We have copied a Demo21 System with version 1511 from SAP. Now we tried to etablish a SSL scenario between a Apache Reverseproxy and the Demo21 Back-End System, because the internet access from user requests to our ReverseProxy is already working. Then I changed in the SICF transaction the global settings to accept only HTTPS and not switching to HTTP and also changed all necessairly RFC/HTTP connections to HTTPS and Port 44301. Now when Im trying accessing the Fiori Launchpad over the ReverseProxy, it occurs a connection error. The Apache Log from the ReverseProxy displays the following messages:
[rewrite:trace1] [pid 1352:tid 1748] mod_rewrite.c(475): [client X.X.X.X:50531] X.X.X.X - - [dns.corp/sid#1d72148][rid#1dac200/initial/redir#1] pass through /error/HTTP_INTERNAL_SERVER_ERROR.html.var
[proxy:error] [pid 1352:tid 1748] (502)Unknown error: [client X.X.X.X:50531] AH01084: pass request body failed to X.X.X.X:44301 (servername.local)
[proxy:error] [pid 1352:tid 1748] [client X.X.X.X:50531] AH00898: Error during SSL Handshake with remote server returned by /error/HTTP_INTERNAL_SERVER_ERROR.html.var
[proxy_http:error] [pid 1352:tid 1748] [client X.X.X.X:50531] AH01097: pass request body failed to X.X.X.X:44301 (servername.local) from 10.51.10.6 ()
I already tried to manually export the SSL-Server Standard certificate out of the STRUST, and import it to the ReverseProxy, but that didnt help. It seems that the self signed certificate isnt trusted and the issuer isnt trusted, even if I added them to the HKLM Personal and Root Certificate Store.
Does someone have the same scenario and already get rid of this problem?