This topic provides a high-level overview of encryption of data and communications within Microsoft Dynamics AX.

  • The Microsoft Dynamics AX Windows client communicates directly with the Application Object Server (AOS) using Remote Procedure Call (RPC) functions. By default, Microsoft Dynamics AX secures data sent across a network by using the RPC function RPC_C_AUTHN_LEVEL_CONNECT, which validates user credentials at the time a connection is established. You can also encrypt data if your security needs require it. When you turn on encryption, Microsoft Dynamics AX uses the RPC_C_AUTHN_LEVEL_PKT_PRIVACY call, which provides the highest security level available through RPC.

  • Several Microsoft Dynamics AX client/server scenarios use standard Web protocols to access information. A Web browser using HTTP or HTTPS protocol can access the Enterprise Portal, Microsoft Dynamics AX Windows clients accessing reports from SQL Server Reporting Services communicate with the Report Server using HTTP or HTTPS, and Microsoft Dynamics AX Windows clients using role-based home pages access the Enterprise Portal (using a browser control) through HTTP or HTTPS. For maximum security, you can configure the Enterprise Portal and Report Server to use HTTPS, which provides encrypted data transport. Microsoft Dynamics AX Enterprise Portal also allows encrypting the URL query string values in HTTP. By default this setting is turned on, and we recommend that you keep this setting turned on, especially for an externally facing site. For more information on configuring Web sites, see System and Application Setupfrom the Helpmenu of the Windows client.

  • The following table shows the integration component used by the Microsoft Dynamics AX components to communicate with the Application Object Server (AOS). It is possible to encrypt communications between the .NET Business Connector and AOS using the Microsoft Dynamics AX Configuration utility and Microsoft Dynamics AX Server Configuration utility which are available from Control Panel, Administrative Tools.

    Microsoft Dynamics AX component

    Integration component used to communicate with the AOS

    Enterprise Portal

    .NET Business Connector

    Workflow

    .NET Business Connector

    Application Integration Framework (AIF) Web services

    .NET Business Connector

    BizTalk adapter for Microsoft Dynamics AX

    .NET Business Connector

    AIF file system

    File system

    AIF Microsoft Message Queue (MSMQ)

    MSMQ

    Synchronization service

    .NET Business Connector

    Microsoft Dynamics AX reporting extensions

    .NET Business Connector

  • Starting with SQL Server 2005, it is possible to use SQL Server encryption to encrypt information stored at the field level.

Note Note

You can use the Microsoft Dynamics AX Configuration utility and the Microsoft Dynamics AX Server Configuration utility to configure encryption for Microsoft Dynamics AX Windows client or the .NET Business Connector. Both of these tools are available from Control Panel, Administrative Tools.