Transitioning from SAP Enterprise Threat Detection (ETD) to the Cybersecurity Extension for SAP allows organizations to manage vulnerability management, threat detection, and custom code security directly within SAP Solution Manager. This guide outlines the planning requirements and system preparation steps necessary to ensure a smooth transition and successful decommissioning of SAP ETD components.
Executive Summary
Organizations currently using SAP Enterprise Threat Detection (ETD) can migrate to the Cybersecurity Extension for SAP to consolidate their security operations within SAP Solution Manager. Developed by Layer Seven Security, this extension provides a robust alternative for threat detection and vulnerability management. Because Solution Manager is already a standard component for application lifecycle management used by over 12,000 SAP customers, this transition often simplifies the security landscape and leverages existing support agreements.
The migration process involves preparing your existing Solution Manager platform and configuring the environment for code vulnerability analysis. Once the extension is fully operational, organizations can remove legacy SAP ETD consoles, sensors, users, and addons. This guide provides the necessary technical considerations for configuring your central system to support this transition, specifically focusing on ABAP Test Cockpit (ATC) requirements for remote code analysis. By following these steps, security teams can effectively move from a standalone ETD environment to an integrated, Solution Manager-based security model.
Key Takeaways
- The Cybersecurity Extension for SAP is a direct alternative to SAP ETD for threat and vulnerability management.
- The extension integrates natively with SAP Solution Manager, leveraging existing infrastructure and support rights.
- Transitioning allows for the complete removal of SAP ETD consoles, sensors, and associated addons.
- A central ATC check system is required for effective code vulnerability analysis across remote SAP landscapes.
What is the Cybersecurity Extension for SAP?
The Cybersecurity Extension for SAP is a security platform developed by Layer Seven Security that serves as an alternative to SAP Enterprise Threat Detection (ETD). Unlike standalone security tools, this extension functions as an addon for SAP Solution Manager, the platform widely used by SAP customers for application lifecycle management. Because usage rights for Solution Manager are included in standard SAP support, the extension provides a integrated approach to SAP vulnerability management, threat detection, and custom code security.
How do you prepare your Solution Manager for the transition?
To ensure a smooth transition, you must first verify that your SAP Solution Manager environment is correctly configured. Since the Cybersecurity Extension for SAP relies on Solution Manager as its foundation, ensure your instance meets all standard setup requirements. This includes verifying your current monitoring and diagnostics configurations. Once the platform is prepared, you can proceed with the installation of the extension and the subsequent removal of SAP ETD components, including sensors, consoles, and system-level addons.
How do you configure code vulnerability analysis?
The Cybersecurity Extension for SAP performs code vulnerability checks by utilizing the ABAP Test Cockpit (ATC). For environments with multiple systems, it is recommended to configure a central check system to perform remote code analysis. Please refer to the SAP guidelines for specific instructions on configuring a central ATC system. It is also advised to use the latest version of the SAP Basis component on your central system to ensure compatibility when analyzing custom code across systems with lower versioning.
Frequently Asked Questions
Can I remove SAP ETD after the transition?
Yes, once you have fully transitioned to the Cybersecurity Extension for SAP, you can remove all SAP ETD consoles and sensors from your landscape, as well as any associated SAP ETD users and addons.
Does the extension require additional infrastructure?
No, the extension is an addon for SAP Solution Manager. It utilizes your existing Solution Manager platform, which is already used by over 12,000 SAP customers for application lifecycle management and is included in standard SAP support.
How does the extension handle custom code security?
The extension uses the ABAP Test Cockpit (ATC) to apply code vulnerability checks. By configuring a central check system, the extension can perform remote code analysis across your entire SAP landscape, even for systems with lower SAP Basis versions.