To ensure that questions get required attention from community members and are NOT left unanswered, it’s important for the author to indicate (by selecting “Yes” or “No” when prompted) whether the question was answered.
For more information, please refer to this announcement explaining best practices for getting answers to questions.
Security and OTBI Agents
Summary:
Hello everyone!
I've just started at a new company and have found out that internal policies mean we cannot use OTBI Agents at all (even to send reports without PII data). Specifically, there is a concern about TLS failures with the agents. If there is a failure in TLS connection, the report will still send and is not encrypted. I am interested in using OTBI agents to send to our webservers only.
There is a knowledge Doc ID 2539891.1 that covers this in more detail, but I still have more questions:
- If we send to our webserver only, can we reduce the probability of TLS failures by ensuring our own security certificates are up-to-date and system dates are correct on both ends?