SAP recognizes a security threat during upload of SAP Note into customer landscape. The SAP Note can get modified maliciously and the customer can upload unknowingly the maliciously modified SAP Note into their landscape.
In this post we will enable our SAP systems SNOTE for Digitally Signed SAP Notes for our 740 system.
You can find the summary of the methods which you need to use according to your SAP level ;
First of all we need to implement “Automated guided steps” with the SNOTE 2836302, this note will help us to make configuration easily ;
2836302 – Automated guided steps for enabling Note Assistant for TCI and Digitally Signed SAP Notes
We will continue with implementing SNOTE 2576306 according to table ;
2576306 – Transport-Based Correction Instruction (TCI) for Download of Digitally Signed SAP Notes
We need to continue with the below report to start implementation
SE38 –> RCWB_TCI_DIGITSIGN_AUTOMATION
We have to complete all required steps
If you are using 740 or above version, then you need to select “HTTP Protocol” to define download method
Continue with the processes (Needed SNOTE implementations, certificate installations, configurations etc.)
Complete all the steps wtih success like below screen
Install needed certificates to your SAP system via STRUST tcode
Execute the task “SAP_BASIS_CONFIG_OSS_COMM” via transaction STC01
Check the implemented and configured steps via tool
If all steps completed with success, then you can check the needed RFC configurations via transaction SM59