11-25-2021 03:31 AM
I was required to find a solution for some SAP clients. These clients now are regularly connecting to internal SAP system through Cisco WSA basic authentication (user,password). However the customer is going to migrate to SAP in cloud and they want to enforce security: they want to use certificate authentication. Can you help me to find a solution?
They are not using HTTPS proxy services by now, but I think that they should start using that.
Regards
DN
Solved! Go to Solution.
11-26-2021 04:17 AM
High level yes and this need to be tested as per the requirement.
11-25-2021 03:39 PM
Not sure here HTTPS decryption help here.
as per the client's requirement to use certificate-based authentication, not decryption, need more clarity here.
11-26-2021 12:44 AM
Hello Balaji and thanks for your response. You are right and I'm little bit confused: Certificate Based Authentication is required and not decryption. So, to do that, we've just add the Root CA on the Custom Trusted Certificate list on WSA?
Thanks in advance.
DN
11-26-2021 01:42 AM
If this Trust Cert form Public providers (not local) WSA already have them already) until you looking any Local PKI Infrastructure.
11-26-2021 02:02 AM
Thank you Balaji, in the Advancedproxyconfig->Https command, Action to be taken when HTTPS servers ask for client certificate during
handshake: must be set to Pass through the transaction, right?
Regards
DN
11-26-2021 04:17 AM
High level yes and this need to be tested as per the requirement.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide