Beruflich Dokumente
Kultur Dokumente
1 NFE Incoming
NFE Incoming
Importing the CA certificates for verification of the digital signature of incoming NF-es 1.1 Creating the PSE for NFE Signature Check
From the Administration workplace use transaction STRUST SSF: Trust Manager and create a self-signed PSE for SSF NFE signature validation:
Page
Page
1 NFE Incoming
1.2
Import CA certificates
After receive the message Data saved successfully, import the CA certificate of the issuer (the certification authority) of the signing certificate (encoded in the XML tag <X509Certificate>). To ensure that the certificate is OK you can download the CA certificate with full chain from the certification authoritys Web site as described in attachment Structure_of_ICP-Brazil.pdf and import the Certificate with full chain in internet explorer:
Page
Page
1 NFE Incoming
Where the CA certificates just download please refer to the attached document "Structure of ICPBrazil.pdf" and choose the Security Provider of your customers certificate (e.g. CertiSign):
If receive an error like SSF kernel error: invalid parameter try to change file format:
Page
Page
1 NFE Incoming
Repeat the same step for other CA certificates Import one by one the CA certificates for all certification authorities of your business partners.
After import and add all certificates to list, save it to persist the changes
Page
NFE Outgoing
Customizing the private certificate for digital signature of outgoing NF-es 2.1 Create PSE
Use tool SAPGENPSE to create PSE from existing private certificate as described in
http://help.sap.com/saphelp_nw04s/helpdata/EN/0d/9ce63bab134b39a52e340255d7650c/frameset.htm: sapgenpse import_p12 -p file.pse file_name.p12 or sapgenpse import_p12 -p file.pse file_name.pfx
2.2
From the Administration workplace use application SSF: Define Application to create SSF applications. You need a separate SSF application for each private certificate that you use for signing the NFe (e.g. for each own tax number). This step has to be done in all three the dev, test and production systems (no transport).
Page
2 NFE Outgoing
2.3
From the Administration workplace use transaction SSFA SSF: Set Application Parameters
Page
10
Filling data:
Page
11
2 NFE Outgoing
2.4
From the Administration workplace use transaction STRUST SSF: Trust Manager and load the PSE: Click Menu > PSE > Import or double click on File:
Page
12
Select the PSE generated with command "sapgenpse import_p12", which is copied from server to local machine:
Page
13
2 NFE Outgoing
Page
14
Select SSF application on Save PSE as box, and select and confirm the proper SSF for signature which are being created:
Page
15
2 NFE Outgoing
Page
16