Error enabling SSL

Similar Messages

• Error enable SSL ??

  I enable SSL in my portal
  But looking source of HTML, some URLS remain as HTTP.
  How can i change this to HTTPS ???
  <HTML dir="LTR" lang="pt">
  <HEAD>
  <TITLE>login_app</TITLE>
  <LINK REL=Stylesheet TYPE="text/css" HREF="http://www.mysite.com/pls/sigfe/PMINFIN.wwv_setting.render_css?p_lang_type=NOBIDI&p_subscriberid=1&p_styleid=1&p_siteid=55&p_rctx=P">
  <base href="http://www.mysite.com/pls/sigfe/">
  <META name="title" content="login_app">
  <META name="description" content="login_app">
  <META name="keywords" content="">
  <META name="author" content="COSTA">
  </HEAD>

  What steps did you follow to enable SSL? It looks like you missed a few steps or you're portal built URLs would rewrite appropriately.

• Strange error when enabling SSL on Oracle HTTP Server

  Hi,
  In our production environment Oracle HTTP Server starts fine when SSL is disabled.
  We've enabled SSL in our dev/uat environments using instructions from the Oracle Documentation. It was pretty straightforward.
  When i tried to do the same in our production environment, the Oracle HTTP Server wouldnt restart. I've had a look around the forums and havent seen anyone report the same error we are seeing in the logfile.
  $ORACE_HOME/opmn/bin/opmnctl verbose startproc ias-component=HTTP_Server
  HTTP/1.1 200 OK
  Content-Length: 0
  Content-Type: text/html
  Response: Ping succeeded.
  opmnctl: starting opmn managed processes...
  HTTP/1.1 204 No Content
  Content-Length: 718
  Content-Type: text/html
  Response: 0 of 1 processes started.
  <?xml version='1.0' encoding='ISO-8859-1'?>
  <response>
  <opmn id="ubrf1200:6201" http-status="204" http-response="0 of 1 processes started.">
  <ias-instance id="IAS-X-ubrf1200.6299">
  <ias-component id="HTTP_Server">
  <process-type id="HTTP_Server">
  <process-set id="HTTP_Server">
  <process id="350814320" pid="29207" status="Stopped" index="1" log="$ORACE_HOME/opmn/logs/HTTP_Server~1" operation="request" result="failure">
  <msg code="-21" text="failed to start a managed process after the maximum retry limit">
  </msg>
  </process>
  </process-set>
  </process-type>
  </ias-component>
  </ias-instance>
  </opmn>
  </response>
  The HTTP_Server~1 log contains the below error:
  09/08/16 13:24:40 Start process
  $ORACLE_HOME/Apache/Apache/bin/apachectl startssl: execing httpd
  VirtualHost configuration:
  127.0.0.1:7201 127.0.0.1 ($ORACLE_HOME/Apache/Apache/conf/dms.conf:21)
  I've compared dms.conf from all 3 of dev/uat/prod
  diff dev-dms.conf dms.conf
  15c15
  < Redirect /dms0/AggreSpy http://127.0.0.1:7200/dmsoc4j/AggreSpy
  Redirect /dms0/AggreSpy http://127.0.0.1:7201/dmsoc4j/AggreSpy
  18,19c18,19
  < Listen 127.0.0.1:7200
  < OpmnHostPort http://127.0.0.1:7200
  Listen 127.0.0.1:7201
  OpmnHostPort http://127.0.0.1:7201
  21c21
  < <VirtualHost 127.0.0.1:7200>
  <VirtualHost 127.0.0.1:7201>30c30
  No Apache logs are being written to when we try starting the Oracle HTTP Server with ssl enabled.
  Has anyone experienced this problem before? Any idea how we can get this working?
  Thanks,
  Stephen

  Noticed that when it starts with apachectl startssl, it doesnt like any <VirtualHost directive
  The line in the dms.conf file that it errors out at is :
  <VirtualHost 127.0.0.1:7201>
  When i added a redirect the httpd.conf file, it errors out at the <VirtualHost line also
  Any idea why the Oracle HTTP Server wouldnt like <VirtualHost directives when running startssl?

