
Chapter 4
Self Service Security
In this chapter you will learn about:
Self Service security.
Application Level Security
CRM offers a number of security and access options at the application level.
Server Level Security. CRM supports all industry server security standards,
and there are a number of methods available to secure the Self Service server.
− SSL (Secure Sockets Layer) encryption can be employed to secure data
sessions with client users. When an SSL session commences, the server
sends its public key to the browser. In turn, the browser uses this key to
send a randomly generated key back to the server. As a result, there is a
secret key exchange for the session. When IIS uses SSL encryption, CRM
is aware of this and when the client attaches any documents to a form in
CRM it sends through the encrypted sessions.
− A firewall can be used to restrict unauthorized access to the database.
Firewalls are commonly employed to give users secure access to the
Internet and, at the same time, separate a company's Web server from its
internal network. Various types of firewall are available, including
packet filter, proxy server, NAT (network address translation), and
firewalls that adhere to stateful inspection technology standards.
CRM Self Service can run behind a firewall in order to protect the server
from malicious attacks and to allow only certain types of interactions to
take place. The CRM Self Service server can be physically separated from
the CRM server, and a firewall can be installed around the CRM server.
Database Level Security. CRM Self Service users do not have direct access
to the database. The CRM Self Service pages opened by the user send
requests via IIS to the eWare DLL to access the database.
Network Security. CRM supports all industry standard network encryption
protocols.
Self Service Guide 4–1