Security

Communication security between the Designer and the Server is provided using the following techniques:

• Authentication
• Transport encryption
• Access control

Authentication #

The authentication security method guarantees the verification of the identity of the logged in user.
After the initial connecting to the server using the default authentication methods such as “Windows Credentials” or “Anonymous”, you can define further details within the server settings. See also User Management.

Transport encryption #

The transport encryption security method prevents spying or manipulating of the data (such as SAP credentials) that is exchanged between the Designer and the Server.

Xtract Universal supports two different methods of transport encryption:

• Kerberos
• Transport Layer Security (TLS)

The encryption is implemented using the standard .NET APIs. The ciphers are chosen automatically depending on the operating system of the machine running the Xtract Universal Server, see Cipher Suites in TLS/SSL and SslStream Class for more detailed information.

Access Control #

Access control security method allows the granting and restricting of access to certain users or user groups. Access rights are assigned on the server level, but can be further restricted for selected extractions or sources. See also Access Management.