A recent security audit recommended that we disable HTTP where possible so we are trying to determine if we can disable it on our primary management point. We have IBCM and are configured with "HTTPS only" so all client communication should not be using HTTP but wanted to check with others to see if there was something that I'm not thinking of that would be using HTTP.
One thing I was thinking of was our FSP which is on its own server with an external facing IP. I know that uses HTTP between the client and the FSP but I would assume it uses HTTPS between FSP and MP, right? Is there anything related to Software Updates/WSUS that uses HTTP? Thanks, James Beardsley | Firm Technology Group Dixon Hughes Goodman LLP [cid:8644FC49-D5C9-45AE-B387-04FAFC0CC7A5]<http://www.dhgllp.com/> ________________________________ Confidentiality Notice: This e-mail is intended only for the addressee named above. It contains information that is privileged, confidential or otherwise protected from use and disclosure. If you are not the intended recipient, you are hereby notified that any review, disclosure, copying, or dissemination of this transmission, or taking of any action in reliance on its contents, or other use is strictly prohibited. If you have received this transmission in error, please reply to the sender listed above immediately and permanently delete this message from your inbox. Thank you for your cooperation.
