skip to main content

SAP NetWeaver Newbie

Strict Hostname Checking

The default setting in SAP doesn't make a strict hostname check when executing an SSL handshake. Depending on your security audit requirements you may have to change this behaviour.

You can set messaging.ssl.serverNameCheck to true in SAP XI AF Messaging service to ensure that SSL handshake succeeds only in the hostname of the server matches the CN of the public certificate.

No comments:

Post a Comment

Email Subscription

Get every new post into your inbox by subscribing us.

Want a reason to subscribe?
1. This sitemap might convince you to subscribe.
2. We do not misuse email IDs. We respect privacy.

© 2008 - 2017 sapnwnewbie. All rights reserved.