For DCN events,
you
can add a certificateValidationLoginModule to perform mutual
authentication,
and stack it with other modules that perform the authentication of device users.
Prerequisites
- Use the same installer provided HTTPS certificates used for
SAP Mobile Server and SAP Control Center
mutual authentication (as part of the SSL security profile). If you use new
certificates exclusively for DCN, import all required files to the correct trust and
key stores.
- Use certificateValidationLoginModue for mutual authentication by
creating a new HTTPS listener exclusively for DCN communications and choosing the
mutual authentication type default_mutual.
See
Securing DCN Communications.
Task- In the navigation pane of SAP Control Center,
open the security configuration that is assigned to the DCN package domain, then
click New.
- Select
certificateValidationLoginModule.
- Configure the properties associated with the provider. See Certificate Validation Properties.
- Set the Control Flag property to sufficient, to ensure this provider is processed
and ordered correctly.
- Share configured property values with the EIS developers who are writing the DCN
sending logic.