Message Image

Skip main navigation (Press Enter).

Symantec Access Management

View Only

Back to discussions

Expand all | Collapse all

Encryption of Password in SOAP Header for CA Advanced Authentication Web Service

IDAYA SANTHOSHKUMARApr 02, 2024 06:35 AM

Hello Community, I'm currently integrating CA Advanced Authentication (formerly known as CA Strong ...

Namish Tiwari3 days ago

Hi Jaya, The credentials to a protected Web service is sent in clear text, you have to use the https ...

1. Encryption of Password in SOAP Header for CA Advanced Authentication Web Service

0 Recommend
IDAYA SANTHOSHKUMAR
Posted Apr 02, 2024 06:35 AM

Reply Reply Privately
Hello Community,

I'm currently integrating CA Advanced Authentication (formerly known as CA Strong Authentication) with a SOAP-based web service. I would like to know if the encryption of the password is done directly within the SOAP header when using this web service.

From my understanding, best practices typically involve using HTTPS to encrypt the entire SOAP message during transit. However, I'm interested to learn if CA Advanced Authentication specifically encrypts the password within the SOAP header or if additional measures need to be taken.

Could someone clarify this aspect for me? Any insights or recommendations on securing the integration with CA Advanced Authentication would be greatly appreciated.

Thank you in advance!

Regards,

Idaya
2. RE: Encryption of Password in SOAP Header for CA Advanced Authentication Web Service

0 Recommend
Broadcom Employee

Namish Tiwari
Posted 3 days ago

Reply Reply Privately
Hi Jaya,

The credentials to a protected Web service is sent in clear text, you have to use the https to encrypt the whole message.

Let me know if you have more questions.

-Namish

Original Message

Copyright 2023. All rights reserved.

Powered by Higher Logic