Modifying Default Synchronization Listener Properties with Production Values

Once you have determined the degree of secure communication you require, you may need to modify default synchronization listener property values to disable one or more ports or synchronization protocols.

Prerequisites
Ensure you have reviewed Understanding Encyrption Requirements and Limitations, and know what degree of secured or unsecured synchronization you require.
Task

For complete details on any of these properties, see Configuring a Replication Listener in the SAP Control Center for SAP Mobile Platform.

  1. Open SAP Control Center.
  2. In the left navigation pane, select Configuration .
  3. In the right administration pane, click the General tab.
  4. Select Replication and click Properties.
  5. Modify the protocol and port values:
    • To disable the HTTP port, unselect Port. Disabling this port means that you do not plan to use an unencrypted port, or use TLS for E2EE on this port (if you also disable all properties in step 9).
      Note: Do not unselect the HTTP port if you are using Relay Server. The RSOE cannot use the HTTPS port.
    • To change the default port value, delete port 2480 and enter a new value.
    • To disable the HTTPS , unselect Secure port. Disabling this port means that you do not plan to use HTTPS with SSL.
    • To change the default secure port value, delete port 2481 and enter a new value.
    Note: You cannot disable both ports.
  6. To change any default HTTPS with SSL properties (particularly to set new values for production-ready certificates for HTTPS), modify these properties:
    • Secure Sync Port Certificate – identifies the location of the security certificate used to encrypt and decrypt data transferred using SSL.
    • Secure Sync Port Certificate Password – is used to decrypt the private certificate listed in the certificate file. You specify this password when you create the server certificate.
    • Secure Sync Port Public Certificate – specify the file containing the public key that acts as the identity file for the synchronization port.
    • Trusted Relay Server Certificate – if the Relay Server trusted certificate is configured, identifies the public security certificate location.
    Note: If you have disabled the secure port, you do not need to configure these values.
  7. To change any default E2EE properties (particularly to set new values for production ready certificates for E2EE), modify these properties:
    • E2E Encryption Certificate – specify the file containing the private key that acts as the identity file for SAP Mobile Server.
    • E2E Encryption Certificate Password – set the password to unlock the encryption certificate.
    • E2E Encryption Public Key – specify the file containing the public key for SAP Mobile Server.
    • E2E Encryption Type – specify the asymmetric cipher used for key exchange for end-to-end encryption. You can only use RSA encryption.
    Note: Leave E2EE values blank to disable end-to-end encryption.
Parent topic: Encrypting Synchronization for Replication Payloads
Previous topic: Changing Installed Certificates Used for Encryption
Next topic: Encryption Postrequisites