Skip to Content
avatar image
Former Member

SSL configuration requirement

Dear Folks,

Assume that I have web-dispatcher (ABC server) and ECC system (XYZ server) or JAVA systems(PQR) with multiple application servers.

I want to enable end users to use Webdynpro ABAP application or SAP GUI for HTML or simply JAVA servers access (like EP for JAVA applications). Here load balancing (by the virtue of reverse Proxy) is done using web-dispatcher.

I am considering SSL configuration for secured communication.

Question:

Do I need to apply SSL certificate on Web-dispatcher only; or on each backend server; or on both(web dispatcher and backend) ?

Is it possible that I only apply SSL on web-dispatcher and end users access ABC server and requests gets routed to backend (XYZ or PQR) server and still my security requirement is fulfilled?

I have seen that organization apply SSL on reverse proxy server (apache or web-dispatcher) and on backend systems also.

Is it required to meet security need ?

Regards,

Arthur Rodrigues

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Best Answer
    Jan 09, 2015 at 08:37 AM

    Hi Arthur,

    Please see below help doc:

    SAP Web Dispatcher and SSL - SAP Web Dispatcher - SAP Library

    HTTPS - HTTPS definitely works 'in secure way'.

    HTTPS - HTTP, I think URL rewriting (not redirecting) will also meet the security needs.

    BR, Tom

    Add comment
    10|10000 characters needed characters exceeded

    • Former Member Tom Xing

      thanks Tom,

      WDP can be used for reverse proxy so I think after that if I apply SSL then it shall serve the purpose.

      your answer solves my query. apply SSL on webdispatcher and configure the webdispatcher for reverse proxy also . this will in total get my incoming/outgoing traffic secured.

      Regards,

      Arthur