on 11-13-2004 3:24 PM
Dear SDN,
I am using ssl for users to sign onto the portal. Is it neccessary to use SSL between ITS and the WGATE?
If the portal redirects the use to this ITS iview, is this NOT encrypted even though their communication with EP is?
Thanks
Jeremy
So how would you secure the communication between the users browser and the ITS
Thanks
Jeremy
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Jeremy,
if you want to perform single sign-on to ITS for users that have already logged on successfully to EP (with their x.509 certificate), the configuration of SSL on ITS in not required. You could alternatively use SAP Logon Tickets for this.
However, the use of SSL with client certificates is advantegous as it
- provides higher security
- is not subject to technical issues with SAP logon tickets (like problems with multiple DNS domains)
If you want to secure the communication to ITS, the use of SSL on the portal alone is not sufficient. THis is due to the fact, as the portal simply redirects a user and his browser opens a direct connection to ITS (i.e. bypassing the portal).
Regards,
Dominik
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
90 | |
10 | |
10 | |
10 | |
7 | |
7 | |
6 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.