The SAP Note 2622660 - 'Security updates for the browser control Google Chromium delivered with SAP Business Client' shows up in many SAP Security Patch Days.It is classified as Very High (CVSS 10.0) as it lists all known vulnerabilities in the "Chro...
Hello,
on S/4HANA systems, is there any specific reason why one should keep the xsengine and the webdispatcher of SAP HANA running when HTA (or CTS+) is used for transport management?
There should be no need to have SAP HANA XS Administration Too...
We are interested in having an API to grab the SAP Security Notes from SAP for Me in a machine readable format (preferably in JSON).
As the new View Recommended Notes tile in the Maintenance Planner provides an evaluation of certain SAP Note categ...
From my experience the RFC Gateway security is for many SAP Administrators still a not well understood topic. As a result many SAP systems lack for example of proper defined ACLs to prevent malicious use.
After an attack vector was published in a ta...
From my experience the RFC Gateway security is for many SAP Administrators still a not well understood topic. As a result many SAP systems lack for example of proper defined ACLs to prevent malicious use.
After an attack vector was published in a ta...
Hello @Christian_Cohrs ,currently we enforce in our systems the X.509 based authentication with smart cards (hardware based certificates). That means, if the smart card is not in the card reader, the logon fails.With the new SAP Logon Service, the us...
Hello Michael,
before running in the same situation as we had with Log4Shell, I recommend to better start right up building an SBOM. At best, this should be considered when they start developing the first custom applications in SAP BTP. This will he...
Hello frank.krause ,
SAP Note 1442028 seems to need an update as there is still stated "due to the following reasons there will be no SAP GUI for Windows 64bit version in the foreseeable future".
BR,
Joe
Hello nanda87
thanks for the hint. Indeed, dynamic changes are shown by GetProcessParameter of sapcontrol. I think, this is not a new behavior as also the screenshot above shows that there is a column for the dynamic value. I've correct this in the ...
Hi martin-pankrazto get RFC for ECC integrated, it could be an option to leverage the capabilities of translating RFC to WebSocket RFC offered by the SAP BC by adding a SAP BC pool in the Azure Customer Subscription. For details, see https://blogs.sa...
