Authorization to read certificate's private key
- proaxia
In order to make use of the certificate the Message Broker must be able to access its private key. To do so find the desired certificate in the Windows Certificates Store and go to its private keys management. There, enable the ‘Read access’ for the user that is used to run Message Broker service - by default the ‘Local Service’ is used.
If the Message Broker cannot read certificate’s private key the connection from SAP to Message Broker cannot be established. There is, however, no trace of it in the message broker' log file - no error nor any other type of information showing the connection attempt was made.
If you'd like to help us improve the documentation, please provide your feedback using the communication channels listed /wiki/spaces/PFCC/pages/1561427969. Learn about support possibilities here.