I am familiarizing myself with the steps necessary to implement SSL on the CMS. But I'm unsure about the steps for configuring thick clients, specifically IDT/UDT and Crystal Reports.
The admin guide implies that the server certs should be copied to the clients, and sslconfig run to import them. But the SAP article that describes the process in detail specifically says that server certificates should not be used. So I have questions:
- Assuming the article is correct, is it true that all of the cert files have to be re-generated on the client, and none of the server certs are copied to the client?
- This article (regarding a client connecting to multiple servers) indicates that as long as the server certs are from the same CA, then the client can connect to any server. If true, doesn't this mean that the certs installed on the clients really have no reference to a server? I should be able to create a single client cert, copy the files to all my clients, and use that for multiple CMSs?
- Thinking about this more, doesn't it also mean that I need only a single server cert, even for multiple clusters?
- What if a client is connecting to an SSL-enabled CMS and a non-SSL-enabled CMS?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.