C_HANATEC_13 Topics: Security – by the SAP HANA Academy

Introduction

This blog is part of a series to help you pass the SAP Certified Technology Associate – SAP HANA 2.0 certification exam, C_HANATEC_13.

For an overview of the exam, see

• SAP Certified Technology Associate: C_HANATEC_13

For the sample questions, see

• SAP Certified Technology Associate Exam Sample Questions – by the SAP HANA Academy

Topic Areas

There are 10 topic areas and you can expect about 8 questions for each topic.

• Security (this blog)
• Users and Authorization
• Database Migration to SAP HANA
• Installation and Upgrade
• System Architecture
• Multitenant Database Containers
• High Availability and Disaster Tolerance
• Database Administration Tools and Tasks
• Monitoring and Troubleshooting
• Backup and Recovery

In this blog, I will discuss the Security topic.

On the SAP Training website for C_HANATEC_13, the exam objective for this topic is stated:

Understand the SAP HANA authentication concepts, 
and set up encryption and auditing for SAP HANA.

Study Material

The study material for this topic is the training

• HA200 – SAP HANA 2.0 Installation and Administration (5 days)
• HA240 – Authorization, Security and Scenarios (2 days)

The Security chapter in the HA200 guide covers the security infrastructure, encryption, and auditing (about 50 pages). Authentication is covered in the Maintaining Users and Authorization chapter.

The training guide for HA240 covers all of these topics in some more detail plus the material for the Users and Authorization topic area (300 pages).

You can download the index of both guides from the SAP Training website (see links above) in case you want to note the objectives of each unit.

Security

For this topic, you need to understand how different implementations architecture (data mart, native applications, 3-tier application server) impact the security requirements and the tools you can use to monitor and configure security for SAP HANA. See,

• SAP HANA Implementation Scenarios – SAP HANA Security Guide
• Overview of SAP HANA Security Functions – SAP HANA Security Guide

What’s New?

The focus will be on the new SAP HANA 2.0 features, so if you are new to this version you might be interested to view the What’s New videos first:

• SAP HANA 2.0 SPS 00 What’s New: Security
• SAP HANA 2.0 SPS 01 What’s New: Security
• SAP HANA 2.0 SPS 02 What’s New: Security

Note that C_HANATEC_13 covers SAP HANA 2.0 SPS 00 only. C_HANATEC_14 will cover SPS 02.

SAP HANA cockpit – Overview: Security

Authentication

For this topic, you need to understand

• the different authentication methods (Kerberos, SAML, certificates)

For the concepts, see

• SAP HANA Authentication and Single Sign-On – Security Guide

There are also a number of tutorial videos about these topics on the SAP HANA Academy

For the full playlist, see

• SAP HANA Security Documentation

SAP HANA Academy – Documentation: Security – User Authentication and SSO

Encryption

For this topic, you need to understand how encryption works for both secure communication (network) and persistence. What communication is encrypted out-of-the-box and what do you need to set up yourself? What role do certificates play and how are they configured? How can you configure data volumes, logs, and backups, and what role do SSFS keys have?

To see how you can manage SAP HANA encryption keys, see

• Managing Encryption Keys for SAP HANA Express – by the SAP HANA Academy

SAP HANA Academy – SAP HANA Express: Setup – Managing Encryption Keys

SAP HANA Academy – Database Management: What’s New? – Security [2.0 SPS 00]

SAP HANA Academy – Documentation: Security – Data-at-rest Encryption Services

SAP HANA Academy – Documentation: Security – Certificate Management

SAP HANA Academy – Documentation: Security – Secure Internal Communication

For the documentation, see

• SAP HANA Network and Communication Security – SAP HANA Security Guide
• Data Storage Security in SAP HANA – SAP HANA Security Guide
• Managing Data Encryption in SAP HANA – SAP HANA Administration Guide

SAP HANA Security Guide – Internal Communication

SAP HANA Security Guide – Secured Internal Communication Channels

SAP HANA Security Guide – SSFS and Persistence Encryption

SAP HANA Administration Guide – Encryption Configuration

Auditing

For this topic, you need to understand how auditing works for SAP HANA, the events that can be audited (including mandatory audit events and unauditable events), how to configure auditing in cockpit, the audit trail targets and how to manage them, how to manage audit policies, the levels, and how to monitor auditing.

SAP HANA Academy – Documentation: Security – Auditing SAP HANA

For more information, see

• Auditing Activity in SAP HANA Systems – Security Guide
• Auditing Activity in the SAP HANA Database – SAP HANA Administration Guide

References

SAP HANA Academy Playlists

• SAP Certified Technology Associate [C_HANATEC_13]
• SAP HANA Security
• SAP HANA Security Documentation

SAP HANA Community Blogs

• SAP HANA 2.0 SPS 00 What’s New: Security – by the SAP HANA Academy
• SAP HANA 2.0 SPS 01 What’s New: Security – by the SAP HANA Academy
• SAP HANA 2.0 SPS 02 What’s New: Security – by the SAP HANA Academy
• Managing Encryption Keys for SAP HANA Express – by the SAP HANA Academy

SAP Help Portal (Documentation)

• SAP HANA Implementation Scenarios – SAP HANA Security Guide
• Overview of SAP HANA Security Functions – SAP HANA Security Guide
• SAP HANA Authentication and Single Sign-On – Security Guide
• SAP HANA Network and Communication Security – SAP HANA Security Guide
• Data Storage Security in SAP HANA – SAP HANA Security Guide
• Managing Data Encryption in SAP HANA – SAP HANA Administration Guide
• Auditing Activity in SAP HANA Systems – Security Guide
• Auditing Activity in the SAP HANA Database – SAP HANA Administration Guide

SAP Notes

• 2159014 – FAQ: SAP HANA Security

SAP Training

• HA200 – SAP HANA 2.0 Installation and Administration
• HA240 – Authorization, Security and Scenarios

Thank you for watching

The SAP HANA Academy provides technical enablement, implementation and adoption support for customers and partners with 1000’s of free tutorial videos.

For the full library, see SAP HANA Academy Library – by the SAP HANA Academy

For the full list of blogs, see Blog Posts – by the SAP HANA Academy

• Subscribe to our YouTube channel for updates
• Join us on LinkedIn linkedin.com/in/saphanaacademy
• Follow us on Twitter @saphanaacademy
• Google+ plus.google.com/+saphanaacademy
• Facebook facebook.com/saphanaacademy