Beruflich Dokumente
Kultur Dokumente
Integration Installation
(Details)
Prerequisites
Initialize OpenSSL
1. Go to: http://slproweb.com/products/Win32OpenSSL.html
2. Download and install Visual C++ 2008 Redistributables (x64)
3. Download and install Win64 OpenSSL v1.0.2d Light
4. Install everything with default settings
5. Start Run and run “cmd /admin” or manually run Command Prompt as
Administrator. This is critical because it will give you various failed RND
errors especially on Server 2012
6. Navigate to C:\OpenSSL-Win64\bin
7. Enter:
set OPENSSL_CONF=c:\openssl-win64\bin\openssl.cfg
8. WARNING Carefully inspect your CMD outputs when entering the code
below. If at any point you see the term “Unable to write ‘random state'”
then you need to enter the following:
set RANDFILE=.rnd
(Keep in mind you can copy and paste these into the command prompt, but
you have to click the icon in the upper left, Edit >> Paste. CTRL + V will NOT
work!)
Anything highlighted in YELLOW needs to be modified, everything else
you can leave the same.
1. Enter:
openssl genrsa -out ServerKey.key 1024
2. Enter:
openssl req -new -x509 -key ServerKey.key -out myCA.cer -days
1. Enter:
openssl genrsa -out ClientKey.key 1024
2. Enter:
openssl req -new -key ClientKey.key -out CertReq.csr -subj
/CN="server_domain_name"
3. server_domain_name must be your subdomain which was created in
Prerequisites step #4. Something like mobile.yourcompanywebsite.com.
You will eventually feed this back to your mobile app using the server
mobile.yourcompanywebsite.com:8443 (or whatever your SSL port is).
This can simply be your IP address (209.253.12.153 for example, NO
PORT IS REQUIRED for this step just the IP address) as well and does
not need to have the HTTP:// or HTTPS:// in front of it. (*Special thanks
to Heath Gardner for testing the IP address theory and verifying that it
works.)
4. Enter:
openssl x509 -req -days 3650 -in CertReq.csr -CA myCA.cer -CAkey
1. Enter:
openssl pkcs12 -export -inkey ClientKey.key -in ClientCert.crt -
out keystore.pkcs12
2. You will be prompted to enter a password, which will be the password
from Prerequisites step #2-3 (should be sapB1iP). You will enter the
password, but you will not see anything in the command prompt, this is
NORMAL. You will have to confirm and you will also see nothing when
typing the confirmation password, this again is normal.
7. Push Enter
8. If the file is found and you see the help then follow the next steps, if the
file is NOT found then go to “Deploy the Certificate (Option #2). If the
file is found, then continue with the next steps.
9. NOTE: See screenshot after step 16 for successful confirmation
prompts.
10. Enter:
keytool -delete -alias tomcat -keystore
Integration/IntegrationServer/Tomcat/webapps/B1iXcellerator/.key
Integration/IntegrationServer/Tomcat/webapps/B1iXcellerator/keys
Integration/IntegrationServer/Tomcat/webapps/B1iXcellerator/.key
sapB1iP
8. Use your password from Prerequisites step #2. Likely to be sapB1iP.
9. Enter:
keytool -changealias -alias 1 -destalias tomcat -keystore
Integration/IntegrationServer/Tomcat/webapps/B1iXcellerator/.key
3. Shut down SAP Business One Integration Service, SAP Business One
EventSender Service, SAP Business One DI Proxy Service, SAP Business
One DI Proxy Service Monitor. Shut them down in that order.
4. Start them up in the same order you shut them down.