Symantec Access Management

  • Private Community

  • 1.  session store ssl

    Posted May 10, 2018 12:10 PM

    We have a requirement to start using a session store with SiteMinder 12.7.  We are going to use CA Directory.  Wondering if we need to ssl protect the session instance.  If someone was sniffing the line, could any of the entries being written to the database be used in a malicious way?

     

    Thanks



  • 2.  Re: session store ssl

    Broadcom Employee
    Posted May 11, 2018 04:18 AM

    Hello Sam,

     

    Yes, you can enable SSL to CA Directory Session Store to prevent packet sniffing.

     

    You can also consider using firewall or other network equipment to prevent access to machines.

     

    I hope this helps.

     

    Regards,

     

    Osarobo



  • 3.  Re: session store ssl

    Posted May 11, 2018 08:18 AM

    Thanks Osarobo but that wasn't my exact question.  I know I can enable SSL, my question is wondering if there is anything useful being written across the wire that could be used in a malicious way.  So if someone told me that none of the session data being written to the session store could be used to circumvent security, then I would say why bother with SSL.

     

    Sam



  • 4.  Re: session store ssl
    Best Answer

    Posted May 17, 2018 01:40 PM

    Sam this may be more of a siteminder question than it is CA Directory