 sap cryptographic software - export control, req -sha1 -extensions usr_cert -ca ca, sap hana extended application services, sap notes 1523337 sap hana database 1, successfully installed sap hana database, central note 1523337 sap hana database 1, fixes 2300943 enabling jdbc ssl encryption
Related Notes :
| 2175664 | |
| 1523337 | SAP In-Memory Database 1.0: Central Note |
| 1514967 | SAP HANA 1.0: Central Note |
| 455033 | |
| 397175 | |
| 2300943 | Enabling JDBC SSL encryption for SAP HANA extended application services, advanced model |