Application Development Discussions
Join the discussions or start your own on all things application development, including tools and APIs, programming models, and keeping your skills sharp.
cancel
Showing results for 
Search instead for 
Did you mean: 

Is Data Between SAP GUI and Server Encrypted

former_member182967
Active Contributor
0 Kudos

Hello expert,

In default, the data between SAP GUI and SAP application server is not encrypted, is that?

If we want to encrypt the data between GUI and AP, we should enable the following setting in GUI side (and any other settings, like SNC library path and so on)?

Thanks & Best Regards,

Tong Ning

1 ACCEPTED SOLUTION

tim_alsop
Active Contributor
0 Kudos

The default is no encryption, so the users password could be captured as it travels over the network to the application server. To enable encryption you need to use an appropriate SNC library. Some SNC libraries offer encryption only, and some offer authentication (e.g. for Single Sign-On) as well as encryption. The SNC libraries that offer SSO are often licensed so you might have to pay money for a license.

Thanks

Tim

3 REPLIES 3

tim_alsop
Active Contributor
0 Kudos

The default is no encryption, so the users password could be captured as it travels over the network to the application server. To enable encryption you need to use an appropriate SNC library. Some SNC libraries offer encryption only, and some offer authentication (e.g. for Single Sign-On) as well as encryption. The SNC libraries that offer SSO are often licensed so you might have to pay money for a license.

Thanks

Tim

0 Kudos

Hello Tim,

As far as I know, SNC is installed in application server during system installation (within SAP Security Library, no addtional fee......).

And do I need to install some SNC needed library in client side to encrypt data?

Thanks & Best Regards,

Tong Ning

tim_alsop
Active Contributor
0 Kudos

Yes, you need an SNC library on both client and server. They both need to support the same protocol, e.g. both need to support Kerberos.