Find Answers

Filter Search Results
All Operating Systems:
All Products:
All Solution Types:
Source:
 
Ask a Question
Example: "Database could not be verified"  
Tips | Start Over | Solutions | Alerts | Patches | Defects  
Pages [Next]
  Results
CMS-XML Tips for Securing SBM Server
... How-To Secure SBM Server When securing SBM, we ... Secure connections from the ... As of SBM 11.8, we automatically lock down access to AJP using a random shared secret at the time of install; see the Security section of the Configurator. ... Secure connections from the browser / client to SBM ... Use Secure Response Headers: ... Use SBM Configurator to enable security response headers. Under Security > Secure Response Headers check Enable. ... Open IIS Manager on the server ... The SBM development team utilizes its own Tomcat, JDK and other third party components. We update Tomcat and JDK with every release.
CMS-XML LDAP Import shares avatar
Development Manager 1.2Release Control 3.3Requirements Manager 1.0Service Manager 3.1
CMS-XML SBM Configurator cannot connect to Oracle if there are no advanced security settings
Release Control 6.0Release Manager 5.1.1Service Manager 5.1.1
CMS-XML How to setup and use Java VisualVM to troubleshoot, take snapshots and monitor SBM Tomcat nodes
1. Connecting JVVM to Tomcat requires opening up the JMX Console on the target Tomcat node(s). Doing so is a significant security risk; an unrestricted JMX console introduces vulnerabilities by allowing unauthenticated commands against the node.
CMS-XML How to install a self signed certificate or Certificate Authority certificate into the SBM Java Keystore.
Open a command prompt and navigate to the following location: <SBM_Install_dir>\Common\ jdk 1.7\ jre \lib\ security For example: C:\Program Files\Serena\SBM\Common\jdk1.7\jre\lib\security or C:\Program Files\Micro Focus\SBM\Common\jre1.8\lib\security
CMS-XML Oracle Advanced Security and SBM (data encryption)
The Java components (or Tomcat) of SBM connect to the Oracle server with checksum and encryption set to 'Accepted'. As long as the server requires encryption and integrity, the Java components will connect securely. However if the server is defaulted to 'Accepted', encryption of data to/from the Java components will be turned off.
HTML Serena Business Manager 10.1.5 Security Bulletin
Summary The OpenSSL library has been upgraded to 0.9.8zc. Upgrade SBM Java to Latest (INT259223) The Java Development Kit (JDK) has been upgraded to version 1.7.0_67.
CMS-XML If an ALF event is sent without a SOAP header element and “no_authentication=true" then event mgr returns a fault
SBM 10.1.2 does not test for this case and throws a fault when accessing a null trying to analyze the non-existent WS- Security headers. For information on How to prevent the Event Manager from accepting external events without credentials, visit - http://knowledgebase.serena.com/InfoCenter/index?page=content&id=S138463
HTML Serena Business Manager 10.1.4 Security Bulletin
Summary uses when storing internal passwords in the database was updated. Upgrade to JDK 1.7.0_55 due to security fixes (INT251293) Security-related library update.
CMS-XML If an ALF event is sent without a SOAP header element and “no_authentication=true" then event mgr returns a fault
SBM 10.1.2 does not test for this case and throws a fault when accessing a null trying to analyze the non-existent WS- Security headers.
Pages [Next]

Welcome kb sso

My Recent Searches

Search Feedback

Are we answering your questions?

Additional Assistance

  • Submit a Case Online
  • FAQs