You are getting below message while trying to export the certificate from the transaction code STRUSTSSO2.
Certificate no longer has signature (use restriction)
Message no. TRUST013
Diagnosis
Certificates entered in the certificate list of a PSE no longer have a signature and can therefore only be used for verifying digital signatures. The certificate itself can no longer be verified.
The certificate you want to export comes from the certificate list of the PSE and its use is therefore restricted (as described above).
Procedure
Note that the exported certificate is only suitable for import into a certificate list of a PSE.
Solution
The solution was mentioned in SAP 1906019 – Warning TRUST013 “Certificate no longer has signature (use restriction)” when exporting certificate from certificate list of a PSE. Copied from above note,
To move the trusted certificate from one PSE to another:
There is a simple operation can achieve this. After you double-click the certificate in the “Certificate List” and its information has been shown on the “Certificate Area”, you can open another PSE directly by double-clicking other PSE node on the left tree, then the “Own Certificate” and “Certificate List” will be changed, but the “Certificate Area” will not be changed, it is still the old certificate you just opened.
Now you just need to click the “Add to Certificate List” button in the “Certificate Area”, then it will be imported into the New PSE.
To export the certificate to a file:
When you get this warning message on the left bottom, then just need to press Enter (your keyboard) or click the “OK” icon on the left top (before the transaction code input field), Then the Export Certificate dialog will be shown. You can choose export type and format you need to finish the exporting.
