M
mjacobs
Guest
As a person who works with OpenEdge AppServers and their security I would encourage you not to follow the path of opening an internet firewall to anything other than HTTP, HTTPS, and/or VPN traffic. While you can physically deploy an AppServer inside the internet firewall and connect a client to it through a firewall, it goes against any number of accepted best practices to do so. I would suggest to you that your best choices are use VPN or HTTPS if the data traffic includes anything involved with a user's identity or private [tenant] data, which by definition is what you have with a multiple tenants. If you choose the HTTPS and Tomcat route there are a number of advantages, including routing each tenant through their own AIA URI and to the appropriate AppServer and database located in a secure area of your internal network. The details are many, but I hope this high level viewpoint will prove useful. Mike Jacobs
Continue reading...
Continue reading...