Skip to Content

HTTPS with WebDispatcher

Hi experts,

we want to change to https-encryption in our company.

At the moment we are not using it. Not internal and also not for external.

1st we would like to implement https for pages, which are published and are accessable via webdispatcher.

I've already found the guidehttp://help.sap.com/saphelp_nw73ehp1/helpdata/en/49/3db10a19341067e10000000a42189c/content.htm

But I don't know, what is the difference between variant 4 and 5?
Which one is more secure and what are advantages/disadvantages?

Kind regards

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Best Answer
    Oct 23, 2015 at 04:54 PM

    Hi Christian,

    Variant 4 uses HTTPS between the web browser and the web dispatcher, then re-encrypts the information between the web dispatcher and SAP system. You have a two phases encryption happening.

    Variant 5 uses HTTPS between the web browser and the SAP system. In this scenario, the web dispatcher cannot read the content being transferred from one peer to the other. There is no need to have SSL certificates in the web dispatcher.

    The 4th scenario requires more processing time, as you have two encryption operations happening for each message exchanged between the peers. You need to check whether you have enough CPU to cope with the extra processing.

    The 5th scenario there is no control of the traffic being sent.

    If I may, I recommend reading the SCN document: How to Configure SAP WebDispatcher for SSL.

    I hope this helps,

    Cris

    Add comment
    10|10000 characters needed characters exceeded

    • Hi Christian,

      Bad choice of words. Sorry.

      I meant that the web dispatcher cannot see the traffic being transferred from one peer to another, as the communication that passes through it will be encrypted.

      Cheers,

      Cris