JDBC connection to Microsoft SMS/SCCM - Is it secure?

galvi024
Kilo Explorer

‎04-13-2012 10:03 AM

Hello,
We are looking into using the JDBC connection from our mid-server to a SCCM server, in order to import configuration management data into our CMDB. However, our group that manages the Windows SCCM server is concerned with our method of connecting. Specifically, they are asking if the JDBC connection uses SSL. From what I've read on JDBC, it can be set up either way in the applications code.

Does anyone know if ServiceNow encrypts the JDBC connection?
(We are running June 2011/Patch3)
Thanks!
Mike

0 Helpfuls
  • 1,856 Views
6 REPLIES 6

Christopher_Mal
ServiceNow Employee
ServiceNow Employee

‎04-14-2012 12:46 AM

Once on the mid server the jdbc call is as secure to the database as pretty much any standard jdbc call. Meaning it isn't, even at authentication, but this is the case for all code running in your internal network making jdbc calls (more-than-likely).

I usually recommend making a user that has limited rights and access to the tables in your database for this integration.

Correct me if I am wrong blogosphere, but that is how I understand it.


0 Helpfuls

tony_fugere
Mega Guru
In response to Christopher_Mal

‎04-14-2012 10:01 AM

Chris's input is excellent and accurate to my knowledge. Thanks Chris and Joey for replying to this thread with me!


0 Helpfuls