Index

  1. Introduction
  2. Configuration Details
  3. Prerequisite to enable virus scan
  4. Impacted Workflows
  5. Restriction

 

Introduction:

In SAP BI Platform, user is allowed to commit different kinds of files via BI LanuchPad, CMC, Rest WebService and custom SDK applications.

Supported file formats are mentioned below and others would be treated as Agnostic type.

So far, files committed were subjected to:

  1. size check, to ensure file size is not zero
  2. check permission on destination directory

But, no check related to content of the file. Basically we don’t scan the content of the file to ensure its not infected. Rather we would leave it to customers to ensure the system has Anti Virus Software in place.

From 4.2SP04, files committed to SAP BI Platform will be subjected to Virus Scan during file upload, this is as per SAP Product Security Standards.

Configuration Details:

  • By default VS is disabled in 4.2 SP04
  • To enable, CMC > Servers > Input and Output FRS > Properties page > user needs to provide path to VSA binaries:
  • Can be enabled via any of the below mentioned options:
    1. path needs to be provided as command line args in Input and Output FRS. Cmd line option is “vsaFileLoc”
    2. changes can be done via UI for Input and Output FRS
    3. the path provided either via UI or Cmd Line will be the location of “.dll” or “.so” file

  • Note: In case there is more than one Input and Output FRS, ensure to provide this setting for all Input and Output FRS’s
  • Kindly restart all Input and Output FRS’s, after enabling virus scan

 

Prerequisite to enable virus scan:

  1. SAP certified vendors for VSI :  http://global.sap.com/community/ebook/2013_09_adpd/enEN/search.html#search=NW-VSI
  2. Customers have to contact the vendor to get the library
  3. In case customers need support for new platform or vendor:
    • then customer has to contact that vendor for same
    • and vendor has to get their adapter certified by SAP

Some workflows subjected to virus scan is listed below:

  • Add a new file
  • Document Save as
  • Copy To
  • Send To
  • Schedule
  • Publication
  • Promotion mangement biars
  • etc

Restriction:

SAP does not support Virus Scan for Solaris platform.

To report this post you need to login first.

3 Comments

You must be Logged on to comment or reply to a post.

  1. Denis Konovalov
    1. The page you provided for certified AV list 2 certified vendors/products – can you please clarify if both certified or only one ?
    2. Do the customers need to install and run this BowBridge AV on their systems that already have AV’s on them , or it is just libraries that are needed ?
    3. Can you please specify if only path to the directory where this BowBridge is located needed or a path need to include an actual library/dll or executable ?
    (1) 
  2. Sahana Durgam Udaya Post author

    Answers:

    1. Sometime back there was only one, but its been updated. Basically what shows in the page is certified. I have also rephrased my statement in the blog.
    2. They would just need the libraries. Customers should contact the vendor to get the documentation for their reference.
    3. Need to provide path to actual library/dll or executable. Hence the Cmd argument or UI says File Location. The library would be different for different vendor hence path to directory wouldnt be sufficient.
    (0) 

Leave a Reply