Many organizations just deploy SAP BusinessObjects without a thought for securing HTTP traffic or intra-server communication. But what you probably didn’t realize is basic packet sniffing tools can allow nefarious individuals within your own walls to watch those little packets of bytes fly by with Windows AD, LDAP, or SAP Authentication tokens included within them. So what is the probability that other, mission critical applications within your organization use those same authentication tokens? High. Very high. So what is an administrator to do? Let’s dissect.