SAP Knowledge Base Article - Preview

3265597 - The list of hostnames used in certificate-signing request (CSR) when securing HANA Cockpit running hostname-based routing mode


When securing HANA Cockpit running with hostname-based routing mode, SAP recommends to use wildcard "*.<domain name>" in SubjectAltName when generating CA signed certificate which will not miss any one.
However, sometimes wildcard '*' is restricted and require to use specific host names in CSR.

This KBA provides a list including all required hostnames that need to add in the CSR, see the attachment.



  • SAP HANA Cockpit 2.0
  • HANA XS Advanced
  • SAP HANA Platform Edition 2.0


SAP HANA, platform edition 2.0


SAN, certificate, sapgenpse, SubjectAltName, hostname based, Cockpit, HANA Cockpit, secured, domain certificate, XS Advanced, XSA , KBA , HAN-CPT-CPT2 , SAP HANA Cockpit version 2 - based on XSA , BC-XS-SEC , UAA and Security for HANA XSA engine , How To

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.