• Error messagCannot connect Secure connection needed  enable ssl 3.0 and slt

  Error message "We cannot complete your itunes request. A secure internet connection cannot be determined. Be sure to enable ssl 3.0 or slt 1.0 in the internet options control panel. I did NOTHING different to my computer. One day I could purchase songs from itunes and 4 days later I couldn't. I've checked all things that discussion boards and technical support have suggested and nothing works. Enabled ssl 3.0 and slt 1.0, turned off firewall, authorized my computer, blah, blah...
  Not only can't I purchase songs but when I plug in my ipod to shuffle or change playlists, the error messages tell me I will lose many of my songs if I don't authorize my account. Then, back to the problem of it looping me through error messages.

  You don't really need to do anything, as the handshake will fall back to SSLv3 if either end can't speak TLS.
  However if you want to enforce SSLv3 and nothing else (e.g. SSLv2) you could remove TLSv1 from the enabledProtocols of the SSLSocket (or SSLServerSocket if you're writing a server). You should also remove SSLv2 at the same time IMHO as it is insecure.
  Alternatively, if you're using SSLContexts, do SSLContext.getInstance("SSLv3") and get your SSLSocketFactory from the result; see http://java.sun.com/j2se/1.4.1/docs/guide/security/jsse/JSSERefGuide.html#AppA.
  EJP

• Enabling SSL for Oracle Enterprise Manager 10.1.3.1 is Failing!!!

  Hi All,
  I have followed the steps described in
  http://download-uk.oracle.com/docs/cd/B31017_01//core.1013/b28940/em_app.htm#BABCEEAH.
  However when I am trying to start the application server using 'opmnctl startall' the server is not starting and some timeout is getting generated in the log file.
  Is it that enabling SSL will only make the EM console secured? Then how to enable SSL for other soa components like - BPEL,ESB,OWSM? Are there any documentations available?
  Also please let me know how can I enable SSL for Oracle Application server console?
  Please any advice will be appreciated. I am in the middle of a project delivery.
  Thanks

  Hi,
  Let me first highlight the installation that I have done. I have installed SOA components with 'basic installation' mode.
  The log file under <ORACLE_SOA_HOME>/opmn/config/ has generated the following stack:-
  08/07/25 11:03:34 Start process
  08/07/25 11:03:37 WARNING: XMLApplicationServerConfig.overwriteSiteConfigPort Port assignment is ignored: web-site not found in the server OC4JServiceInfo id: default-web-site protocol: http hostname: null port: 8890 description: null
  08/07/25 11:03:37 WARNING: XMLApplicationServerConfig.overwriteSiteConfigPort Port assignment is ignored: web-site not found in the server OC4JServiceInfo id: secure-web-site protocol: https hostname: null port: 1156 description: null
  08/07/25 11:03:47 log4j:WARN No appenders could be found for logger (wsif).
  08/07/25 11:03:47 log4j:WARN Please initialize the log4j system properly.
  08/07/25 11:03:53 WARNING: OC4J Service: ascontrol-web-site with protocol: https and port: 1156 was not declared in opmn.xml
  08/07/25 11:03:53 Oracle Containers for J2EE 10g (10.1.3.1.0) initialized
  08/07/25 11:03:53 WARNING: OC4J will not send ONS ProcReadyPort messages to opmn for service: OC4JServiceInfo id: default-web-site protocol: http hostname: null port: 8890 description: null
  08/07/25 11:03:53 default-web-site hostname was null
  08/07/25 11:03:53 WARNING: OC4J will not send ONS ProcReadyPort messages to opmn for service: OC4JServiceInfo id: secure-web-site protocol: https hostname: null port: 1156 description: null
  08/07/25 11:03:53 secure-web-site hostname was null
  On the command prompt I am getting the following error:-
  opmn id=CALTP8BB32:6203
  0 of 1 processes started.
  ias-instance id=home.CALTP8BB32.cts.com
  +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  ias-component/process-type/process-set:
  default_group/home/default_group/
  Error
  --> Process (index=1,uid=301928631,pid=2944)
  failed to start a managed process after the maximum retry limit
  Log:
  D:\product\SOASuite\opmn\logs\\default_group~home~default_group~1.log
  --------------------------------------------------------------+---------
  ias-component | process-type | pid | status
  --------------------------------------------------------------+---------
  OC4JGroup:default_group | OC4J:home | N/A | Down
  ASG | ASG | N/A | Down
  Please let me know where am I going wrong?
  Thanks,
  Mandrita.

