Skip to Content
author's profile photo Former Member
Former Member

Users for logging on to receiver systems

Hi,

The user name and the password that the IS needs for logging on to a receiver system to deliver a message are kept in the database of the Integration Directory and cached in the IS.

According to the documentation, the passwords are stored in the secure store of the directory server and in an obfuscated form in the persistent cache on the IS.

Anyone knows what mechanisms are used to make the secure store of the directory server secure?

And does any of you know in what form are the passwords stored in the IS cache? (I suppose that means what hashing algorithms are used?)

Thanks,

Greg

Add a comment
10|10000 characters needed characters exceeded

Related questions

1 Answer

  • author's profile photo Former Member
    Former Member
    Posted on May 13, 2005 at 07:36 AM

    If you don't install the security libraries (during the WebAS install) your secure store passwords will be hashed (one-way)...

    If you installed the securitiy libraries then you can encrypt the secure store (the security libraries are also require if you're going to use https)...

    The best way to protect your secure store is to protect/secure the filesystem where it resides (/sapmnt/<SID>/global)

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.