Prepare the environment for Duet Enterprise for SharePoint and SAP Server 2.0

  • Article

 

Applies to: Duet Enterprise for Microsoft SharePoint and SAP Server 2.0

Summary: Learn how to prepare SharePoint Server 2013 to host Duet Enterprise 2.0 by creating a new Duet Enterprise web application, site collection, and host websites.

This article describes how to prepare a SharePoint Server 2013 environment to host Duet Enterprise for Microsoft SharePoint and SAP Server 2.0. It includes all the necessary procedures provided in the order in which they must be performed. Where necessary, Duet Enterprise 2.0 specific steps are included. In all other cases, the procedures are the same as those for SharePoint Server 2013.

In this article:

  • Before you begin

  • Create a new web application for Duet Enterprise 2.0

  • Extend the web application in Duet Enterprise 2.0

  • Create and manage the SharePoint SSL Certificate

  • Create the SharePointSSL.cer certificate

  • Bind the SharePointSSL.cer certificate to the extended web application

  • Export the SharePointSSL.cer certificate

  • Share the SharePointSSL.cer certificate with the SAP administrator

Before you begin

Before you perform any of the following procedures, read the following Duet Enterprise 2.0 installation and configuration articles in the order listed. We recommend that you do not continue until you read these articles.

Note

Because SharePoint 2013 runs websites in Internet Information Services (IIS), administrators and users depend on the accessibility features that browsers provide. SharePoint 2013 supports the accessibility features of supported browsers. For more information, see the following resources:

Create a new web application for Duet Enterprise 2.0

Duet Enterprise 2.0 requires at least one web application. This web application is used to host one or more sites that surface information from SAP. Use the following procedure to create a new web application for Duet Enterprise 2.0.

To create a new web application for Duet Enterprise 2.0

  1. Verify that you have the following administrative credentials: Farm Administrators SharePoint group.

  2. On the SharePoint Central Administration website, in the Application Management section, click Manage Web applications.

  3. On the Web Applications Management page, on the ribbon, click New. The Create new Web Application window opens.

  4. In the Create New Web Application window, in the IIS Web Site section, select the following:

    • Select Create a new IIS website.

    • Optionally type the name of the web site in the Name box or accept the default name. Record this name. You will need it later when create the alternate access mapping for this web application.

    • Leave Port default, and record the port number.

    • Leave Host Header default (blank).

    • Leave Path default.

  5. In the Security Configuration section, select the following:

    • Leave Allow Anonymous default (No).

    • Leave Use Secure Sockets Layer (SSL) default (No).

  6. In the Public URL section, record the URL in the URL box. You will need to know this URL when you create an alternate access mapping later.

  7. In all other sections, leave all selections as the default.

  8. Click OK to create the new web application. A progress window is displayed. When complete, the progress window closes and the Application Created page appears. Click OK to close the Application Created page. The web application that you created appears on the Web Applications page.

Extend the web application in Duet Enterprise 2.0

Use this procedure to extend the web application to create a SSL-enabled web application that will be used for secure transactions between the SharePoint system and the SAP system.

To extend the web application in Duet Enterprise 2.0

  1. Verify that you have the following administrative credentials: Farm Administrators SharePoint group.

  2. In Central Administration, in the Application Management section, click Manage Web applications.

  3. On the Web Applications Management page, select the new web application that you created. In the Ribbon, click Extend. The Extend Web Application to Another IIS Web Site window opens.

  4. In the IIS Web Site section, leave all settings as the default.

  5. In the Security Configuration section, for Use Secure Sockets Layer (SSL), select YES.

  6. In the Claims Authentication Types section, select Basic authentication (credentials are sent in clear text).

  7. In the Public URL section, the URL for this web application is shown in the URL box. Do the following:

    1. Change the URL to the fully qualified domain name. This full URL should be in this format: https:// servername.domain.com:portnumber

    2. Record this URL and send it to the SAP administrator.

    3. The SAP administrator will need this full URL when the configuring an RFC Destination to send workflows and reports from SAP to SharePoint.

    4. In the Zone list, select the zone that you want to use for this port. You can choose any available zone, but we recommend that you choose the Custom zone because the name best describes the purpose of this zone.

  8. Leave all other settings as the default, and then click OK to extend the web application.

  9. The Extend Web Application to Another IIS Web Site window closes and the new web application is extended. No visual confirmation is provided.

Create and manage the SharePoint SSL certificate

After extending the new web application that you created, you must create an SSL certificate and bind that certificate to the extended web application. This certificate is named the SharePointSSL.cer certificate. Once created and bound in to the extended web application in SharePoint, you will export it and share it with the SAP administrator who imports it into the SAP system. The procedures for this are as follows:

  1. Create the SharePointSSL certificate.

  2. Bind the SharePointSSL certificate to the extended web application.

  3. Export the SharePointSSL.cer certificate.

  4. Share the SharePointSSL.cer certificate with the SAP administrator.

Create the SharePointSSL certificate

This is the first of four SharePointSSL certificate management procedures. The SharePointSSL certificate is created by using IIS Manager (inetmgr). This certificate will be bound to the extended web application that you just created and used to help secure communications between the SharePoint and SAP systems.