• Issue with one of the Managed server while enabling SSL.__ Issue Resovled

  Weblogic version:wls 8.1sp6
  SSL: internal
  Environment:
  1 AdminServer and 2 Managed servers. Admin and M1 are on same host. M2 is on different host. We have enabled SSL on M1 & M2 only. Configuration of M1 & M2 are identical. After restarting the servers M1 has no issue with SSL but M2 throws javax.net.ssl.SSLKeyException as shown below,
  <Aug 4, 2008 12:29:01 PM BST> <Notice> <WebLogicServer> <BEA-000360> <Server started in RUNNING mode>
  <Aug 4, 2008 12:29:02 PM BST> <Info> <WebLogicServer> <BEA-000213> <Adding address: 10.96.201.249 to licensed client list>
  <Aug 4, 2008 12:29:09 PM BST> <Notice> <Security> <BEA-090171> <Loading the identity certificate stored under the alias wpy-euq02 from the JKS keystore file /home/lonwpyq/ssl_cert/WPY_PAYROLLSOLUTIONSKeystore.jks.>
  <Aug 4, 2008 12:29:09 PM BST> <Notice> <Security> <BEA-090170> <Loading the private key stored under the alias wpy-euq02 from the JKS keystore file /home/lonwpyq/ssl_cert/WPY_PAYROLLSOLUTIONSKeystore.jks.>
  <Aug 4, 2008 12:29:09 PM BST> <Warning> <Security> <BEA-090773> <The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.>
  <Aug 4, 2008 12:29:09 PM BST> <Warning> <Security> <BEA-090773> <The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.>
  <Aug 4, 2008 12:29:09 PM BST> <Warning> <Security> <BEA-090773> <The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.>
  <Aug 4, 2008 12:29:09 PM BST> <Error> <Cluster> <BEA-000141> <TCP/IP socket failure occurred while fetching statedump over HTTP from -6401422690190304510S:lonlxwebhost99:[16544,16544,16042,16042,16544,16042,-1,0,0]:etg:lonwpyq_16543_1.
  javax.net.ssl.SSLKeyException: [Security:090773]The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireException(Unknown Source)
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireAlertSent(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source)
  at com.certicom.tls.record.handshake.ClientStateReceivedServerHello.handle(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source)
  at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessages(Unknown Source)
  at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source)
  at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source)
  at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source)
  at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source)
  at com.certicom.tls.record.ReadHandler.readUntilHandshakeComplete(Unknown Source)
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.completeHandshake(Unknown Source)
  at com.certicom.tls.record.WriteHandler.write(Unknown Source)
  at com.certicom.io.OutputSSLIOStreamWrapper.write(Unknown Source)
  at java.io.BufferedOutputStream.flushBuffer(BufferedOutputStream.java:66)
  at java.io.BufferedOutputStream.flush(BufferedOutputStream.java:124)
  at java.io.FilterOutputStream.flush(FilterOutputStream.java:123)
  at weblogic.net.http.HttpURLConnection.writeRequests(HttpURLConnection.java:122)
  at weblogic.net.http.HttpURLConnection.getInputStream(HttpURLConnection.java:322)
  at weblogic.cluster.HTTPExecuteRequest.connect(HTTPExecuteRequest.java:73)
  at weblogic.cluster.HTTPExecuteRequest.execute(HTTPExecuteRequest.java:121)
  at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:224)
  at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:183)>
  Please let me know where I am going wrong. Thnx in advance
  Message was edited by:
  Shashi_sr

  Solution given by BEA Engineer:
  <Warning> <Security> <BEA-090773> <The certificate chain received from lonlxwebhost99.lehman.com - 10.71.129.99 contained a V3 certificate which key usage constraints forbid its key use by the key agreement algorithm.>
  The reason for this was
  The CA Certificate was missing a required bit (according to RFC 3280).
  keyEncipherment bit is not in the KeyUsage and KeyUsage is marked as critical.
  As per RFC:
  The keyEncipherment bit is asserted when the subject public key is
  used for key transport. For example, when an RSA key is to be
  used for key management, then this bit is set.
  According to RFC3280, when the key will be used to encrypt other keys that are send over the wire ("key transport") the keyEncipherment bit of the KeyUsage extension must be set. If the KeyUsage extension is critical, the SSL certificate validation will check that the key can be used in the key agreement. That is, that the key can be used to encrypt the symmetric public key.
  Your KeyUsage only contains the following bits:
  [4]: ObjectId: 2.5.29.15 Criticality=true KeyUsage [
  DigitalSignature
  Key_CertSign
  Crl_Sign
  Since it is marked Critical, it MUST have the keyEncipherment bit.
  Otherwise, it should not be marked as Critical.
  So the three solutions that should work are
  1) Remove keyUsage
  2) Don't mark keyUsage as critical
  3) If keyUsage is critical, make sure keyEncipherment bit is set.

