After accessing the PPM frontend with secure HTTP you encounter one of the following issues:
- A popup "Security Warning" with the following prompt occurs:
Do you want to view only the webpage content that was delivered securely?
This webpage contains content that will not be delivered securely using a secure HTTPS connection, which could compromise the security of the entire webpage.
- The attempt to navigate to a link fails (you may notice that the system tries to open a link with HTTP prefix instead of HTTPS)
- A certificate error is issued by the browser
- Some buttons are not responsive
You are facing the above issue because the relevant RFC destination(s) for "HTTP Connections to ABAP System" have not been configured to use Secure Sign On. As a result, PPM content is delivered via HTTP instead of HTTPS protocol.
First check the RFC destinations maintained for Portfolio Management and Project Management in transaction SM59 node "HTTP Connections to ABAP System". The issues are likely caused by the fact that you are using destinations SAP_CPROJECTS and SAP_RPM, and these are both configured not to use Secure Sign On. You can see this in tab "Logon & Security" in section "Status of Secure Protocol", where the radio button for SSL is "inactive". Then you must use RFC destinations which support Secure Sign On if you want to use HTTPS and ensure that the relevant navigation URLs are generated with this protocol. The recommended way to proceed in order to do this is to set up dedicated destinations SAP_CPROJECTS_HTTPS and SAP_RPM_HTTPS for which SSL is activated.