Securing the FM Web Publishing Admin Console

[Peter Thorson]

I am wondering what options I have as far as securing access to the FMSA Web Publishing Admin Console

Current Setup

DB Server (10.4 Server)

-FMSA 8.0v4

Web Server (10.4 Server)

-WPE 8.0.4.36

-Administration Console Server

-Apache

Currently the Admin console is running on port 80. Is there a way to secure the browser->web admin console connection using ssl/port 443?

There is an option in the Admin console to restrict access to certain IP addresses. I have tried entering the IP of the web server as well as the host name. The enabled/disabled setting for this, or the IP/hostnames in the box does not appear to affect who can log in.

I can log in from any machine regardless of the settings I entered there. Is there something else that needs to be done to make this feature work?

[Steven H. Blackwell]

You can use SSL in conjunction with Apache. That will encrypt traffic from the web browser to the web server machine.

Yu can alos encrypt the traffic beyween the database server and the WPE by enabling the option in the SAT Tool under Security. You msut restart the FIlemaker Server daemon for this to take effect.

The channel between the web server and the WPE is not automatically encrypted by any of these processes. Since the WPE and the web server are on the same machine there is no network traffic between them however.

Please review the Server Tech Brief and the Security Tech Brief for more information:

http://www.filemaker.com/support/upgrade/techbriefs.html

Steven