📄 security.html
字号:
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"><HTML> <HEAD> <TITLE>SAP Java Connector Security Recommendations</TITLE> <META http-equiv=Content-Type content="text/html; charset=windows-1252"> <link rel="stylesheet" type="text/css" href="jco.css"> </HEAD><BODY><table cellSpacing=0 cellPadding=0 border=1><tr><td><table cellSpacing=0 cellPadding=0 border=0><tr> <td vAlign="top" ><IMG height="80" src="images/father_son.jpg" width=115 border=0></td> <td vAlign="bottom"><IMG height="25" src="images/ebusiness.gif" width=375 border=0></td> <td vAlign="top" ><IMG height="80" src="images/skateboard.jpg" width=240 border=0></td></tr><tr bgcolor="#ffac1e"><td vAlign="top" colspan=3> </td></tr><tr><td colspan=3><table cellSpacing=0 cellPadding=0 border=0><tr><!-- ################################################################################ --><!-- ### LEFT TOOLBOX START ### --><!-- ################################################################################ --><td align="right" valign="top" width=115 bgcolor="#4c4c4c"><table cellSpacing=0 cellPadding=5 border=0><tr><td valign="top" align="left"> </td></tr><tr><td><table style="align: top" cellSpacing=0 cellPadding=0 width=100 align=left border=0> <tr><td align=right><a class=white style="LETTER-SPACING: normal" href="intro.html"> Home </a></td></tr> <tr><td align=right><a class=white style="LETTER-SPACING: normal" href="installation.html"> Installation </a></td></tr> <tr><td align=right><a class=white style="LETTER-SPACING: normal" href="configuration.html">Configuration</a></td></tr> <tr><td align=right><a class=white style="LETTER-SPACING: normal" href="security.html"> Security</a></td></tr> <tr><td align=right><a class=white style="LETTER-SPACING: normal" href="documentation.html">Documentation</a></td></tr> <tr><td align=right><a class=white style="LETTER-SPACING: normal" href="examples.html"> Examples </a></td></tr> <tr><td align=right><a class=white style="LETTER-SPACING: normal" href="releasenotes.html"> Release Notes</a></td></tr> <tr><td> </td> <tr><td> </td></table></td></tr><!-- ################################################################################ --></table></td> <!-- ### LEFT TOOLBOX END ### --><!-- ################################################################################ --><!-- ################################################################################ --><!-- ### WORK AREA START ### --><!-- ################################################################################ --><td valign="top" colspan=2 height=200><table cellSpacing=0 cellPadding=2 border=0 width=500><!-- ################################################################################ --><tr><td valign="top" align="left"> </td></tr><tr><td valign="top" align="left"><SPAN class=head>Security Recommendations</SPAN></td></tr><tr><td valign="top" align="left"><HR class="separator" noshade></td></tr><tr><td valign="top" align="left"> </td></tr><tr><td valign="top" align="left"><SPAN class=head>Secure Network Communication</SPAN></td></tr><tr><td valign="top" align="left"><div class="textblack"><table cellSpacing=0 cellPadding=2 border=0> <tr><td class="faqw"> <p>Depending on the underlying communication protocol of the Java Application, you can use either the Internet standard Secure Socket Layer (SSL) for HTTP or Secure Network Communications (SNC) for RFC connections. </p> <p>SNC is an SAP interface that you can use to secure connections between SAP Java Connector and an SAP Server. SNC provides security at the application level. This means that a secure connection between the SAP Java Conenctor and a component of the SAP system is guaranteed, regardless of the communication link or transport medium. You therefore have a secure network connection between two SNC-enabled communication partners. <a href="http://service.sap.com/security">[security guide]</a> </p> </td></tr></table></div><tr><td valign="top" align="left"> </td></tr><tr><td valign="top" align="left"><SPAN class=head>Usage of a technical user account</SPAN></td></tr><tr><td valign="top" align="left"><div class="textblack"><table cellSpacing=0 cellPadding=2 border=0> <tr><td class="faqw"> <p> It is strongly recommended to use a user account with only a few permissions for the technical communication: <ul> <li>Use different connection pools, i.e. use different authentication credentials for repository access and business RFC calls if possible. <li>Use a connection pool with a technical user only for application internal calls. <li>If an authenticated frontend user makes use of an application that needs RFC communication, use dedicated connections with the credentials of the accessing user. This allows the backend to check correct access permissions. </ul> </p> </td></tr></table></div><tr><td valign="top" align="left"> </td></tr><tr><td valign="top" align="left"><SPAN class=head>JCo API in an Application Server environment</SPAN></td></tr><tr><td valign="top" align="left"><div class="textblack"><table cellSpacing=0 cellPadding=2 border=0> <tr><td class="faqw"> <p>The JCo API can be used for stand-alone applications and in an Application Server environment. In the last case, i.e. if serveral applications make use of the JCo API in the same VM, full trust between all application is necessary. </p><p> It is also essential to prevent a unallowed deploying of applications. </p> </td></tr></table></div><!-- ################################################################################ --></table></td> <!-- ### WORK AREA END ### --><!-- ################################################################################ --></td></tr></table></tr></table></td></tr></table></body></html>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -