Securing applications communications running in the same server

Hi everybody,
I want to share critical information between two applications (medical information about patients) using JMS queues, moreover due to this criticity i was planning to secure this communication using SSL. The problem is that one of the client applications, because of his architecture, have problems when accessing the JMS queues.
But I have to say that both applications will run in the same server (physical machine), knowing that, what kind of security problems could we encounter if, finnally we don't cypher the communication?
I guess that the danger is lower than if the two applications would run in different machines, wouldn't it?
Thanks!!!

hi,
add crossContext="true" in server.xml under tomcatx.x\conf\ in your <Context tag

Similar Messages

  • Activating MS Office 2013 ProPlus via KMS running on the same server

    Given: Microsoft Windows Server 2008 R2 Enterprise 64-bit, all the latest security updates applied.
    KMS service set up and running, all the recommended updates applied (to handle possible activation issues for Windows 8 etc)
    Microsoft Office 2013 Standard deployed on the server mentioned above and on workstations on intranet, volume licensing in effect (proper KMS key for activation of Microsoft Ofice 2013 has been entered).
    Problem: I can't activate MS Office 2013 installation running on the same server where KMS service is being run.
    There are no entries in KMS event log related to this failure.
    Everything was restarted, reinstalled etc several times already (including installing 32-bit and 64-bit versions of the Office).
    Output of slmgr.vbs /dlv 2E28138A-847F-42BC-9752-61B03FFF33CD:
    Windows Script Host
    Software licensing service version: 6.1.7601.17946
    Name: Office 15, KMSHostVL edition
    Description: Office 15, VOLUME_KMS channel
    Activation ID: 2e28138a-847f-42bc-9752-61b03fff33cd
    Application ID: 0ff1ce15-a989-xxxx-xxxx-xxxxxxxxxxxx
    Extended PID: 55041-00206-234-486666-03-xxxx-xxxx.xxxx-xxxxxxx
    Installation ID: 01683679734050124078134659xxxxxxxxxxxxxxxxxxxxxxxxxxx
    Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88342
    Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88343
    Use License URL: http://go.microsoft.com/fwlink/?LinkID=88345
    Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88344
    Partial Product Key: xxxxx
    License Status: Licensed
    Remaining Windows rearm count: 4
    Trusted time: 2/05/2015 10:00:12 AM
    Key Management Service is enabled on this machine
    Current count: 0
    Listening on Port: 1688
    DNS publishing enabled
    KMS priority: Normal
    Key Management Service cumulative requests received from clients
    Total requests received: 0
    Failed requests received: 0
    Requests with License Status Unlicensed: 0
    Requests with License Status Licensed: 0
    Requests with License Status Initial grace period: 0
    Requests with License Status License expired or Hardware out of tolerance: 0
    Requests with License Status Non-genuine grace period: 0
    Requests with License Status Notification: 0
    OK
    Output of cscript ospp.vbs /dstatus
    Microsoft (R) Windows Script Host Version 5.8
    Copyright (C) Microsoft Corporation. All rights reserved.
    ---Processing--------------------------
    SKU ID: b13afb38-cd79-4ae5-xxxx-xxxxxxxxxxxx
    LICENSE NAME: Office 15, OfficeStandardVL_KMS_Client edition
    LICENSE DESCRIPTION: Office 15, VOLUME_KMSCLIENT channel
    LICENSE STATUS: ---OOB_GRACE---
    ERROR CODE: 0x4004f00c
    ERROR DESCRIPTION: Run the following: cscript ospp.vbs /ddescr:0x4004f00c
    Last 5 characters of installed product key: GVGXT
    DNS auto-discovery: KMS name not available
    Activation Interval: 120 minutes
    Renewal Interval: 10080 minutes
    KMS host caching: Enabled
    ---Exiting-----------------------------

    Given: Microsoft Windows Server 2008 R2 Enterprise 64-bit, all the latest security updates applied.
    KMS service set up and running, all the recommended updates applied (to handle possible activation issues for Windows 8 etc)
    Microsoft Office 2013 Standard deployed on the server mentioned above and on workstations on intranet, volume licensing in effect (proper KMS key for activation of Microsoft Ofice 2013 has been entered).
    Problem: I can't activate MS Office 2013 installation running on the same server where KMS service is being run.
    There are no entries in KMS event log related to this failure.
    Everything was restarted, reinstalled etc several times already (including installing 32-bit and 64-bit versions of the Office).
    Output of slmgr.vbs /dlv 2E28138A-847F-42BC-9752-61B03FFF33CD:
    Windows Script Host
    Software licensing service version: 6.1.7601.17946
    Name: Office 15, KMSHostVL edition
    Description: Office 15, VOLUME_KMS channel
    Activation ID: 2e28138a-847f-42bc-9752-61b03fff33cd
    Application ID: 0ff1ce15-a989-xxxx-xxxx-xxxxxxxxxxxx
    Extended PID: 55041-00206-234-486666-03-xxxx-xxxx.xxxx-xxxxxxx
    Installation ID: 01683679734050124078134659xxxxxxxxxxxxxxxxxxxxxxxxxxx
    Processor Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88342
    Machine Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88343
    Use License URL: http://go.microsoft.com/fwlink/?LinkID=88345
    Product Key Certificate URL: http://go.microsoft.com/fwlink/?LinkID=88344
    Partial Product Key: xxxxx
    License Status: Licensed
    Remaining Windows rearm count: 4
    Trusted time: 2/05/2015 10:00:12 AM
    Key Management Service is enabled on this machine
    Current count: 0
    Listening on Port: 1688
    DNS publishing enabled
    KMS priority: Normal
    Key Management Service cumulative requests received from clients
    Total requests received: 0
    Failed requests received: 0
    Requests with License Status Unlicensed: 0
    Requests with License Status Licensed: 0
    Requests with License Status Initial grace period: 0
    Requests with License Status License expired or Hardware out of tolerance: 0
    Requests with License Status Non-genuine grace period: 0
    Requests with License Status Notification: 0
    OK
    Output of cscript ospp.vbs /dstatus
    Microsoft (R) Windows Script Host Version 5.8
    Copyright (C) Microsoft Corporation. All rights reserved.
    ---Processing--------------------------
    SKU ID: b13afb38-cd79-4ae5-xxxx-xxxxxxxxxxxx
    LICENSE NAME: Office 15, OfficeStandardVL_KMS_Client edition
    LICENSE DESCRIPTION: Office 15, VOLUME_KMSCLIENT channel
    LICENSE STATUS: ---OOB_GRACE---
    ERROR CODE: 0x4004f00c
    ERROR DESCRIPTION: Run the following: cscript ospp.vbs /ddescr:0x4004f00c
    Last 5 characters of installed product key: GVGXT
    DNS auto-discovery: KMS name not available
    Activation Interval: 120 minutes
    Renewal Interval: 10080 minutes
    KMS host caching: Enabled
    ---Exiting-----------------------------

  • How Can I create a cluster of two instances running on the same server?

    Hello,
    I can't find how to create a cluster or even a failover rule for my two instances running on the same server ODSEE 11gR1.
    Could you please help?
    Thanks,

    Hello,
    Clustering (intended as Sun Cluster, Veritas Cluster, etc... ) IS NOT SUPPORTED since 7.0:
    http://docs.oracle.com/cd/E20295_01/pdf/821-1216.pdf [page 20]
    and, based on my own experience, is the WORST way of achieving high availability of an LDAP Directory Service and an almost GRANTED way to get replication issues in your topology (lock, split, re-init, etc...).
    Please use instead the 'application-level' clustering that you get out of the box with the Multi-Master Replication.
    http://docs.oracle.com/cd/E20295_01/html/821-1217/index.html
    http://docs.oracle.com/cd/E20295_01/html/821-1220/fhkry.html#scrolltoc
    HTH,
    Marco

  • Application and Database on the same server

    I have a Java Application and a db2 database(SWDTEST) that reside on the same server. In the Application I want to connect to the database. What would I use to do this? When the application resides on a client machine I use the "sun.jdbc.odbc.JdbcOdbcDriver" driver and can get a connection. Code looks like:
    try{
    //load the driver class
    Class.forName("sun.jdbc.odbc.JdbcOdbcDriver");
    //Define the data source for the driver               
    String wdURL = "jdbc:odbc:SWDTEST";
    String username = "UNTEST";
    String password = "PTEST";
    wdConnection = DriverManager.getConnection(wdURL, username, password);
    wdStatement = wdConnection.createStatement();
    catch(SQLException e)
    System.out.println( e.toString() );
    But when I move the same application to the server and run it I get the following error message:
    java.sql.SQLException: [IBM][CLI Driver] SQL1013N The database alias name or database name "SWDTEST" could not be found. SQLSTATE=42705
    Do I need to set something on the server so that SWDTEST is a recognized database name or connect to it some other way?
    Thanks in advance.

    Does the server have ODBC installed on it? (Windows boxes will, unix will likely not.)
    Do you have a ODBC driver installed on the the server. This has nothing to do with java.
    Have you created a DSN on the server?

  • XI and R/3 Running on the same Server.

    Hello Friends!
    One year ago I've installed XI on a machine that already had a R/3 instance. Although there were different instances, one for SAP R/3 and one instance for the ABAP part of XI, I couldn't get to connect XI to the R/3, appartently XI searched for the instance through the IP address, ignoring the instance ID parameter.
    Now I have again the same challenge, I have only one machine to run R/3 and XI.
    Does anyone know if it is possible to do?

    Hi Tadeo,
    from ERP 2004 you can install XI on the same server.
    Regards,
    Udo

  • Can FMS 4.5 be run on the same server as Cpanel?

    I am looking at using the FMS 4.5 to take ingress of RTMP live streams and publish HTTP Live streams to a content delivery network.  I see that FMS 4.5 has an apache build to do the http part,  We have two dedicated servers running Cpanel/Webhost Manager that are litely loaded.
    1) Could we accomplish this using the apache that is part of Cpanel?
    2) Or, does the FMS need its own apache using port 80?
    Thanks 

    hi,
    You may very well customise your external apache to work along with FMS to use the HTTP live streaming features.. However there are some Apache's version specific things that you would need to take care of..
    I have a personal blog post for "how to configure external apache for HLS".. you may check it here:
    http://knowfms.wordpress.com/2011/09/29/how-to-set-up-your-external-apache-for-hds-and-hls /
    Hope it helps..

  • Two Communication Server in the same Server ?

    Hi All,
    do you know which are the steps and recommendations to install TWO Communication Station in the same server (Windows 2003) ?
    The first one is connect to CRM develop system, and the second one to the CRM Quality System.
    Regards,
    Davide
    [email protected]

    Hello Davide,
    Note 503340 is not valid for 5.0 and above but its major points are still true:
    1. Only one default destination can be setup in the DCOM Connector
    which is used by the mobile clients after the installation.
    2. Only one default COM4ABAP instance can be setup on the
    communication station. This COM4ABAP instance is started
    automatically after reboot.
    DCOM Connector is now .NET Connector and COM4ABAP is now NET4ABAP in 5.0 and higher.
    Clearly, connecting to TWO (or more) CRM system has two parts:
    a.) For Data Transfer with Conntrans. You can configure A SINGLE COMMSTATION INSTANCE to communicate with MULTIPLE destinations by just adding destinations in the QmtCnfg tool on the CommStation. You can then specify this Commstation and the destination value as you created in the QmtConfg tool on the client and data transfer will work.
    b.) For changing passwords of Employees in Tx: SMOEAC. This uses the NET4ABAP service running on the CommStation which is called by the CRM Server. There can be ONLY ONE NET4ABAP service running on a CommStation and this connects to ONLY ONE CRM SYSTEM at a time. Hence it is not possible for one NET4ABAP service to serve multiple CRM systems.
    If you need both a and b, it is not possible. If you need only a, it is possible and detailed above and also in the CommStation installation guide.
    I also believe you have a message running with SAP Support on this same issue and you would have gotten the same details from them.
    Best Regards,
    Ankan

  • Can different cluster  of SAP Business One installed on the same Server

    Hi!
       Can anyone tell me if B1 different cluster version installed and run on the same server. Example B1 2005A AND B1 2005B. If it can, could you please include the procedure how can it be done.
    Thanks,
    Jo Borlagdan

    No, A and B have different patch cycles - so there would be conflicts in SBO-Common. Therefore it will not work.
    You could try to workaround that with named instances of MSSQL, but installation & update would need additional care + workarounds.
    The best way to combine 2 SAP Business One cluster "servers" but still on one hardware would be to use a tool like VMWare... - but such a configuration has not been released by SAP - i.e. if there's an issue that could be traced back to the VMWare system, SAP might not be (li?)able to fix it
    Sorry,
    Frank
    Message was edited by: Frank Moebius
    BTW: Please note that you need to think eventually about conflicts with MS licenses. SAP has an agreement with MS which ASFAIK covers the license for 1 VMWare Windows system on 1 Windows PC so that we can use WMWare for SAP Business One sandbox systems - after RAM upgrades () it works fine...

  • SUP and WSUS on the same server.

