Effective December 3, NetApp adopts Microsoft’s Business-to-Customer (B2C) identity management to simplify and provide secure access to NetApp resources.
For accounts that did not pre-register (prior to Dec 3), access to your NetApp data may take up to 1 hour as your legacy NSS ID is synchronized to the new B2C identity.
To learn more, read the FAQ and watch the video.
Need assistance? Complete this form and select “Registration Issue” as the Feedback Category.

Active IQ Unified Manager Discussions

Restrict OnCommand Insight Report Access to HTTPS

MRJORDANG

Hello,

Is there a way to restrict OnCommand Insight Report access to HTTPS?   Out of the box, both HTTP and HTTPS access are enabled.   I'd like to disable HTTP access to the Administration Console and the reports.

Thanks,

Jordan

1 ACCEPTED SOLUTION

yuvaraju

Currently, report viewers will only have the ability to view reports over HTTP. We will look at adding complete support for https in the upcoming releases.

View solution in original post

8 REPLIES 8

yuvaraju

Hi Jordan,

As of now, OnCommand Report does not have complete support for HTTPS. http access is required for the product to function.Disabling http will impact reporting connection.Only administration console has https support. We are looking at adding complete support for https in the upcoming releases.

Thanks,

Yuvraj

MRJORDANG

Thank you for the response Yuvraj.   Specifically, I'd like to ensure that my "Report Viewers" authenticate and view reports over a secured (HTTPS) connection.   You said "Disabling httpwill impact reporting connection" - does this mean my "Report Viewers" only have the ability to view reports over HTTP?

Thanks again for the response. 

Jordan

yuvaraju

Currently, report viewers will only have the ability to view reports over HTTP. We will look at adding complete support for https in the upcoming releases.

View solution in original post

AOIMATSU00

so, if we are authenticating with ldap for report viewing, that is sent unencrypted? 

MRJORDANG

Great question.   Im guessing the Web Browser -> Insight Web Server traffic would be unencrypted, inluding your username and password since they dont support https.   However, I'm not sure if the Insight Server is Secure LDAP capable or not.  I've never played around with it.    Im just speculating.  Also, this is a pretty old thread so there may be updates to OnCommand Insight Report that address HTTPS and Secure LDAP.

AOIMATSU00

It just seemed odd that you would turn on intergration with LDAP for ease of managing users, (specifically for logging into reporting functionality) and then not encrypt the authentication traffic for those users....Not so concerned about the report data but authentication. 

MRJORDANG

Agreed.  If anything, the login credentials should be secured.   I personally hope they encrypt everything - login credentials and report data - so I can just tell our Security team that everything is using HTTPS.

MRJORDANG

Excellent.  That is what I needed to know.   HTTPS support would be great as company policies require HTTPS for various operations and types of data.   That being said, there probably are some reports we can make available to all internal users without authentication.   Typically, we prefer to keep things as secure as possible (require authentication and keep everything encrypted) so we don't have any concerns.

Thanks again for the response.  Please keep the OnCommand Insight Report community informed with regard to the future HTTPS enhancements.  

Announcements
NetApp on Discord Image

We're on Discord, are you?

Live Chat, Watch Parties, and More!

Explore Banner

Meet Explore, NetApp’s digital sales platform

Engage digitally throughout the sales process, from product discovery to configuration, and handle all your post-purchase needs.

NetApp Insights to Action
I2A Banner
Public