cancel
Showing results for 
Search instead for 
Did you mean: 

When running Business Objects through a firewall (to RISE/PCE) is logon data in transit secure?

nickcameron
Explorer
0 Kudos
108

According to the SAP documentation we have to use a request port (e.g. 6401 for the CMS) so that we know the port the firewall needs to open (6400 as well). From what I can see the traffic is TCP or GOIP (General Inter-ORB Protocol). I am trying to understand if data passed to the CMS is encrypted or secured in someway as I have that as a requirement for this project. I need to specify how it is secured, I know it's not using https but cannot find any documentation on what it's using.

Using Wireshark I can see communications between the client (IDT) and the server (CMS) some of which is readable but things like "secEntrprise" which I'm not bothered about but it's hard to validate if the username/password is secured somehow in transit. 

https://help.sap.com/docs/SAP_BUSINESSOBJECTS_BUSINESS_INTELLIGENCE_PLATFORM/2e167338c1b24da9b2a94e6...

SAP BusinessObjects - Authentication 

View Entire Topic
Joe_Peters
Active Contributor

CMS traffic on port 6400 uses CORBA and is not encrypted by default.   But you can enable SSL.

In the help document that you linked to, check out the sections just prior to the one on Firewalls, in particular "Configuring backend servers for SSL".  Also check out this kb article: 3046417 - CORBA SSL in BI 4.x [MASTER KBA] - SAP for Me

MichaelGrackin
Contributor
I agree. Configure CORBA SSL for the BusinessObjects Server processes.
nickcameron
Explorer
0 Kudos
Thank you, I will take a look