FAQ-Datalab

Aggiungi Articolo

Welcome to our Support Center
< All Topics
Print

Certificato B1IF app mobile IOS/Android

Posted
Updated
Bydatalab

COPIARE “C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator\openssl”
in C:\OpenSSL-Win64

First, modify the req parameters. Add an alt_names section to openssl.cnf with the names you want to use.

[ alt_names ]

DNS.1 = example.com
DNS.2 = www.example.com
DNS.3 = mail.example.com
DNS.4 = ftp.example.com
IP.1 = 151.141.141.141
IP.2 = 8.8.8.8
IP.3 = …..

Next, add the following to the existing [ v3_ca ] section. Search for the exact string [ v3_ca ]:

subjectAltName = @alt_names
You might change keyUsage to the following under [ v3_ca ]:

keyUsage = digitalSignature, keyEncipherment

Second, modify the signing parameters. Find this line under the CA_default section:

#Extension copying option: use with caution.

#copy_extensions = copy

And change it to:

#Extension copying option: use with caution.

copy_extensions = copy

This ensures the SANs are copied into the certificate. The other ways to copy the DNS names are broken.

——— USARE I COMANI DESCRITTI NELLA NOTA DI SAP https://launchpad.support.sap.com/#/notes/3104120 —– LA SEGUENTE SOLO COME RIFERIMENTO/INTEGRAZIONE———-

Third, generate your self-signed certificate:

$ openssl genrsa -out private.key 3072
$ openssl req -new -x509 -key private.key -sha256 -out certificate.pem -days 730

USARE IL SEGUENTE COMANDO:

set OPENSSL_CONF=C:\OpenSSL-Win64\bin\openssl.cfg B1iHome=C:\Program Files (x86)\SAP\SAP Business One Integration\IntegrationServer\Tomcat\webapps\B1iXcellerator

openssl req -x509 -new -key ServerKey.key -sha256 -days 825 -out myCA.cer 
||| OMETTERE "-subj /C…." RISPETTO ALLE NOTE SAP
openssl pkcs12 -export -out keystore.p12 -inkey ServerKey.key -in myCA.cer copy /Y keystore.p12 "%B1iHome%"

cd C:\Program Files (x86)\SAP\SAP Business One Integration\sapjre_64\bin

keytool -delete -alias tomcat -keystore "%B1iHome%.keystore" -storepass sapB1iP<br>keytool -importkeystore -srckeystore "%B1iHome%\keystore.p12" -srcstoretype PKCS12 -destkeystore "%B1iHome%.keystore" -deststoretype JKS -deststorepass sapB1iP -srcstorepass sapB1iP<br>keytool -changealias -alias 1 -destalias tomcat -keystore "%B1iHome%.keystore" -storepass sapB1iP

Restart SAP Business One Integration Service from Services window
Install your own root CA certificate (myCA.cer file) on mobile devices

Lascia un commento

Table of Contents