Technical Articles
C_HANATEC_13 Topics: Security – by the SAP HANA Academy
LATEST UPDATE: December, 2020 ========================================= For the latest information, visit our blog post series about SAP HANA certification: For the SAP Press Certification Success Guide, see For the blog post, see |
Introduction
This blog is part of a series to help you pass the SAP Certified Technology Associate – SAP HANA 2.0 certification exam, C_HANATEC_13.
For an overview of the exam, see
For the sample questions, see
Topic Areas
There are 10 topic areas and you can expect about 8 questions for each topic.
- Security (this blog)
- Users and Authorization
- Database Migration to SAP HANA
- Installation and Upgrade
- System Architecture
- Multitenant Database Containers
- High Availability and Disaster Tolerance
- Database Administration Tools and Tasks
- Monitoring and Troubleshooting
- Backup and Recovery
In this blog, I will discuss the Security topic.
On the SAP Training website for C_HANATEC_13, the exam objective for this topic is stated:
Understand the SAP HANA authentication concepts,
and set up encryption and auditing for SAP HANA.
Study Material
The study material for this topic is the training
- HA200 – SAP HANA 2.0 Installation and Administration (5 days)
- HA240 – Authorization, Security and Scenarios (2 days)
The Security chapter in the HA200 guide covers the security infrastructure, encryption, and auditing (about 50 pages). Authentication is covered in the Maintaining Users and Authorization chapter.
The training guide for HA240 covers all of these topics in some more detail plus the material for the Users and Authorization topic area (300 pages).
You can download the index of both guides from the SAP Training website (see links above) in case you want to note the objectives of each unit.
Security
For this topic, you need to understand how different implementations architecture (data mart, native applications, 3-tier application server) impact the security requirements and the tools you can use to monitor and configure security for SAP HANA. See,
- SAP HANA Implementation Scenarios – SAP HANA Security Guide
- Overview of SAP HANA Security Functions – SAP HANA Security Guide
What’s New?
The focus will be on the new SAP HANA 2.0 features, so if you are new to this version you might be interested to view the What’s New videos first:
- SAP HANA 2.0 SPS 00 What’s New: Security
- SAP HANA 2.0 SPS 01 What’s New: Security
- SAP HANA 2.0 SPS 02 What’s New: Security
Note that C_HANATEC_13 covers SAP HANA 2.0 SPS 00 only. C_HANATEC_14 will cover SPS 02.
SAP HANA cockpit – Overview: Security
Authentication
For this topic, you need to understand
- the different authentication methods (Kerberos, SAML, certificates)
For the concepts, see
- SAP HANA Authentication and Single Sign-On – Security Guide
There are also a number of tutorial videos about these topics on the SAP HANA Academy
For the full playlist, see
SAP HANA Academy – Documentation: Security – User Authentication and SSO
Encryption
For this topic, you need to understand how encryption works for both secure communication (network) and persistence. What communication is encrypted out-of-the-box and what do you need to set up yourself? What role do certificates play and how are they configured? How can you configure data volumes, logs, and backups, and what role do SSFS keys have?
To see how you can manage SAP HANA encryption keys, see
SAP HANA Academy – SAP HANA Express: Setup – Managing Encryption Keys
SAP HANA Academy – Database Management: What’s New? – Security [2.0 SPS 00]
SAP HANA Academy – Documentation: Security – Data-at-rest Encryption Services
SAP HANA Academy – Documentation: Security – Certificate Management
SAP HANA Academy – Documentation: Security – Secure Internal Communication
For the documentation, see
- SAP HANA Network and Communication Security – SAP HANA Security Guide
- Data Storage Security in SAP HANA – SAP HANA Security Guide
- Managing Data Encryption in SAP HANA – SAP HANA Administration Guide
SAP HANA Security Guide – Internal Communication
SAP HANA Security Guide – Secured Internal Communication Channels
SAP HANA Security Guide – SSFS and Persistence Encryption
SAP HANA Administration Guide – Encryption Configuration
Auditing
For this topic, you need to understand how auditing works for SAP HANA, the events that can be audited (including mandatory audit events and unauditable events), how to configure auditing in cockpit, the audit trail targets and how to manage them, how to manage audit policies, the levels, and how to monitor auditing.
SAP HANA Academy – Documentation: Security – Auditing SAP HANA
For more information, see
- Auditing Activity in SAP HANA Systems – Security Guide
- Auditing Activity in the SAP HANA Database – SAP HANA Administration Guide
References
SAP HANA Academy Playlists
SAP HANA Community Blogs
- SAP HANA 2.0 SPS 00 What’s New: Security – by the SAP HANA Academy
- SAP HANA 2.0 SPS 01 What’s New: Security – by the SAP HANA Academy
- SAP HANA 2.0 SPS 02 What’s New: Security – by the SAP HANA Academy
- Managing Encryption Keys for SAP HANA Express – by the SAP HANA Academy
SAP Help Portal (Documentation)
- SAP HANA Implementation Scenarios – SAP HANA Security Guide
- Overview of SAP HANA Security Functions – SAP HANA Security Guide
- SAP HANA Authentication and Single Sign-On – Security Guide
- SAP HANA Network and Communication Security – SAP HANA Security Guide
- Data Storage Security in SAP HANA – SAP HANA Security Guide
- Managing Data Encryption in SAP HANA – SAP HANA Administration Guide
- Auditing Activity in SAP HANA Systems – Security Guide
- Auditing Activity in the SAP HANA Database – SAP HANA Administration Guide
SAP Notes
SAP Training
Thank you for watching
The SAP HANA Academy provides technical enablement, implementation and adoption support for customers and partners with 1000’s of free tutorial videos.
For the full library, see SAP HANA Academy Library – by the SAP HANA Academy
For the full list of blogs, see Blog Posts – by the SAP HANA Academy
- Subscribe to our YouTube channel for updates
- Join us on LinkedIn linkedin.com/in/saphanaacademy
- Follow us on Twitter @saphanaacademy
- Google+ plus.google.com/+saphanaacademy
- Facebook facebook.com/saphanaacademy