Secure User Store for the SAP HANA Service – by th...
Technology Blogs by SAP
Learn how to extend and personalize SAP applications. Follow the SAP technology blog for insights into SAP BTP, ABAP, SAP Analytics Cloud, SAP HANA, and more.
The Secure User Store for the SAP HANA client, a.k.a. hdbuserstore, can be used to safely store the connection string (server, port, username, password) as a key for secure client connections.
This SSFS (secure-store-in-the-file-system) for the SAP HANA client has been part of SAP HANA since the initial release. Using it to connect to the SAP HANA Service requires no changes in parameters or options.
For the blog about encrypting your SAP HANA client connections with the SAP CommonCryptoLib, see
In the video tutorial below, we show how you can create a user store key for macOS (Linux) and Windows, and use it with hdbsql, the SAP HANA interactive terminal, with ODBC/JDBC, in Java and in Python.
hdbuserstore -i Set HAASKEY
zeus.hana.prod.eu-central-1.whitney.dbaas.ondemand.com:54321 system
Viewing the key store on Linux and Windows. Note that the key is the same for on-premise SAP HANA and for the SAP HANA Service. Also note that the key is the same on Linux and Windows (or macOS). Only the path to the key and data file differs a bit.
Use the key with the interactive terminal. Works on any platform.
hdbsql -U HAASKEY \
-e -sslprovider commoncrypto -ssltruststore $SECUDIR/sapcli.pse \
"SELECT VERSION FROM M_DATABASE"
The SAP HANA Academy provides free online video tutorials for the developers, consultants, partners and customers of SAP HANA.
Topics range from practical how-to instructions on administration, data loading and modeling, and integration with other SAP solutions, to more conceptual projects to help build out new solutions using mobile applications or predictive analysis.