Technology Blog Posts by SAP
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Read only

New Security Optimization Service for Cloud Connector

Anisa2
Associate
Associate
Wednesday
363

285294_iStock-808157682.jpg

Security and the protection of your systems have become more important than ever and play a crucial role in today’s business environment.

The SAP Security Optimization Service (SOS) is designed to analyze, verify, and improve the security of your SAP system by identifying potential security risks and providing recommendations to mitigate these risks within the assessed systems. 

There are many different SAP systems that can be analyzed with an SOS and can be referred from the CQC SOS Infosheet

🌟New in CQC SOS: Cloud Connector!

What is the Cloud Connector?

  • Serves as a link between SAP BTP applications and on-premises systems.
  • Runs as on-premises agent in a secured network.
  • Provides fine-grained control over On-premises systems and resources that can be accessed by cloud applications and Cloud applications using the Cloud Connector.
  • Besides the CQC SOS for SAP BTP , which provides a security assessment of those security-relevant configurations and authorization assignments which are in the responsibility of the customer and focuses on reviewing the platform aspects, a new CQC SOS in the BTP realm is now available:  CQC SOS for Cloud Connector. 

The CQC SOS for Cloud Connector provides a security assessment structured in the following sections:

  • General Security Status for Master Instance: security aspects related to the versions of Cloud Connector and underlying JDK, certificates, enabled encryption ciphers for HTTPS connections to the administration UI, trust configurations etc. 
  • General Security Status for Shadow Instance: contains a subset of the “General Security Status for Master Instance” section which is applicable for the connected shadow instance.
  • Subaccount-Specific Security Status: settings for connected subaccounts like encrypted communication with backend systems, access policies for HTTP and RFC connections as well as audit log and log/trace configurations.

📥How to request a CQC service?

Create an incident under component SV-BO-REQ (SAP Note 1296527) or

Contact the SAP Enterprise Support Advisory team via our Customer Interaction Center (CIC)

☁️As an SAP Enterprise Support or cloud customer:

Make use of the security and the enablement offerings provided by the SAP Enterprise Support Academy.

For more information on the Cloud Connector discussed in this blog visit the corresponding SAP BTP Security Recommendations and the  SAP Help Portal

🔗Stay connected

Want to stay up to date on our services? Join our SAP Cloud ALM & Cross-Solution Topics Value Map   community!