Digital signature : security toolkit error
Hello,
I have a problem in digital signature, when I use the function module SSF_VERSION,
I get an error message
SSFRFC V1.46.3 No security toolkit version information found.
1. I have tested the destination conncetion,Workingfine.
2. Security Product is SAPSECULIB.
Could some one help me in solving this issue?
Regards,
Prabhu Rajesh.
Hi,
It seems that your settings are all right but there is a problem in the way you are using SSF01. The problem is that neither the program and nor the FMs are documented. So its a hit and try. Here is how it goes:
1. Run SSF01
2. Select Signing radio button
3. Clear RFC Destination field
4. In the user profile section, input your SSF Profile ID that you have generated using trn. PSEMAINT. (If you do not know it, run PSEMAINT and press the Certificate List button. Copy contents of Own Certif. field. This is your SSF Profile ID).
5. In the SSF Profile field, enter SAPSYS.pse
6. Select the paths for your input and output files
7. Select SAPSECULIB in the Security Product (only AS) field
8. Run the program.
This will sign your data and output it to the file you mentioned.
To verify this file, choose Verify radio button, select the path of the output (signed) file in the input path section. Clear output path field. The system will verify the file.
To use Add Signature option, pass the same signed file as input file. Clear out output file path. Run the program. You will see the results.
Hope this helps.
Let me know about the outcome.
Regards
Message was edited by: Shehryar Khan
Message was edited by: Shehryar Khan
Similar Messages
-
Adobe Acrobat - Digital Signatures Security
Hi,
The business I am working for is making a push for online fill in forms for simplicity and less paperwork. At the moment they are using word docs with fill in sections that are terrible to deal with and still require you to print them out to sign it.
I have developed a PDF fill in form using Adobe LiveCycle that uses digital signatures. My only worry is how the digital signatures are created. It seems it is fairly easy to create a digital signature for someone else and use it without it being authenticated.
I have done some reading around and it seems to suggest that you are able to intergrate windows user accounts with adobe security somehow, but I am unable to find how to do this. I also don't have access to any of the windows security certificates so I will need to pass on information to the external IT company that manages it for them to do.
So, more specific question: How do I intergrate Adobe Acrobat signatures/security with windows user accounts so that only a specific list of users are able to sign forms.
Or if there is a better way of doing this let me know.
ThanksHi,
You don't need to do anything. If the user has loaded their digital ID into the Windows Certificate Store (or the Mac Keychain) then Acrobat (and when I say Acrobat I mean both Acrobat & Reader) will pick up the digital ID and make it available at signing time in the Sign Document dialog, "Sign as" drop-down menu.
Steve -
I am having trouble sending out a document for digital signatures for multiple people. I enter the signature fields and click on Distribute. It then allows me to choose the receiving parties. I click on <SEND> and it processes for a moment and then I receive the following two errors: "Failed to send" followed by "Form distribution is aborted". It was working for me earlier and isn't now. I am fairly new to Acrobat and especially Digital Signatures. What are some possible reasons I am getting this error?
I finally got the document to send out by unclicking the "Collect name & email from recipients to provide optimal tracking" button, however, the responses come in as anonymous, so it's not real helpful with tracking my responses. Plus, I don't know if I'll encounter problems with follow up. The normal tracking system allows me to resend a message to those who have not responded. Now I guess I would just resend the request to those I have determined have not signed. Still working through the bugs but I'll update what I know and figure out here. Perhaps I will come to a solid solution and give a better summary.
As of now, I am sending and receiving responses... but the recipients have to change the received file to save as it is coming to them as read-only. Seems like this should be a whole lot less complicated. -
Digital signature verification failed - Error RTCCTOOL
Hi guys !!!
I am running the report from the SDCCNN - RTCCTOOL, but I get the following error message:
1. Digital signature verification failed
Description - The verification of the recommendation content using digital signatures has failed. Therefore recommendations were suppressed.
Implementation - Consult SAP note 69455 if there is a known issue with content verification. If you do not find a solution open a customer message on SV-SMG-SDD.
