SAP Knowledge Base Article - Preview

3061929 - Securing sapcontrol / sapstartsrv with a signed SSL certificate


While interacting with the sapstartsrv process, it is observed that it is using a self-signed certificate.

Such self-signed certificate is created automatically, when the sapstartsrv process is started, and it is related to the SystemPKI feature (Secure Internal System Communication - parameter "system/secure_communication").

It is desired to use a CA (Certification Authority) signed certificate instead of the automatically created self-signed certificate.



  • SAP NetWeaver 7.4 or higher, running with SAP kernel 742 or higher.


SAP NetWeaver all versions


KBA , BC-CST-STS , Startup Service , BC-CST , Client/Server Technology , How To

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.