Clarification on BigFix WebUI Default Port Traffic Encryption and Initial Authentication Process

jas.itpro · December 20, 2024, 1:26pm

Hi Team,

We are going to host WebUI on Dedicated server and I have few queries below.

Query 1:-
Is the network traffic on the default port of BigFix WebUI encrypted, considering that the HCL topology diagram indicates both HTTP and HTTPS for port traffic?
I know Bigfix WebUI network traffic is encrypted by default when it communicates with the Bigfix Root server & its components like WebUI, Webreport. Asl all internal communications between Bigfix component use TLS encryption.

But would like expert Opinion on this.

Query 2:-
Additionally, does any authentication take place during the initial installation, or is the remote WebUI server registered using a certificate, similar to how a BES Client operates?

Regards,
Jaspreet Singh

JonL · December 20, 2024, 7:50pm

You create a TLS/SSL certificate for WebUI and apply that as part of the configuration. When you do that WebUI traffic will be encrypted.

WebUI prompts for authentication. You use the same method that you would to authenticate to the console - local Bigfix account or LDAP.