on 01-08-2012 1:14 PM
Gurus:
We have an EP with ESS application. Employees use a webdispatcher URL to access the EP doing ESS related
jobs.
We face an issue that is HttpWatch can display the hostname of each visited backend system while the EP end user navigates on the EP.
Could you please share your experience on how to overcome this issue, in other words, let no tools like httpwatch be able to display the visited backend systems?
Thanks!!
Hi,
I suppose that you are speaking of iviews displaying BSP or Abap webdynpro running in the abap back office sytem.
What is shown by HTTPWATCH is perfectly normal because SAP Portal is NOT a reverse proxy. It just integrates visually the abap web applications and there is still a direct connection from the user browser to the abap system.
The solution is, of course, not to deinstall httpwatch which I am sure is only used by admins.
If you really want to hide the abap system hostname, you can install a SAP Web dispatcher for the abap system on the Portal system. If you use at least release 7.2 from SAP Web dispatcher, you can even use the same web dispatcher for EP and the abap back office system. You would have, of course, to change the configuration of the iviews URL in the portal.
Therefore the only hostname seen from a user browser would be the EP server.
Regards,
Olivier
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Helen,
HTTPWatch is a plug-in HTTP Viewer for Internet Explorer, so if dont want to use it dont enable the plug-in from tools.
You have to enable the tool and press on "Record" so that it start showing the HTTP traffic in the system.
So,if you dont enable it or use filters then you will not see the unwanted http traffic in your browser window.
Check these docs for more clarity on this.
http://wiki.sdn.sap.com/wiki/display/BSP/HttpWatch
http://help.httpwatch.com/#filter_dialog.html
Regards,
Ashutosh
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Helen,
In that case you should consider moving from HTTP to HTTPS by enabling end to end SSL.We have done same in our env.
Here are some useful pointers for that:
/thread/841814 [original link is broken]
http://help.sap.com/saphelp_nw70/helpdata/EN/d8/a922d7f45f11d5996e00508b5d5211/frameset.htm
Regards,
Ashutosh
Hello Helen,
You can't hide hostname details in HTTPWatch tool. HTTPwatch tool is meant to find the activity done from client browser in order to find root cause of any issue.
I just suggest you to uninstall HTTP watch from client machines and install only when it's required.
Alternatively, you can setup SSL (https) in your landscape as already others suggested if you still want to use httpwatch at client browsers.
Hope it helps.
Thanks,
Siva Kumar
Siva:
You wrote:
You can't hide hostname details in HTTPWatch tool. HTTPwatch tool is meant to find the activity done from client browser in order to find root cause of any issue.
I recall that I did a full SNC on the communication connection between EP and ECC in another project.
The UNIX sniff tool (not httpwatch which is web-based) could explicitly display the hostnames but everything
else was properly encrypted. Was this because of the same reason you explained? If so, end-to-end SSL can hide
what SNC cannot hide?
Anyway, now end users know our EP application servers' hostnames. Therefore they use the URL for the EP application server
to access the EP instead of the webdispatcher URL per policy.
How do we redirect their URL, i.e.
if they type http://<EP application server>:port/irj, it will automatically change to http://webdisp/irj?
or simply give a message : "please use web dispatcher" w/o giving login page?
All people's opinions appreciated.
Thanks!
Hello Helen,
How do we redirect their URL, i.e. if they type http://<EP application server>:port/irj, it will automatically change to http://webdisp/irj?
- You can achieve this with parameter icm/HTTP/redirect_<xx>. Please take a look at below link for more details.
http://help.sap.com/saphelp_nw04s/helpdata/en/00/040f3a39ce8704e10000000a114084/content.htm
Good Luck.
Thanks,
Siva Kumar
User | Count |
---|---|
93 | |
10 | |
10 | |
9 | |
9 | |
7 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.