When I Goto - Digital signatures Activate button digital content verification is disabled.
Then go to the transaction on the client STRUST 000 and I found the certificate: SSF SAP AGS Online Content View The certificate shows:
Owner: CN=SID SSF SAP AGS Online Content Verification, OU=I0020596183, OU=SAP Web AS, O=SAP Trust Community, C=DE
Certificate List: CN=Online Recommendations, CN=OR-C, CN=V01M, OU=AGS, O=SAP AG, C=DE
CN=Online Recommendations Upd, CN=OR-U, CN=V01M, OU=AGS, O=SAP AG, C=DE
Both certificates will expire on 01.01.2038.
According to the help and OSS note 69455 tell me again that I must create this certificate every year, but I see this current certificate, what is the error?
What is the process because I'm not clear and can not find another OSS note or the SDN forum to tell me what is wrong is happening.
Thanks guys for the help I can provide.
DesiréHi all.
I have the same problem and explore all possible solutions found in this discussion and others without satisfactory result.
Everything points that may be an inconsistency error external certificate which is in the DB. Anyone know how to fix this.
Greetings. -
The Application's Digital Signature has an error
I get this error when running ColdFusion MX 6.1
Name: coldfusion.applets.CFTreeApplet
Publisher: Macromedia
Certficate Details show certificate is goog through June 9,
2005
How can I avoid this error message when running this java
applet on our web server?
If I pick “Run”, it runs, but the next day when I
run it again, this message will popup again.
I can check the “Always trust content from this
publisher” and the problem goes away on that workstation.
There will be a lot of people using this applet and I
don’t want them to deal with this.roneb wrote:
> I get this error when running ColdFusion MX 6.1
> Name: coldfusion.applets.CFTreeApplet
> Publisher: Macromedia
> Certficate Details show certificate is goog through June
9, 2005
>
> How can I avoid this error message when running this
java applet on our web
> server?
http://kb.adobe.com/selfservice/viewContent.do?externalId=b9c2d61c
Jochem
Jochem van Dieten
Adobe Community Expert for ColdFusion -
WS-Security: Error while valdiating the digital signature
Hi
We are getting an exception (in the J2EE logs) when an external party calls our SOAP webservice with WS-Security. We are using their public certificate to verify their signature (self signed certificate). Their SOAP Security header looks correct - below is the error in the J2EE logs.
VerifyException. Key: 0200
[EXCEPTION]
com.sap.security.core.policy.exceptions.VerifyException: [_policy0200] Error while valdiating the digital signature. The error was java.lang.NullPointerException null.
at com.sap.security.core.securitypolicy.assertions.IntegrityAssertion.verify(IntegrityAssertion.java:376)
at com.sap.security.core.policy.expressions.AllExpression.verify(AllExpression.java:149)
at com.sap.security.core.policy.WSPolicy.verify(WSPolicy.java:43)
Any help would be greatly appreciated.What do you mean by "external party" and "self signed certificate" in this context?
A 3rd party vendor or customer is giving you their server's "self signed" certificate to use publicly?
Apart from this being more prone to admin errors than server certificates already are, I hope that they trust you...
Cheers,
Julius -
Digital signatures and view document througt URL
Hello together,
We use status document and digital signatures workflow and we canu2019t use URL link to documents which have been approved. In browseru2019s window I see digital signatures information and error :u201DHTTP 404 the web page cannot be foundu201D.
In transaction SOLAR01, SOLAR02 when, I display approved document, at first I see the windows with digital signatures information and then, after push enter - required document.
If document in status u201Cin progressu201D we donu2019t have problem.
Could you help me to resolve this problem or disable windows with signatures information?Hello Francesco,
I want to generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
Digital Signatures and Document Encryption api
so my question is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
Kind Regards,
Kubra fatima. -
Digital Signature expiry warning in Portal to backend access
Hi All,
we are facing below issue in portel to access workflow in SRM system
The application's digital signature has an error. Do you wan to run the application ?"
and/or
Plz advice how to correct the issue.
