3650164 - HTTPS service cannot be activated due to corrupted SSL server standard PSE in SAP S/4HANA

Symptom

HTTPS service cannot be activated.
Error messages observed in the "dev_icm" trace:

-------------------------------------------

cannot set ciphersuites 'PFS:HIGH::EC_X25519:EC_P256:EC_HIGH' for PSE '/usr/sap/[SID]/[Instance Name]/sec/SAPSSLS.pse'"

SSL_CTX_set_default_cipher_suites() failed (536872208/0x20000510)"

There are no cipher suites configured with current SSL_CONN handle. Submitted cipher suite string did not specify any cipher suite supported by available keys."

Did not find any suitable key for TLS. Detected unsupported algorithms or unacceptably small key sizes."

SapISSLAddCredential(): Error SSSLERR_SSLCTX_NEW trying to create SERVER Credential for '/usr/sap/[SID]/[Instance Name]/sec/SAPSSLS.pse'"

Initialization of SSL library failed. NO SSL available!"

IcmServInitSSL: SapSSLInit (rc=54): SSSLERR_SSLCTX_NEW"

-------------------------------------------

Environment

SAP S/4HANA environment.
Internet Communication Manager (ICM).

Product

ABAP platform all versions ; SAP NetWeaver all versions ; SAP S/4HANA all versions

Keywords

HTTPS activation issue, SSL server standard corruption, STRUST transaction, SMICM transaction, SAPSSLS.pse file, SSL_CTX_set_default_cipher_suites error, SSSLERR_SSLCTX_NEW error, Internet Communication Manager, TLS key size issue, cipher suite configuration error, SSL library initialization failure, server credential creation error, HTTPS service failure, SAP S/4HANA environment, SSL configuration troubleshooting. , KBA , BC-CST-IC , Internet Communication Manager , BC-SEC-SSL , Secure Sockets Layer Protocol , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.