Connector Guides › Connectors Guide › Connecting to Endpoints › SAP UME Connector › Installation › Enable SSL between SAP NetWeaver and CA IAM CS

Enable SSL between SAP NetWeaver and CA IAM CS

To improve the security of the link between CA IAM CS and SAP NetWeaver AS Java, we strongly recommend that you set up an HTTPS connection.

Follow these steps:

1. The SAP administrator does the following:
   1. Locate the certificate for the AS Java, or its CA certificate.
   2. Send the file to the administrator for CA IdentityMinder .
2. The administrator for CA IdentityMinder does the following:
   1. To add the certificate to CA IAM CS keystore as a trusted certificate, enter one of the following commands:

      Windows:

      jcs_install\conf..\jvm\bin\Keytool.exe -importcert -keystore ssl.keystore -storepass <keystore_password> -file <cert_file>
      

      UNIX:

      jcs_install/conf../jvm/bin/keytool -import -keystore ssl.keystore -storepass <keystore_password> -file <cert_file>
      

      The keystore is in jcs-install/conf/ssl.keystore.

   2. Restart CA IAM CS.
   3. Verify that the Use HTTPS check box is selected for each SAP UME endpoint that you create. This check box is selected by default.