SAP NetWeaver Application Server for Java

last Changed: 11th of January 2022 demystifying TLS/SSL Settings for NetWeaver the correct TLS/SSL Setting in SAP NetWeaver based Systems (ABAP, BI-JAVA, SolMan 7.2) are the most mandantory pre requisites to enable the SAP Secure Notes Download,... Read More »

The CommonCryptoLib (CCL) performs the validation of X.509 certificates. Certificate validation consists of three basic steps: verify the certificates’ integrity (Construct the Chain and Validate Signatures) verify the validity, (Check... Read More »

The CommonCryptoLib (CCL) is used when managing the Personal Security Environment (PSE) files and the SSO credential (cred_v2) file. PSE files are storing for example, a public and private key pair and trusted public key certificates. The cred_v2... Read More »

From my experience the RFC Gateway security is for many SAP Administrators still a not well understood topic. As a result many SAP systems lack for example of proper defined ACLs to prevent malicious use. After an attack vector was published in the... Read More »

Many years ago SAP deprecated the SAPCRYPTOLIB and introduced the CommonCryptoLib (CCL) as its successor. The CCL is not only a replacement for its predecessor but also for gsskrb5.dll, gI64krb5.dll, and gx64krb5.dll, which may still be used as... Read More »

Profile parameters accompany the SAP Basis administrators their entire lives. Still, in many SAP systems one can find sub-optimal handling of those and when it comes to monitoring or compliance checking one may be curious how to determine the... Read More »

The SAP Web Dispatcher is a reverse proxy designed to work best with other SAP software solutions. While there exist many reverse proxy solutions from various software vendors out there, the SAP Web Dispatcher is maintained and supported by SAP, is... Read More »

Many years ago SAP deprecated the SAPCRYPTOLIB and introduced the CommonCryptoLib (CCL) as its successor. The CCL is not only a replacement for its predecessor but also for OpenSSL, which was used for example by SAP HANA in its early days (and up to... Read More »

In the previous blog posts, we have introduced profile data analyzer to analyze the profiling data (e.g. the ABAP trace, and the Java *.prf file), and how to use it to understand the program logic to support the performance tuning or other... Read More »

The enqueue log analyzer is a lightweight Java tool used to analyze the SAP enqueue logs. It provides answers to common Enqueue problems and saves your time during root cause analysis for Enqueue issues. In this blog post, I would like to share the... Read More »