The SSL handshake failed due to a missing certificate that should have been imported in the correct PSE of the system. This issue happens because the system doesn’t trust the communication peer.
It is necessary to import the missing root CA certificate in the correct PSE, using STRUST transaction.
Where <SAP_PSE> can be any PSE. For example:
- Anonymous: SAPSSLA
- Standard: SAPSSLC
- Server: SAPSSLS
- Individual: SAPSSL<name>
SAP Note 2461900 – SSSLERR_PEER_CERT_UNTRUSTED error in dev_icm trace
SAP Note 510007 – Setting up SSL on Application Server ABAP
SAP Note 1994240 – Zertifikat erstellen mit SHA256 – use report RPUSVHD0 to test HTTPS
SAP Note 2368112 – Outgoing HTTPS connection does not work in AS ABAP
First step is to test if the HTTPS server works well using external tool like browser, openssl tool or perl script. Run report RSBDCOS0 and use the commands for test:
openssl s_client -connect <server-hostname>:<server-port> -msg -no_ssl2
perl ssl-hellotest.pl <server-hostname> <server-port>