    Hi,
    My SCCM environment as follows:
    Windows Server 2012 R2 Standard, Configuration Manager 2012 R2, SQL 2012 SP1 CU7
    WSUS 6.3.9600.163.84 . All these running on the same server.
    SCCM SUP role is enabled, WSUS using SQL Express database. This is Central and Primary site server as well.
    Issue is:
    1. SUP does not get updates. SUP is configured to get updates from Internet and WSUS console Sync options pointing to its own server name. I tried to change WSUS console sync option to internet couple of times but it looks WSUS changes this back.
    2. I want to use WSUS/SUP for SCCM Endpoint definitions update and also for patch installation for clients (Clients Windows update pointing to this server)

    What do you mean that this is a Central and Primary site server? Those two roles can not be installed on the same site server.
    When it comes to SUP in ConfigMgr, the installation process on WS 2012 is basically this:
    1. Install the Windows Server Update Services role, run the initial configuration wizard.
    2. Install a SUP site system role on the server and let ConfigMgr configure everything.
    Additionally I'd not run a SQL Express for the WSUS since you already have SQL installed. Instead I'd create the SUSDB on the same SQL server that you're running the ConfigMgr DB on.
    In my preprequisites installation tool, all you need to do is to open a PowerShell console, run the tool and click on the Install WSUS button, specify the SQL Server and the tool will automatically configure everything. When the tool has completed, you can
    go ahead and add the SUP from ConfigMgr and configure it from the ConfigMgr console.
    You'll find the tool here:
    http://gallery.technet.microsoft.com/ConfigMgr-2012-R2-e52919cd
    Regards,
    Nickolaj Andersen | www.scconfigmgr.com | @Nickolaja

  • System copy of a DEV system on the same server

    Hi experts!
    In our company, we have a 2-systems landscape, DEV and PRD, and we are working on the system together with another organization of the same company. Now, they want me to "split" the systems, one for each organization, making a copy of the systems. In other words, they want to completely split the systems, running on the same server, development server will have 2 systems, DEV and DEV' and so on in production server.
    The doubt is in developments, as I don't know how to face the CTS and TMS setup to provide 2 different development environments, without losing the actual change requests for both systems. As you know, I have to change the SID, because the copy will be in the same server, so what happends with change requests?? Do I have to make a copy of DIR_TRANS and set up a new DIR_TRANS for the new system???
    Thank you in advance!
    Fran.

    Hi William,
    I guess I did not explain it properly.
    Now we have:
    1. System DEV in DEV server.
    2. System PRD in PRD server.
    Transport later ZDEV from DEV to PRD.
    And we will do:
    1. Homogeneous system copy from DEV to DEV' in DEV server, so we will have DEV and DEV' on the same server.
    2. Homogeneous system copy from PRD to PRD' in PRD server, so we will have PRD and PRD' on the same server.
    Sizing is good, servers are very powerful.
    The doubt is configuring the TMS, as we will have two different development environments on the same server. How do I have to set up the TMS properly???
    Thanks!!

  • Multiple applications running on the same portal server

    Environment : EP 7.0 SPS12
    We have multiple portal applications running on the same portal with different login page for each application. On one of our employee portal, we want to put a login page link for another portal application running on the same portal which requires a different user ID and password to access that application.
    The problem we are encountering is, the login page link we put in our employee portal is bypassing the login page for the other application and using the same session as the employee portal. What can I do to make sure application login page show up when accessing the link from employee portal?
    Your help is really appreciated.
    Thanks
    Bhabesh Patel

    Hi,
    thanks for the clarification. I think I do understand now and the only thing I can think of is to delete the session cookie.
    The problem with that is that you would not be able to use "simple" links (e.g. you could not just call the URL of the other application, but you would have to create some application (a simply JSP would probably be fine) that deletes the cookie and redirects you to the new application.
    An other option would be to create DNS aliases that so that the session cookie is not sent (but depending on your setup this might have other drawbacks). Since the cookies are not valid for the other domains you would always start with a new login when you access a new application (e.g. the employee portal has the url portal.employee.company.com and the customer portal has portal.cutomer.company.com. Then (if the settings for ume.logon.security.relax_domain.level,see http://help.sap.com/saphelp_nw70/helpdata/en/5e/473d4124b08739e10000000a1550b0/frameset.htm is correct)
    Hope this helps,
    Holger.

  • How to set Different applications running on the same computer to use different Gateways?