To create the SharePointSSL certificate

  1. Verify that you have the following administrative credentials: Farm Administrators SharePoint group and a member of the Windows Administrators group on the server where this procedure is run.

  2. Click Start, and then click Run.

  3. In the Run text box, type: inetmgr, and then click OK. Internet Information Services (IIS) Manager opens.

  4. Under Connections, expand the tree node next to the host computer.

  5. Expand the Sites node and confirm that the new web application and the SSL-enabled extended web application are displayed under the Sites node.

  6. In the Connections section, select the host computer. The ASP.Net, IIS, and Management sections display for this computer.

  7. Double-click Server Certificates. The Server Certificates section is displayed.

  8. In the Actions section, click Create Self Signed Certificate.

  9. The Create Self Signed Certificate wizard opens.

  10. In the Specify a friendly name for the certificate field, type SharePointSSL, and then click OK. The SharePointSSL.cer certificate is created and the Create Self Signed Certificate Wizard closes.

  11. The SharePointSSL certificate is displayed in the Server Certificates section.

Bind the SharePointSSL certificate to the extended web application

This is the second of four SharePointSSL certificate management procedures. The SharePointSSL certificate is bound to the extended web application that you created by using IIS Manager (inetmgr).

To bind the SharePointSSL certificate to the extended web application

  1. Verify that you have the following administrative credentials: Farm Administrators SharePoint group and a member of the Windows Administrators group on the server where this procedure is run.

  2. In IIS Manager, in the Connections section, select the extended web application that you created, and then in the Actions section, click Bindings.

  3. The Site Bindings window opens. Select the https row, and then click Edit.

  4. In the Edit Site Binding window, in the SSL certificate section, in the drop-down list, select SharePointSSL, click OK, and then click Close.

  5. The SharePointSSL certificate is now bound to the extended web application.

Export the SharePointSSL.cer certificate

This is the third of four SharePointSSL certificate management procedures. The SharePointSSL.cer certificate is exported so that it can be shared with the SAP administrator. This process is completed by using IIS Manager.

To export the SharePointSSL.cer certificate

  1. Verify that you have the following administrative credentials: Farm Administrators SharePoint group and a member of the Windows Administrators group on the server where this procedure is run.

  2. Open the Microsoft Management Console (MMC) by clicking Start, select Run, and then type MMC in the Run box.

  3. The MMC opens as Console 1.

  4. Select File, and then click Add/Remove Snap-in. The Add or Remove Snap-ins window opens.

  5. In the Add or Remove Snap-ins window, select Certificates, and then click Add.

  6. In the Certificates Snap-in window, select Computer account, and then click Next.

  7. In the Select Computer window, leave all settings default, and then click Finish. The Certificates Snap-in window closes and certificates are displayed in the Add or remove Snap-ins window in the Selected Snap-ins section.

  8. Click OK. The Add or Remove Snap-ins window closes and Certificates (Local Computer) are displayed in the MMC tree.

  9. In the MMC tree, expand Certificates (Local Computer).

  10. Expand the Personal node, and then select Certificates. The SharePointSSL certificate will be displayed as a self-signed certificate where the Issued To and Issued By fields are the same and both display the name of the host computer as seen in IIS Manager. Also, the name in the Friendly name column will be SharePointSSL, which is the name you assigned to this certificate when you created it.

  11. Right-click the SharePointSSL certificate that displays the same Issued To and Issued By information, point to All Tasks, and then click Export.

  12. The Certificate Export Wizard opens.

  13. Click Next. The Export Private Key page is displayed. Leave all settings as the default.

  14. Click Next. The Export File Format page is displayed. Leave all settings as the default.

  15. Click Next. The File to Export page is displayed. Select Browse to select a location to export the file. The Save As dialog opens. Choose somewhere easy to access and remember.

  16. In the Save As dialog after you have selected a location, in the File name field, type SharePoint SSL, and then click Save. The Save As dialog closes and the Certificate Export Wizard, File to Export page is displayed with the path and name of the certificate populated in the File name field.

  17. Click Next. The Completing the Certificate Export Wizard displays and lists all the information that was selected during the export process.

  18. Click Finish to export the SharePointSSL.cer certificate. The Certificate Export Wizard success dialog box displays the following message: The export was successful.

  19. Click OK. The Certificate Export Wizard closes. You have exported the SharePointSSL.cer certificate to the location that you chose.

Share the SharePointSSL.cer certificate with the SAP administrator

This is the final of four SharePointSSL certificate management procedures. The SharePointSSL.cer certificate is now created, bound, and exported from the SharePoint system. It must now be given to the SAP administrator who will use SAP trust manager to trust the certificate in the SAP system.

  1. Either share the location where the SharePointSSL.cer certificate is on the host computer file system, or transfer the file to an SAP host computer according to the SAP administrator’s instructions.

  2. When the SharePointSSL.cer is successfully transferred to the SAP administrator, you are ready to continue with the installation Duet Enterprise 2.0 on your host computer.

See also

Deployment overview of Duet Enterprise for SharePoint and SAP Server 2.0
Plan to deploy Duet Enterprise for SharePoint and SAP Server 2.0
Hardware and software requirements for Duet Enterprise for Microsoft SharePoint and SAP Server 2.0