We are looking at enabling SSL for the JDBC connection between the JVM and the DB (Pega 7.1.7 or 7.2). This is a requirement from our security department to expose Pega to external parties (Pega Web Nodes in DMZ).
We know that it is doable, but we are a bit concerned about the performance impact.
So my questions are:
Has this been done by anybody else?
Is there any best practice around this?
Are there quantifiable performance impact results (tests performed by someone) of enabling SSL/TLS with Pega on the JDBC connection?
**Moderation Team has archived post**
This post has been archived for educational purposes. Contents and links will no longer be updated. If you have the same/similar question, please write a new post.
1. What is the DB platform and application server?
2. Normally pega instances should be behind the firewalls and colocated with DB. Pega Web Nodes in DMZ, are you referring to Pega Web Mashup (old name IAC)? That itself does not need any jdbc connection to DB. It is just a proxy server and our latest recommendation is not use it at all (see this link: https://community.pega.com/)
Thank you for posting your query in the PSC. This looks like an inactive post and hence, we suggest you create a new post for your query. Click on the Write a Post button that’s available on the top right pane of this page. Once created, please reply back here with the URL of the new post.
You may also refer this discussion link as a reference in the new thread.