• Error using SSL on Receiver Soap Adapter

  Hi there,
  I'm having some problems on connecting to a third-party application running a webservice (meaning, through Receiver Soap Adapter). The third-party appl. demands us to use a SSL connection (its url starts with https), with user authentication through certificate.
  We've installed SAP Java Cryptographic toolkit and have a proper certificate configured on the KeyStorage entry, on Visual Administrator.
  On Soap Adapter, I've configured HTTP Transport Protocol and have selected the "configure certificate authentication" option and selected the certificate, filled the mandatory fields (target URL and soap action) but I keep getting this error message on SXMB_MONI: "com.sap.aii.af.ra.ms.api.DeliveryException: unable to create a socket".
  Is there anything else than installing SAP Java Cryptographic Toolkit to enable SSL on Soap Adapter? Is there another configurations that need to be done?
  Thanks in advance,
  Henrique.

  Hi
  can u please tell me, how u r able to resolve the problem
  i am also stuck in the same error
  basically i am working on SSO b/w three systems.
  EP>XI>R/3
  i am able to do the SSO between the EP-->XI
  but  when i try with EP-->XI->R/3 it is giving me error at the receiver side means receiver soap adapter is not accepting the SAP Logon Ticket.
  can u please tell me what entries should be given in the certificate authentication fields.
  please provide the solution.
  Thanks & Regards
  Rinku Gangwani

• Enabling SSL on MQ Adapter does not work

  Hi All,
  I have a MQ Adapter that enqueues the message properly in the MQ without SSL. Now MQ is SSL enabled and I have got a .DER certificate with me which I presume is the Public Key of the MQ Server.
  Now I have to use SSL-enabled MQSeries Adapter. The User's Guide for Technology Adapters says to set certain SSL related properties. I don't know how to get the values of these properties. So I have tried doing this.
  1.) I imported the Public Key certificate (.DER file) into default weblogic keystores DemoIdentity.jks and DemoTrust.jks. (I did not create my own keystores, didn't use key password)
  2.) I also imported it into the Java keystore cacerts file. (I did not send any certificates to Certification Authority)
  3.) I modified the JNDI and set the SSL related properties (as given in the guide) for JNDI in Weblogic.
  4.) Then I just test run my TestMQConnectivity composite and I get the following error.
  Caused by: BINDING.JCA-00001
  java.util.MissingResourceException
  java.util.MissingResourceException
  java.util.MissingResourceException
  java.util.MissingResourceException
  at oracle.tip.adapter.mq.ManagedConnectionImpl.setupSSLSocketFactory(ManagedConnectionImpl.java:684)
  at oracle.tip.adapter.mq.ManagedConnectionImpl.createPhysicalConnection(ManagedConnectionImpl.java:578)
  I don't know where I should be looking for the cause of the error : JNDI, SSL config, Keystores.
  Please can anyone tell me the steps I need to follow to use the SSL enabled MQ Adapter? The documentation for this is not much explanatory.
  Regards,
  Neeraj Sehgal

  Hi Neeraj,
  Please check the following BUG 8430239.
  This should help you.
  Regards,
  Kal

• How to enable SSL in iChat 3.1.9

  Can anyone please tell me how to enable SSL in iChat 3.1.9 for Tiger? I am having the error "Cannot connect to AIM." I was having on my Leopard macbook, but I enabled SSL and it works now. However, I can't see where to enable SSL in my iMac? Thanks ahead of time for any help!

  Ok, upon doing research, I hav found out that there is no SSL to enable until ichat 4.

