Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

Password sharing using firefighter on HANA DB

Former Member

on ‎2020 Jun 09 11:03 AM

842

We are on GRCFND_A-SP08, GRCPINW- 1200_750_SP8 version and trying to implement EAM on HANA DB. What I noticed is that while using the EAM process on HANA DB I am able to share the Firefighter password (I am not logging using password copied from clipboard) with user A and user A is able to login to HANA Studio or another WEBIDE session using the FF password which I shared.

Is there any way to mitigate it?

Know the answer?

Help others by sharing your knowledge.

Answer

Need more details?

Request clarification before answering.

Show replies
Show replies

Accepted Solutions (0)

Answers (2)

Answers (2)

former_member317482
Explorer
‎2020 Jul 16 10:00 AM
0 Likes

Did somone configure the HANA Disable Password (SAML) attribute?

Show replies
Show replies
madhusap
Active Contributor
‎2020 Jun 12 7:36 PM
0 Likes

Hi Akash,

You can set password expiry using parameter "HANA Firefighter Timeout" attribute (in seconds) to mitigate the risk of HANA DB Firefighter being misused.

Navigate to Governance, Risk and Compliance -> Access Control -> Maintain Connector Settings. Select the HANA connector where you would like to set timeout then Click Assign Attributes to the Connector. Click on New Entries, select HANA Firefighter Timeout as Attribute Name and then type the desired timeout in seconds.

Regards,

Madhu

Show replies
Show replies
Former Member
‎2020 Jul 14 7:59 AM
0 Likes

Hi Madhu,

Thanks for your reply. Wanted to know how will the password misuse risk be mitigated by applying the said parameter as the name of the parameter indicates about timeout of the session but still the password could be shared.

Regards,

Akash Parekh

Ask a Question