KnowCardSAP Fiori
Web Dispatcher & Communication Security
29 flashcards · answers and review in the app
What does SNC add on top of standard SAP NetWeaver communication?
Why can Internet users reach SAP Gateway servers that sit behind the corporate firewall?
How do you declare the HTTPS listening port for the Internet Communication Manager?
How do you enable HTTPS for SAP HANA XS?
Under what condition do transactional Fiori apps need no reverse proxy at all, and what makes one necessary?
What are the three common uses of SAP Web Dispatcher in front of a Fiori landscape?
What makes a client trust an SSL certificate during the handshake?
In which situation does SAP Web Dispatcher communicate with SAP HANA XS at all?
Which profile parameters turn on HTTPS handling in the Web Dispatcher instance profile?
How do you secure an existing RFC destination with SNC in SM59?
After SAP Web Dispatcher is installed, which three communication scenarios must be configured?
Which two cookie flags harden Fiori sessions, and what does each prevent?
Which two encryption layers protect Fiori data in transit, and what does each cover?
On a fresh system, why do the delivered Fiori OData services and SAPUI5 content not work out of the box?
Why should URL rewrite rules live at the reverse proxy, and which HTTP methods should it allow?
When a user launches a Fiori app, where does the initial authentication happen?
How do the ABAP front-end and back-end servers communicate with each other?
Viewed as security layers, what sits between the user's browser and the database in a Fiori landscape?
What is SAPGENPSE used for?
What travels over the HTTPS channel between client and Web Dispatcher for transactional versus fact sheet apps?
Which profile parameters enable SNC on an ABAP system, and what is the default stance on internal RFCs?
Which protocol runs on each communication path in a classic Fiori landscape?
What happens at SAP Web Dispatcher when a client connection arrives?
Outline the steps to set up SSL between the Web Dispatcher and the front-end server.
When a user runs an analytical app versus a fact sheet app, where does SAP Web Dispatcher forward each request?
After SSL termination at the Web Dispatcher, what is the security state of the traffic behind it — and why does that matter?
Why shouldn't you treat SAP Web Dispatcher as a full web application firewall?
How does the Web Dispatcher decide whether a URL belongs to the front end, the back end, or SAP HANA XS?
Beyond simple forwarding, what can SAP Web Dispatcher do with the requests passing through it?