SAP Web Dispatcher / Internet Communication Manager

SAP Web Dispatcher (changed)

The bootstrap option of SAP Web Dispatcher has been improved.

More information: Starting the SAP Web Dispatcher with the Bootstrap Option

SSL Configuration (changed)

The SSL configuration has changed. Libraries and ticket files are no longer necessary. The default value of profile parameter wdisp/ssl_auth is now = 1, and the parameter no longer has to be explicitly configured to forward certificates.

More information:

PSE Administration in the Web Admin UI (changed)

PSEs (personal security environment) can be created and managed directly in the Web Admin UI.

More information:

Security Information for SAP Web Dispatcher (changed)

Security recommendations for SAP Web Dispatcher have been revised.

More information: Security Information for SAP Web Dispatcher

Mitigating Slowloris Attacks (new)

Slowloris are a special type of Denial of Service (DoS) attack that blocks the availability of a Web server or application server. This section explains how you can mitigate slowloris attacks: Mitigating Slowloris Attacks

Configuring SAP Web Dispatcher for High System Load due to Inbound Requests (changed)

The following topic has been heavily revised: Configuring SAP Web Dispatcher for High System Load Due to Inbound Requests

Logging - New Subparameters FLUSH and ACTIVE and New Placeholders %w1 and %w2 (new)

There are two new subparameters for profile parameters icm/HTTP/logging and icm/HTTP/logging_client:
  • FLUSH
  • ACTIVE
There are also the following new placeholders for the two profile parameters:
  • %w1
  • %w2
More information:

Profile Parameter (New)

The following profile parameter has been added: icm/HTTP/trace_info

Profile Parameter (deleted)

The following profile parameter has been deleted: icm/HTTP/client/keep_alive_timeout.

Profile Parameter wdips/system_<xx> - New Subparameters (new)

For profile parameter wdisp/system_<xx> there are the following new subparameters:
  • SSL_ENCRYPT
  • CONFIG_PROTOCOL
  • XSSRV
  • CLIENT
  • PROXY
  • STANDARD_COOKIE_FILTER
  • STICKY
More information:

Profile Parameter icm/security_log - New Default Value for Subparameter MAXSIZEKB (changed)

The default value of subparameter MAXSIZEKB has been increased to 10000.

More information: icm/security_log

WebSocket Protocol Supported By Default (new)

The WebSocket protocol is supported by default. This default setting can be deactivated with profile parameter icm/HTTP/support_websocket_upgrade=FALSE.

More information: icm/server_port_<xx>

New HTTP Header Field Modifications (new)

The following HTTP header field modifications for HTTP requests and HTTP responses have been added:
  • RegRewriteHeader
  • RegIRewriteHeader
  • RemoveCookie
  • SetResponseHeaderIfEmpty
  • SetResponseHeader
  • RemoveResponseHeader
  • AppendResponseHeader
  • RegRewriteResponseHeader
  • RegIRewriteResponseHeader

More information:

New URL Rewrite Modifications (new)

The following HTTP header field modifications have been added:
  • RegRewriteRawUrl
  • RegIRewriteRawUrl

More information:

New Variables for HTTP Request Modifications (new)

The following variables for HTTP request modifications have been added:
  • HTTP_HOST_SHORT
  • HTTP_HOST_DOMAIN
  • SID
  • HTTP_ RESPONSE_CONTENT_LENGTH
  • HTTP_ RESPONSE_CONTENT_TYPE
  • HTTP_ RESPONSE_VIA
  • RESPONSE_HEADER:<name>
  • HTTP_RESPONSE_COOKIE
  • HTTP_RESPONSE_STATUS
  • TARGET_INSTANCE_NAME

More information: