![]() | ![]() | |
![]() | ||
![]() |
The SSH Tectia Server configuration requires tunneling settings to allow users in group sapuser
to tunnel connections to any ports used by the SAP GUI traffic on the SAP Application Server. Remote tunneling on servers (via the SSH Tectia Server running on the SAP Application Server) is denied for everyone.
The configuration settings are done on tab Configurations → Edit Configurations → SSH Tectia under the SSH Tectia Server configuration Rules → <rule-set> → Tunnels view.
Example tunneling settings are shown in Figure 5.15.
The SSH Tectia Client software on the user workstations needs to be configured to use transparent TCP tunneling in handling the SAP GUI traffic. Figure 5.16 shows the tunneling rule settings for capturing and encrypting all SAP traffic generated by the sap.example.exe
application and related to any
host address or listen port. The user name and the destination definition will be extracted from the information sent by the SAP application.
The configuration settings are done on tab Configurations → Edit Configurations → SSH Tectia under the SSH Tectia Client configuration Transparent tunneling → Filters view.
Example settings are shown in Figure 5.16.