THe SAP PI document at www.f5.com/pdf/deployment-guides/sap-pi-dg.pdf has mistakingly mentioned that Oneconnect without http profile should be used for SAP applications. From my SR at 1-388181154, we found that this would cause all sort of security breach, data leak ....by letting the wrong user read the unintended data. So, my request is to please either update the doc to not use this combination or take out the doc from the website.
We will look into this, but One Connect can not be provisioned without an HTTP Profile.
You are correct Shweta, that combination is possible. We will review the case and update the guide.
Thanks for considering Nojan. I still see the doc isn't updated with my request.
Page 16 - 17 shows the VIP settings, showing a screenshot called "Figure 9 - Selecting the profiles for the virtual server", where you can see that the http profile is set to "none" ( cut right at the bottom of the screenshot from v9.x ). In addition, the text on the VIP settings does not mention choosing http profile for this VIP.
This needs to be updated.
Many Thanks Shweta
Shweta, it's in testing and definitely will be updated. Thank you so much for keeping an eye on it, and again, for reporting it in the first place.
