# Steps to import SSL/TLS certificates in SAP

{% hint style="info" %}
**Important Note**:

This is a step-by-step "How-to" guide for importing SSL/TLS certificate in SAP. Please be aware that the values of different parameters and screenshots presented in this guide may vary depending on your specific use case. Before proceeding, please make sure to go through the [checklist](https://docs.cleartax.in/cleartax-docs/add-ons-and-extensions/sap-add-on/sap-connectivity-checklist).
{% endhint %}

In SAP, there are 2 main PSE where SSL/TLS certificates can be imported to trust an external API connection.

1. SSL Client SSL Client (Standard)
2. SSL Client SSL Client (Anonymous)

{% hint style="info" %}
**Note**: Based on your program and configuration, one of the above PSE will be used. To be on the safer side, we recommend you to follow the below steps for both the above PSE one by one.
{% endhint %}

**Step 1:** RUN the T-code `STRUST` and select the `SSL client SSL Client (Standard)`. 

**Step 2:** Go to Change mode by clicking the `Change` icon, then scroll down to the bottom of the page and look for the `Import Certificate` option on the right-hand side, as shown below.

![](https://2888774781-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LZ9fXxeBEm3pJiVldcu%2Fuploads%2FrrmYVhe6IXe5RpvsK1RI%2Fimage.png?alt=media\&token=eb193a41-3900-4447-b69a-346db59d1bec)

**Step 3:** Select the file path and then choose F4 to select the certificate from the local system.

![](https://2888774781-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LZ9fXxeBEm3pJiVldcu%2Fuploads%2Fewv9H3wCIXDkO8fxqm2z%2Fimage.png?alt=media\&token=6e2460c6-e04d-48d3-8a65-84c37340db10)

**Step 4:** Once the file has been selected, go to the bottom of the page and click the `Add to certificate` button.

![](https://2888774781-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LZ9fXxeBEm3pJiVldcu%2Fuploads%2Fucf304wfmqvmOoCLQ5Tf%2Fimage.png?alt=media\&token=945895ce-a494-40d0-9d66-2109dd3f4f3d)

**Step 5:** Right-click the `SSL client SSL Client (Standard)` and choose Distribute from the menu.

![](https://2888774781-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LZ9fXxeBEm3pJiVldcu%2Fuploads%2FIpOBVqBkyCiFIDf4E2oW%2Fimage.png?alt=media\&token=38bc8f04-fcaa-43ca-9bc1-7e0d47a86dab)

**Step 6:** On the top, click the `Save` button, and you'll be able to see the certificates in the Certificate List.

{% hint style="info" %}
**Note**: If you have multiple app servers, click on "PSE" from the menu, and then click on “Distribute” in the context menu. This will distribute the SSL/TLS certificate across all nodes.
{% endhint %}

Done!