Sage Software 5.8 manual Chapter Self Service Security, Application Level Security

„

„

„

Server Level Security. CRM supports all industry server security standards, and there are a number of methods available to secure the Self Service server.

−SSL (Secure Sockets Layer) encryption can be employed to secure data sessions with client users. When an SSL session commences, the server sends its public key to the browser. In turn, the browser uses this key to send a randomly generated key back to the server. As a result, there is a secret key exchange for the session. When IIS uses SSL encryption, CRM is aware of this and when the client attaches any documents to a form in CRM it sends through the encrypted sessions.

−A firewall can be used to restrict unauthorized access to the database. Firewalls are commonly employed to give users secure access to the Internet and, at the same time, separate a company's Web server from its internal network. Various types of firewall are available, including packet filter, proxy server, NAT (network address translation), and firewalls that adhere to stateful inspection technology standards.

CRM Self Service can run behind a firewall in order to protect the server from malicious attacks and to allow only certain types of interactions to take place. The CRM Self Service server can be physically separated from the CRM server, and a firewall can be installed around the CRM server.

Database Level Security. CRM Self Service users do not have direct access to the database. The CRM Self Service pages opened by the user send requests via IIS to the eWare DLL to access the database.

Network Security. CRM supports all industry standard network encryption protocols.