• POA IMAP and enabling SSL

  I would like to enable SSL to allow external users (mostly users using PDA's, cell phones, etc) to connect to our POA using IMAP. Of course I want to enable SSL for IMAP connections as otherwise it would pass their credentials in plain text.
  I have IMAP running without SSL on port 143 just fine. However, I'm unable to get IMAP to listen on 993 for SSL. I've tried enabling the option using the POA object via ConsoleOne. I've also tried enabling it using the switches in the .POA startup file and neither seems to work.
  I've exported the certificate using the self signed server certificate object in ConsoleOne and pointed the POA object to the certificate in the POA object configuration options and still nothing.
  In the log/settings for the POA I still see...
  Internet Protocol Agent Settings:
  IMAP Agent: Enabled
  IMAP Port for Incoming IMAP requests: 143 (Default)
  IMAP over SSL: Disabled
  Any help is appreciated.
  Thanks,
  Walter Keener
  Network Administrator
  Grandville Public Schools

  OK, I'm making progress. I followed your/Novell's instructions for the CSR to create the certificate and key file and IMAP via SSL appears to be up and running...
  16:59:10 1FB Internet Protocol Agent Settings:
  16:59:10 1FB IMAP Agent: Enabled
  16:59:10 1FB IMAP Port for Incoming IMAP requests: 143 (Default)
  16:59:10 1FB IMAP over SSL: Enabled
  16:59:10 1FB IMAP SSL Agent: Enabled
  16:59:10 1FB IMAP SSL Port for Incoming IMAP requests: 993 (Default)
  However, when I try to connect to IMAP on port 993 via SSL I receive a connection error on the client side. On the POA side I see this message in he log file...
  17:01:32 330 New IMAP session initiated from 10.51.10.88
  17:01:32 330 *** NEW PHYS. CONNECTION, Tbl Entry=5, Socket=235
  17:01:32 330 Return from IMAP [890F]
  17:01:32 330 *** PHYSICAL PORT DISCONNECTED, Tbl Entry=5, Socket=235
  Thanks again for any help you can provide.
  Walter Keener
  Network Administrator
  Grandville Public Schools

• Enable SSL between oracle JDBC Connection in weblogic server.

  Hi ALL,
  I have an requirement to enable SSL Mechanism in weblogic JDBC Connection Pool.we are using Oracle9i Enterprise Edition Release 9.2.0.7.0 - 64bit Production and Driver as "jdbc:oracle:thin@..." / oracle.jdbc.OracleDriver.
  weblogic server 8.1 SP4
  can anybody know what are the steps / configuration has to be done for enable Oracle Advanced Security encryption on the JDBC Oracle Thin driver with a WebLogic JDBC Connection Pool.
  Thanks,
  Karthik,

  Hi,
  I changed the code as given below. Still getting the same error. Can I migrate my question to jdbc section? I am new to this forum.
  import java.sql.*;
  public class jdbc {
  public static void main(String[] args) throws ClassNotFoundException, SQLException
  Class.forName("oracle.jdbc.driver.OracleDriver");
  String url = "jdbc:oracle:thin:@localhost:1521:xe";
  Connection conn =
  DriverManager.getConnection(url,"jestin","jj");
  conn.setAutoCommit(false);
  Statement stmt = conn.createStatement();
  ResultSet rset =
  stmt.executeQuery("select BANNER from SYS.V_$VERSION");
  while (rset.next()) {
  System.out.println (rset.getString(1));
  stmt.close();
  System.out.println ("Ok.");
  jestinjoy@debian:~/java$ javac -classpath /usr/lib/java/ jdbc.java
  jestinjoy@debian:~/java$ java jdbc
  Exception in thread "main" java.lang.ClassNotFoundException: oracle.jdbc.driver.OracleDriver
       at java.net.URLClassLoader$1.run(URLClassLoader.java:202)
       at java.security.AccessController.doPrivileged(Native Method)
       at java.net.URLClassLoader.findClass(URLClassLoader.java:190)
       at java.lang.ClassLoader.loadClass(ClassLoader.java:307)
       at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:301)
       at java.lang.ClassLoader.loadClass(ClassLoader.java:248)
       at java.lang.Class.forName0(Native Method)
       at java.lang.Class.forName(Class.java:169)
       at jdbc.main(jdbc.java:7)
  same error when I give the command without classpath

