Creating a PSE for the Server Using SAPGENPSE
Use
Use the command get_pse to generate the server's PSE, which includes the public and private key pair and a public-key certificate. If you are using a trusted CA, then you can also use the get_pse command to generate a certificate request. Per default, all of the items are generated, however, you can use the options -noreq or -onlyreq to explicitly include or omit the certificate request.
For easier administration, we currently recommend using self-signed certificates that are not signed by a trusted CA.
If you are using a single PSE for all server components and you have already create the PSE on a different server, then copy the PSE to the appropriate location instead of creating a new one.