12 Feb 2021 03:22 PM
Hi,
We are frequently getting below question from our network team,Please provide configurations/screenshots showing encryption in transit is enabled over port 9999.
I didn't find any relevant documentation to provide them reference.
Solved! Go to Solution.
12 Feb 2021 03:28 PM
Unless you reconfigured the ActiveGate manually, there is https communication with TLS1.2 between ActiveGate and OneAgents.
12 Feb 2021 03:36 PM
They are asking for some sort of reference documentation.i didn't find any.
Is there any way i can show them proof.
Thanks,
Tarun
12 Feb 2021 03:45 PM
Look here, focus on ssl-protocols:
https://www.dynatrace.com/support/help/shortlink/sgw-configure#section-comcompuwareapmwebserver-
12 Feb 2021 04:58 PM
also here:
Authentication
ActiveGate authenticates OneAgent requests (SSL handshake and environment ID authentication).
And here:
Communication between OneAgents and ActiveGate takes place over an encrypted HTTPS channel. ActiveGate provides an authentication certificate to all connecting clients. While OneAgent instances may ignore the validity of ActiveGate certificates (depending on configuration), connections from browser clients (such as the RUM JavaScript tag) do verify that the hostname listed in the certificate is correct, before they send data.