Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAP Server is having weak SSL ciphers, how to solve it?

Former Member

‎08-14-2008 8:56 AM

0 Kudos

Hello SAP Security Professional,

Recently I did a penetration testing on my SAP Sever and I found out that the ports listed at below:

Port 50001 = HTTP over SSL

Port 50003 = IIOP over SSL

Port 50006 = P4 over SSL

are having weak SSL ciphers problem. May I ask is there a way to strengthen the SSL ciphers?

Thank you.

Edited by: Seng Loong Chan on Aug 14, 2008 10:00 AM

3 REPLIES 3

former_member402999
Explorer

‎08-15-2008 8:28 AM

0 Kudos

Hi,

which NW release have you tested? In NW 7.0 you may restrict the list of cipher suites in the administration of the SSL Provider service: [Managing the Credentials and Trusted Certificates to Use SSL|http://help.sap.com/saphelp_nw70/helpdata/EN/14/29236de1864c6e8d46e77192adaa95/frameset.htm].

Best regards,

Klaus

Former Member

‎08-19-2008 7:42 AM

0 Kudos

Thank you for reply.

Yes, I am using NW 7.0. By the way, can I manage the cipher suit by using visual administrator?

Thank you.

Former Member
In response to Former Member

‎08-19-2008 10:06 AM

0 Kudos

Yes.