Trying to integrate with SAP - Need Certificate

Go to solution
akhil19
Kilo Expert

‎07-13-2015 10:13 PM

Hi,

I am trying to integrate with SAP Transport but we need to install the certificate from ServiceNow for the connection to work.

I tried to download the SN certificate from the browser but it comes up as untrusted.

Does anybody know the place from where we should be downloading it ?

Thank

Labels:
0 Helpfuls
  • 5,005 Views
1 ACCEPTED SOLUTION

Go to solution
akhil19
Kilo Expert
In response to Sreeja Gattu

‎08-06-2015 11:44 AM

Hi Sreeja,


You can download the certificates from browser.



1.Open any of your SN instances in Chrome.


2. Click on the green lock icon in the address bar


3. Click on "Connection" tab and then on certificate information.


4. The use 'Export to File" and use the required format to export it in.


5.Make sure to export the entire chain one at a time.


View solution in original post

14 REPLIES 14

Go to solution
tony_barratt
ServiceNow Employee
ServiceNow Employee

‎07-13-2015 11:32 PM

Hi Akhilesh,



There is some info on the SSL cert for SeviceNow here:


SSL Certificate Information - ServiceNow Wiki



Evidently every time you connect to your instance via https you do dynamically download the cert.



If you download the Cert and hardcode it somewhere, if the cert changes on the ServiceNow side the integration will will no longer function.



Best Regards



Tony


0 Helpfuls

Go to solution
akhil19
Kilo Expert
In response to tony_barratt

‎07-13-2015 11:42 PM

I was able to get the Cert and get it installed on SAP.


But the SAP system is throwing up the error "SSSLERR_PEER_CERT_UNTRUSTED".





0 Helpfuls

Go to solution
tony_barratt
ServiceNow Employee
ServiceNow Employee
In response to akhil19

‎07-18-2015 01:45 AM

Hi Akhillesh,



Inbound SOAP Web Service Security - ServiceNow Wiki


..


ServiceNow supports mutual authentication for outbound web services. Mutual authentication is not available for inbound web services.



You do mention here:


Obtaining Client/Server Certificates for SOAP Mutual Authentication


That you are implementing inbound, to the instance ,SOAP.




I think SSSLERR_PEER_CERT_UNTRUSTED error message is a symptom of mutual authentication not being available.




Best Regards




Tony



0 Helpfuls

Go to solution
Jace Benson
Mega Sage
In response to tony_barratt

‎07-22-2015 01:01 AM

I Also have had to deal with mutual soap messages for an integration with entrust. To get that to work we had to actually do the soap calls on our midserver in a odd way. I'll add more to this tomorrow.


0 Helpfuls