HiIdea of using HTTPS is to connect to trusted (by client) site and establish encrypted pipe.Your client must know something (certificate) to do this securely.Your security colleague have probably in mind that standard practice is to import CA certif...
HiIf you mean, password request from target system when "transport proposal" is accepted - it's possible.Moreover I saw this as default behavior but it isn't work when you extend standard authorizations for TMS RFC destinations users.RagardsPrzemek