AnsweredAssumed Answered

How to securely add Basic Authentication to outgoing request?

Question asked by TimBrabant82305081 on Mar 7, 2017
Latest reply on Mar 8, 2017 by Mark_HE

Hi,

We got a case where we are asked to add Basic Authentication to the outgoing call.

 

Best method I found so far, is by:

Adding the password to Stored Passwords with 'Permit use via context variable reference' checked

+

HTTPs routing assertion > tab Authentication > Specify HTTP Credentials:

  • User Name: <name>
  • Password: ${secpass.<name>.plaintext}

 

However, CA documentation discourages using the 'Permit use via context variable reference' checkbox and rightly so (e.g. anybody doing a debug can see the password by adding ${secpass.<name>.plaintext} to the debug params).

 

Is there a more secure way to achieve this?

 

Kind regards,

Tim

Outcomes