SAP Knowledge Base Article - Preview

3061929 - Securing sapcontrol / sapstartsrv with a signed SSL certificate


While interacting with the sapstartsrv process, it is observed that it is using a self-signed certificate.

Such self-signed certificate is created automatically, when the sapstartsrv process is started, and it is related to the SystemPKI feature (Secure Internal System Communication - parameter "system/secure_communication").

It is desired to use a CA (Certification Authority) signed certificate instead of the automatically created self-signed certificate.



  • SAP NetWeaver 7.4 or higher, running with SAP kernel 742 or higher.


SAP NetWeaver all versions


KBA , BC-CST-STS , Startup Service , BC-CST , Client/Server Technology , How To

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP ONE Support launchpad (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.