• ID, IR error when try to login (JNDI error) during SSL configuration

  I'm in the process to configure SSL on SAP J2EE Engine. I'm following the document of SAP library and "Enabling SSL and client certificates on SAP J2EE Engine" by Angel Dichev of RIG, SAP Labs.
  I deployed the SAP Java Cryptographic Toolkit and update the unlimited strength jurisdiction policy files.
  As per document, I changed the default setting from SSL provider service for the Dispatcher from manual start to always start.
  After this step, I have problems to log in IR and ID ( SLD and RWB are working), getting the follow errors ( after click on ID or IR, got the login screen for user/pwd and after entering getting the error):
  "Unable to map from JNDI delivered class com.sap.engine.services.jndi.persistent.UnsatisfiedReferenceImpl to class com.sap.aii.ib.sbeans.login.LoginServiceHome registered during login service"
  Any solution of this problem?
  Regards
  Amar

  Thanks Ravi
  I created the certificate and then it work for one day. Today morning, i received the certificate request response from SAP trust centre and imported into our server.
  I have inported into Key storage of visual admin as per guide. Is there any other place to check it?
  Again logon to IB fail with the same error.
  Any idea?
  Regards
  Amar

• Help? Web service crashes whenever I check "enable SSL"

  Whenever I try to enable SSL for one of my virtual domains, Server admin reports
  "A service has encountered an error"
  and disables web service for that virtual domain.
  Everything was working fine (ftp, webdav, websites, mail).
  So my final step was to try to enable secure webdav via https.
  So I
  * bought a certificate (godaddy $30) for my domain EXAMPLE.COM (no www, since everything is hosted on one box, for email, webdav, ftp we just use "example.com"
  * manually pasted my key into /etc/httpd/ssl.key/server.keyx
  * manually pasted my cert into /etc/httpd/ssl.crt/server.crtx
  * manually pasted the CA cert into /etc/httpd/ssl.crt/ca.crtx
  * entered my pass phrase I used when I made the key
  * used the log file default /var/log/httpd/sslenginelog
  (when crashed the first time I thought the file not being there could be the problem, so I copied another file, and ensured the permissions were the same: owner root, group admin)
  all that was fine. checked the enable SSL box, and clicked Save and that's when it reports the error and disables the virtual domain.
  My server is 10.3.9.
  The first time I used 10.4 admin. When it crashed the service I did a restart on the server, then on the server used the 10.3 admin. Same deal. (Only difference is on 10.4 admin it set my port to 443; on 10.3 it didn't)

  I did get it working. But my recollection of what I did to get it working is fuzzy. I think what I noticed is that whatever I put into the various SSL key fields was not getting saved, so I tracked down the appropriate locations and edited them manually. Sorry I don't recall the specifics.
  Another thing I do remember is that I was unable to CHANGE an existing "site" setting from port 80 to 443 -- I had to delete the entry, then re-create it from scratch with the SSL settings and PORT #.
  Hope that helps.

• Enabling SSL on SAP NetWeaver 7.0 ABAP Trial Version

  Hello,
  I installed the SAP NetWeaver 7.0 ABAP Trial Version and am trying to use the class cl_http_client to GET an xml file over ssl.
  The method cl_http_client_receive returns error "http_communication_failure", the get_last_error method returns "110", which isn't a valid http/1.1 statuscode for as far as I know.
  I 'think' the reason for this problem is the fact that there is no ssl certificate installed on my test system, does anyone know if this really is the problem, and if so, if it is possible to enable ssl on the trial system?

  Which HTTP header do you set up when issuing the GET?  Which method do you use, BYURL or BYDESTINATION?  SSL is only used when you set 'SCHEME' to value '2'.
  In order to activate SSL, you need to specify 'SSL_ID' within CL_HTTP_CLIENT=>CREATE.  This ID links to an SSL client certificate shown in transaction STRUST (display all client cert IDs via 'Environment').  In STUST, you can also create new SSL client certs.  However, to be able to run STRUST in this way, you first have to obtain the SAP Cryptographic Library from SAP Service Marketplace and install it in you system.
  Regards,
  Birger

• Enabling SSL

  i just have updated my firefox beta to version 23. the problem is i cant find the encryption tab to enable SSL so this error keeps coming "Secure Connection Failed!.

  thanks. but as i said there is no encryption tab in advanced panel!