Tks,
ThiruHi,
Is SSO configured fine between portal and backend? Are you able to open SAPGUI through portal? ie., in System Administration->Support->SAP Application->SAP Transaction-> <System Alias>
Also check if the portal certificate is valid under System Administration-> Keystore administration.
Rgds,
Soujanya -
Digital Signature- SSF error: Unable to find external security product
Dear Friends,
After I enter my User ID and Password, this displays this error !!!
SSF error: Unable to find external security product
Would really appreciate your help.
Thanks,
SriHi Sri,
Would you pls check the installation of the security toolkit on your application server?
Which security product do you use?
The standard security product is SAPSECULIB (library sapsecu.dll).
Please check the SSF initialization messages which are contained in each dev_w## developer trace (transaction ST11). When successful, the initializaion messages look like this:
N =================================================
N === SSF INITIALIZATION:
N ===...SSF Security Toolkit name SAPSECULIB .
N ===...SSF trace level is 0 .
N ===...SSF library is /usr/sap/<SID>/SYS/exe/run/sapsecu.dll .
N ===...SSF hash algorithm is SHA1 .
N ===...SSF symmetric encryption algorithm is DES-CBC .
N ===...sucessfully completed.
N =================================================
General information for SAPSECULIB can be found in SAP note 354819.
Best regards,
Christoph
P.S.: Please reward points for useful information. -
Securing pdf document with digital signatures
I have a pdf document that has digital signatures. We need to secure it so no one who has input their digital signature can go back in later, delete their signature and then 're-sign' it. But I get an error message telling me I can't secure the document because it has digital signatures.
Is there any way to secure the document so only I can secure/unsecure it after digital signatures have been input?
Thanks!You don't need to use document encryption to lock the PDF file. You can set the signature field properties to mark all fields as read-only at signature creation. Try this:
Select the Tools > Toolbars > Advanced Editing menu item
Click the Select Object tool on the Advanced editing toolbar (it's the arrow icon)
Right mouse click on the signature field and select Properties from the pop-up menu
Select the Signed tab on the Digital Signature Properties dialog
Select the Mark as read-only radio button and All fields from the corresponding drop-down list
Click the Close button on the Digital Signature Properties dialog
Select the File > Save As menu item and save a copy (in other words, leave the original copy as is in case you find you locked yourself out of the document, that way you'll have a fall-back recovery option)
Good luck,
Steve -
Error while configuring digital signatures.
Hi,
I am running the program DSIG_BOOKING_EX to configure the digital signatures. I get the error :
SSF error: Unable to find external security product.
When i execute the program SSF02 i get a success message.
Regards,
SrideviIs the Issue resolved,....
I couldn't get any info.....
Please help me if it is resolved -
Hi All,
We are implementing digital signature for originals in DIR using secure,store and foward approach. The installation is pretty much ok,. However, we are getting SSF_API_NO_SECTK error. What could be the possible reason? We are using SAPSECULIB as the security provider,The error indicates that the security product is not installed correctly. Make sure that SSF_LIBRARY_PATH (or ssf/ssfapi_lib ) is set correctly.Set the trace level to 1 and check the contents of the trace file dev_ssf.
Regards,
Pradeepkumar Haragoldavar -
Smpatch PatchPro failed: ERROR: Failed to validate the digital signature
Hello,
I 'm trying to update solaris 9 (5.9 Generic_118558-03 sun4u sparc) using smpatch.
I get the following error from all - to be installed - patches!!
Downloading the required patches for machine "xxx". Please wait...
Error: PatchPro failed: ERROR: Failed to validate the digital signature(s).
/var/sadm/spool/112941-10.jar.tmp cannot be validated.
I have read that you need to install patchid 112945-44 so i have installed it with no solution.
I have cleared the /var/tmp/patches/ directory:
# rm /var/tmp/patches/*.jar.tmp
# rm /var/sadm/spool/*.jar
I would be grateful if you reply me with any help.
