Solution : https://service.sap.com/sap/support/notes/572035 (SAP Service marketplace login required)
Summary :
SAP applications using security certificates, such as SAP logon tickets, might fail if the certificate expires, even though configurations remain unchanged. This problem, attributable to SAP_CA or other issuers' certificates having typically one-year validity, causes logon failures upon validity checks. SAP note 499386 offers guidance on extending certificate validity. Additionally, two new reports, SSFALRTEXP and SSF_ALERT_CERTEXPIRE, alert users about impending certificate expirations via system log messages and CCMS alerts, starting 30 days before expiry. The Support Package replaces SSFALRTEXP with SSF_ALERT_CERTEXPIRE for operational flexibility.
Key words :
ccms alert monitors, background list output, daily background job, system log messages, error message similar, warning begins 30 days, system rejects logon, logon tickets received, sap logon ticket, security certificates fails
Related Notes :
1031991 | SSF_ALERT_CERTEXPIRE runtime error GETWA_NOT_ASSIGNED_RANGE |
912229 | |
648222 | AutoABAP SSFALRTEXP starts before SSF_ALERT_CERTEXPIRE |
588297 | Warnings about security certificates in the system log |
499386 | Invalid logon ticket for CA certificates |
389186 | Services rendered by the SAP Trust Center Service |
177895 | Refitting the mySAP.com Single Sign-On capability |