    Dear All,
    I would like to have different applications running on the same computer to use different Gateways (both gateways are in the same subnet).
    Is it possible in Windows7 with / without a third-party utility?
    Current scenario & requirements:
    I have two internet connections. Both are in the same subnet (192.168.1.0/24) and connected to the same LAN switch
    Gateway for the first connection is 192.168.1.1
    Gateway for the second connection is 192.168.1.2
    I need to set my chrome browser & google talk to use the gateway 192.168.1.1
    I need to set my IE & skype to use the gateway 192.168.1.2
    Is it possible? Answers are appreciated!!
    Regards,
    Anees

    Hi,
    I agree with Bill. Gateway is essentially an IP address for one network to other networks. For example, you have two networks: network A and network B, to make the two networks communicate with each other, you must go through Gateway. That is, as long
    as you set Gateway, then you can make the two networks communicate with each other. The ip address for Gateway is the ip of device with routing enabled. One host machine can own multiple gateways. 
    Andy Altmann
    TechNet Community Support

  • Multiple instances of weblogic server 6.1 running on the same machine

    Hi,
    I need to run two instances of weblogic server 6.1 running on the same
    machine. I need one for development and the other one running the live
    applications. I need two instances to be independent of each other. I am
    running weblogic server as an NT service. So I need two servers to start
    from the service so they are independent of each other.
    Thanks
    Madhu

    Hi.
    You can create new servers in your domain via the console. Be sure they are
    listening to different ports, however. If your NT machine supports more than
    1 IP address then you could alternatively bind each server to a different
    address.
    I'm not sure if this answers your question?
    Regards,
    Michael
    m holur wrote:
    Hi,
    I need to run two instances of weblogic server 6.1 running on the same
    machine. I need one for development and the other one running the live
    applications. I need two instances to be independent of each other. I am
    running weblogic server as an NT service. So I need two servers to start
    from the service so they are independent of each other.
    Thanks
    Madhu--
    Developer Relations Engineer
    BEA Support

  • EJB doesn’t respond with BPEL running on the same remote server

    To all,
    I have a BPEL transformation (XSL) calling a remote EJB. It worked with the BPEL process running on the BPEL Designer or in the local host. However if I deploy and run the same BPEL process to the remote server (i.e. the EJB and the BPEL reside in the same server), the EJB doesn’t seem to respond. The process runs fine but just does have the values from the EJB. Where should I look and debug this problem?
    Here is some more information about the EJB: I have the XSL calls a User Defined Extension component. This component calls a Java utility program in turn calls an EJB client (i.e. Business Delegate). The EJB client calls a Session bean (Session Façade) in turn calls two Entity beans. I packaged the codes in two jars: the EJB and the EJB client in one jar and Java utility programs in another jar.
    I deployed the EJB in EAR using the JDeveloper to the remote BPEL server. I FTPed the two JAR files into <ORACLE_HOME>/j2ee/OC4J_BPEL/applib in the remote server. After the deployment, I test the transformation either from BPEL Designer and BPEL local host. They both access the remote EJB successfully. However if I deploy the BPEL process to the remote server and run it from the remote server, the EJB doesn’t seem to respond. All the functions worked correctly except there is no value from the EJB. Any advice will be appreciated.

    Try the following, in order, until (hopefully) resolved:
    1a. Delete Preferred Network(s)
    System Preferences > Network > Wi-Fi > Advanced > Wi-Fi tab
    Under "Preferred Networks," delete the network(s) you regularly use from the list.
    1b. Delete AirPort Keychain Entries
    Launch the "Keychain Access" application located in Applications/Utilties.
    In the windows on the left side: Select login for Keychains and "All Items" for Category.
    Click on the "Kind" filter at the top, and look for any "AirPort network password" entries...and delete them.
    1c. Add Preferred Network(s)
    System Preferences > Network > Wi-Fi > Advanced > Wi-Fi tab
    Add the preferred network(s) using the "+" button.
    Restart or log out then back in.
    2. Move System Configuration Files
    (Note: You will have to reestablish your network connections settings.)
    Go to /Library/Preferences
    Move the SystemConfiguration folder to the desktop.
    Restart your Mac. (Note: OS X will rebuild the files that are now sitting on your desktop. If this doesn't resolve the issue, you can move the folder back to it's original location.)

  • Running multiple agents on the same server

    Has anyone run multiple instances of essbase on the same server, using the agentport command? If so, how well did it work and what do you think about running it in a production environment?Thanks alot!

    I have tested it, but the documentation does not recommend using this feature in production. You can achieve the same thing with creating test applications/databases.Also, when you run 2 instances of the agent on one box, you must modify the essbase.cfg of the client machine to indicate which instance (port) that client will connect to.Regards,Jade------------------------------Jade ColeSenior Business Intelligence ConsultantClarity [email protected]

Maybe you are looking for