Thanks,I thought this solution:
To download signed patch 112945-45 and:
# mv 112945-45.jar /var/sadm/spool/
# smpatch add -i 112945-45
On machine ""xxx"...
Installing patch 112945-45 ...
Error: PatchPro failed: Received a Manipulable event.
Error: PatchPro failed: Received a Manipulable event.
Error: PatchPro failed: ALERT: Failed to install a patch. 112945-45
/var/sadm/spool/patchpro_dnld_2007.06.14@12:22:38:EEST.txt has been moved to /var/sadm/spool/patchproSequester/patchpro_dnld_2007.06.14@12:22:38:EEST.txt
Problem Summary:
Inside /var/log/messages :
Jun 14 12:44:05 polymnia root: [ID 702911 user.error] Thu Jun 14 12:44:05 EEST 2007(ERROR) => Thread[Thread-18,5,main] <=Problem installing patches: Received a Manipulable event.
Jun 14 12:44:05 polymnia root: [ID 702911 user.alert] Thu Jun 14 12:44:05 EEST 2007(ALERT) => com.sun.patchpro.manipulators.SunOSSunPatchInstaller@73a5d3 <=112945-45 validation failed.
Jun 14 12:44:05 polymnia root: [ID 702911 user.crit] Thu Jun 14 12:44:05 EEST 2007(CRITICAL) => com.sun.patchpro.manipulators.SunOSSunPatchInstaller@73a5d3 <=com.sun.patchpro.security.SignatureValidationException: ERROR: Failed to validate the digital signature(s) for:
Jun 14 12:44:05 polymnia at com.sun.patchpro.manipulators.Installer.extractPatch(Installer.java:314)
Jun 14 12:44:05 polymnia at com.sun.patchpro.manipulators.SunOSSunPatchInstaller.install(SunOSSunPatchInstaller.java:46)
Jun 14 12:44:05 polymnia at com.sun.patchpro.manipulators.Installer.run(Installer.java:134)
Jun 14 12:44:05 polymnia at java.lang.Thread.run(Thread.java:536)
Jun 14 12:44:06 polymnia root: [ID 702911 user.error] Thu Jun 14 12:44:05 EEST 2007(ERROR) => Thread[Thread-18,5,main] <=Problem installing patches: Received a Manipulable event.
Jun 14 12:44:06 polymnia root: [ID 702911 user.alert] Thu Jun 14 12:44:06 EEST 2007(ALERT) => com.sun.patchpro.util.PatchBundleInstaller@9360e7 <=Failed to install a patch. 112945-45
Jun 14 12:44:06 polymnia patchadd utility failed. Reason code :0
Jun 14 12:44:06 polymnia root: [ID 702911 user.error] Thu Jun 14 12:44:06 EEST 2007(ERROR) => Thread[Thread-18,5,main] <=Problem installing patches: ALERT: Failed to install a patch. 112945-45
Also i have just seen that messages complains for the digital cert when i am tryring to download the patch using smpach
Jun 14 12:49:20 polymnia root: [ID 702911 user.error] Thu Jun 14 12:49:20 EEST 2007(ERROR) => com.sun.patchpro.server.ServerPatchServiceProvider@92425a <=com.sun.patchpro.security.NotSignedByKnownCertificateException: 112945-45/prepatch CN=Enterprise Services Patch Management, O=Sun Microsystems Inc
Jun 14 12:49:20 polymnia at com.sun.patchpro.security.SignatureValidationUtil.validateJarFile(SignatureValidationUtil.java:232)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.ServerPatchServiceProvider.validatePatchBundle(ServerPatchServiceProvider.java:1837)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.ServerPatchServiceProvider.requestDownload(ServerPatchServiceProvider.java:1437)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.ServerPatchServiceProvider.performDownloadPatches(ServerPatchServiceProvider.java:739)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.ServerPatchServiceProvider.downloadPatches(ServerPatchServiceProvider.java:585)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.PatchServerProxy.downloadPatches(PatchServerProxy.java:130)
Jun 14 12:49:20 polymnia at com.sun.patchpro.server.GroupPatchDownloader.downloadPatches(GroupPatchDownload
Jun 14 12:49:20 polymnia root: [ID 702911 user.error] Thu Jun 14 12:49:20 EEST 2007(ERROR) => com.sun.patchpro.server.ServerPatchServiceProvider@92425a <=Failed to validate the digital signature(s). for: /var/sadm/spool/112945-45.jar.tmp: 112945-45/prepatch CN=Enterprise Services Patch Management, O=Sun Microsystems Inc
Jun 14 12:49:20 polymnia root: [ID 702911 user.error] Thu Jun 14 12:49:20 EEST 2007(ERROR) => Thread[Thread-18,5,main] <=Error: downloading patches.ERROR: Failed to validate the digital signature(s).
