https://community.qlik.com/t5/Suggest-an-Idea/Replicate-Add-Kerberos-and-or-SSL-certificate-connection-to/idi-p/1976836 <DIV> <DIV><SPAN>Hello everyone,</SPAN></DIV> <BR /> <DIV><SPAN>Hope you're all fine.</SPAN></DIV> <BR /> <DIV><SPAN>In order to enhance our security display on client's side, we would like Replicate to fit with a specific way of connection, especially on Oracle endpoints.</SPAN></DIV> <DIV><SPAN>As described in the title, the idea would be to be able to connect to an Oracle endpoint (Source/Target) with only SSL certificate or Kerberos way of working. This means that the account we will be using would not be passworded, and so used as credentials.</SPAN></DIV> <BR /> <DIV><SPAN><STRONG>Functionality:</STRONG> Currently, we are able to connect with "classic" credentials. We would like to disable the password of these credentials, and connect with a certificate, or Kerberos.</SPAN></DIV> <BR /> <DIV><SPAN><STRONG>Motivation:</STRONG> Having this feature added would help us control the usage of these accounts, and improve the security in our environment. </SPAN></DIV> <BR /> <DIV><SPAN><STRONG>Importance:</STRONG> To go deeper, the change has already been submitted to our business, and we will have to fit with the new rules. Not being able to connect with certificates will have huge impacts on the design of the database (as the accounts used will not be the same, especially for Active Directory management)</SPAN></DIV> <BR /> <DIV><SPAN><STRONG>Benefits:</STRONG> Besides fitting with our clients rules, this may helps others teams that will face the same situation as us : trying to enhance security.</SPAN></DIV> <BR /> <DIV><SPAN>Please let us know if you have any questions or remarks</SPAN></DIV> <BR /> <DIV><SPAN>Regards,</SPAN></DIV> <DIV><SPAN>Kevin&nbsp;</SPAN></DIV> <BR /><BR /></DIV> Mon, 05 Sep 2022 09:29:00 GMT Airbus 2022-09-05T09:29:00Z https://community.qlik.com/t5/Suggest-an-Idea/Replicate-Add-Kerberos-and-or-SSL-certificate-connection-to/idi-p/1976836 <DIV> <DIV><SPAN>Hello everyone,</SPAN></DIV> <BR /> <DIV><SPAN>Hope you're all fine.</SPAN></DIV> <BR /> <DIV><SPAN>In order to enhance our security display on client's side, we would like Replicate to fit with a specific way of connection, especially on Oracle endpoints.</SPAN></DIV> <DIV><SPAN>As described in the title, the idea would be to be able to connect to an Oracle endpoint (Source/Target) with only SSL certificate or Kerberos way of working. This means that the account we will be using would not be passworded, and so used as credentials.</SPAN></DIV> <BR /> <DIV><SPAN><STRONG>Functionality:</STRONG> Currently, we are able to connect with "classic" credentials. We would like to disable the password of these credentials, and connect with a certificate, or Kerberos.</SPAN></DIV> <BR /> <DIV><SPAN><STRONG>Motivation:</STRONG> Having this feature added would help us control the usage of these accounts, and improve the security in our environment. </SPAN></DIV> <BR /> <DIV><SPAN><STRONG>Importance:</STRONG> To go deeper, the change has already been submitted to our business, and we will have to fit with the new rules. Not being able to connect with certificates will have huge impacts on the design of the database (as the accounts used will not be the same, especially for Active Directory management)</SPAN></DIV> <BR /> <DIV><SPAN><STRONG>Benefits:</STRONG> Besides fitting with our clients rules, this may helps others teams that will face the same situation as us : trying to enhance security.</SPAN></DIV> <BR /> <DIV><SPAN>Please let us know if you have any questions or remarks</SPAN></DIV> <BR /> <DIV><SPAN>Regards,</SPAN></DIV> <DIV><SPAN>Kevin&nbsp;</SPAN></DIV> <BR /><BR /></DIV> Mon, 05 Sep 2022 09:29:00 GMT https://community.qlik.com/t5/Suggest-an-Idea/Replicate-Add-Kerberos-and-or-SSL-certificate-connection-to/idi-p/1976836 Airbus 2022-09-05T09:29:00Z https://community.qlik.com/t5/Suggest-an-Idea/Replicate-Add-Kerberos-and-or-SSL-certificate-connection-to/idc-p/1988769#M10550 <P>Hello and thanks for the suggestion. We are considering supporting SSL for source and target authentication but have no current plans for Kerberos.</P><P>&nbsp;</P><P>I will update as we progress further.</P><P>&nbsp;</P><P>--bobv--</P> Tue, 04 Oct 2022 16:20:15 GMT https://community.qlik.com/t5/Suggest-an-Idea/Replicate-Add-Kerberos-and-or-SSL-certificate-connection-to/idc-p/1988769#M10550 bobvecchione 2022-10-04T16:20:15Z https://community.qlik.com/t5/Suggest-an-Idea/Replicate-Add-Kerberos-and-or-SSL-certificate-connection-to/idc-p/2010609#M10924 <P>We already have ability to connect source end point using SSL Certificate with Oracle.</P><P>Please refer to&nbsp;<A href="https://help.qlik.com/en-US/replicate/May2022/Content/Replicate/Main/Oracle/OracleDB_Target_DiaBox.htm#Setting%20general%20connection%20properties" target="_blank">Setting general connection properties #Setting general connection properties ‒ Qlik Replicate</A> on how to set it up.</P><P>It’s also explained on Oracle site <A href="https://oracle-base.com/articles/misc/configure-tcpip-with-ssl-and-tls-for-database-connections#prerequisites" target="_blank">ORACLE-BASE - Configuration of TCP/IP with SSL and TLS for Database Connections</A></P><P>&nbsp;</P> Tue, 29 Nov 2022 19:56:56 GMT https://community.qlik.com/t5/Suggest-an-Idea/Replicate-Add-Kerberos-and-or-SSL-certificate-connection-to/idc-p/2010609#M10924 marina_marshak 2022-11-29T19:56:56Z