The following patches were not downloaded. Contact your Sun Microsystems support provider for more information.
112945-45
Message was edited by:
sapila -
Digital signature error- SSF Error
Hi,
I am trying to do a digital signature using signature method " System signature with Authorisation by User ID and Password" but facing an error after I enter my password during the digital signature.
Error is "SSF error: Unknown Error"
Message No: IS014
Please let me know what needs to be done to resolve this error.
Setting completed are QM Material Authorisation group cretaed for Result Recording and Usage Decision Digital Signature.
Thanks
VineethCheck and if necessary maintain the standard settings. To do this, execute the following activities in the IMG under SAP Web Application Server -> System Administration -> Digital Signature:
Define application-dependent parameters for SSF functions
Define security settings for the system
Also In IMG check settings under >> SAP Netweaver--> Application Server > System Administration -> Maintain the Public Key information for the system> Maintaining the system security information. -
Adobe Acrobat and Reader digital signature verification error logs
Can you help me how enable and where Acrobat 9.2 and Reader 9.2.3 error logs to analyse digital signature certificate revacation (CRL, OCSP)?
Hi Gatis,
Check out the Security and Digital Signature Admin Guide athttp://learn.adobe.com/wiki/download/attachments/52658564/acrobat_reader_security_9x.pdf?v ersion=1
http://learn.adobe.com/wiki/download/attachments/52658564/acrobat_reader_security_9x.pdf?v ersion=1
Once you get the file open look at section 5.3.4.4
The folder path has to exist, but Acrobat will create the file if it's missing. For example, if you want to save the file to C:\LogFile\digSigLog.txt the folder LogFile would have to exist on the C drive, but the log file itself will get created if it's not there already.
When you type in the file path and name in the Edit Binary Value dialog in regedit, make sure you null terminate the string by typing a zero at the end of the hex data on the left side of the dialog. It will look like a dot on the right side, but it's not really a dot (a dot is 2E in hex).
Steve
Maybe you are looking for
-
How do I link to an Adobe Connect webinar recording?
What is the correct procedure for linking to a recorded Adobe Connect webinar from within Captivate 6? We have a URL to the webinar we did but it does not work using the video link tools in Captivate 6.
-
How can I copy the QRCode from the addressbar to the clipboard?
I want to paste it into a graphics program or save it to an image file. (I know I can make a screenshot with the printscreen key; but I would like to get just the code, and not having to remove everything else from the image by hand first.)
-
I have a 4 gen Time Caps. and a 2nd Gen Airport Extreme I would like to extend my TC network to use the Extreme for the purpose of having internet available to my TV box wired. Is this possible and how to I get them to work together? How can I get m
-
JMenuItems drawn over by JPanel. How to fix?
Hi. When i add my menu to the frame the actual menu bar displays fine. but when you open the menu the items are drawn over by my jpanel. I tried a way to work around it by adding the menu to the jpanel. when i did this the menu worked and displayed f
-
How do i set the spalsh image when i export movie?
I am exporting a movie that will be posted on vimeo. when i upload it, the default "splash image" that appears is some random blur. I would like a specific shot from my movie be the "splash image" that appears as the preview for the movie. How do i s