How to switch from SAP Code Vulnerability Analyzer to the Cybersecurity Extension for SAP, Part 5

The Cybersecurity Extension for SAP, developed by Layer Seven Security, provides a direct alternative to SAP Code Vulnerability Analyzer (CVA) for managing vulnerabilities, threat detection, and custom code security. This guide outlines the initial steps for transitioning your SAP environment from SAP CVA to the Cybersecurity Extension for SAP.

Why transition to the Cybersecurity Extension for SAP?

The Cybersecurity Extension for SAP serves as a specialized alternative to SAP CVA, designed to integrate directly with SAP Solution Manager. Because Solution Manager is a widely used application lifecycle management platform—active in over 12,000 SAP customer environments worldwide—the extension leverages existing infrastructure. Usage rights for Solution Manager are included in standard SAP support, making this transition a strategic move for organizations already utilizing the platform for monitoring and diagnostics.

How do you prepare for the transition from SAP CVA?

Preparing for the transition requires verifying that your SAP Solution Manager platform is correctly configured. As the Cybersecurity Extension for SAP functions as an addon for Solution Manager, ensuring the core platform is stable is a prerequisite for a smooth migration. Once you have successfully transitioned, you can decommission the SAP CVA consoles, sensors, users, and addons within your SAP landscape.

How do you verify the Basic Configuration in Solution Manager?

You must confirm that the Basic Configuration in Mandatory Configuration is fully completed before installing the extension. Follow these steps to verify your setup:

  • Execute transaction SOLMAN_SETUP or navigate to SAP Solution Manager Configuration – Configuration (All Scenarios).
  • Select Basic Configuration located under Cross Scenario Configuration – Mandatory Configuration.
  • Ensure the status of all steps within Basic Configuration is green, indicating they are completed.
  • If any steps are marked red or yellow, follow the provided guided procedures to resolve those items.

After confirming the Basic Configuration, the next phase of the transition involves checking the Managed System Configuration.

Frequently Asked Questions

What is the Cybersecurity Extension for SAP?

The Cybersecurity Extension for SAP is a security tool developed by Layer Seven Security that serves as an alternative to SAP Code Vulnerability Analyzer (CVA). It provides capabilities for vulnerability management, threat detection, and custom code security by functioning as an addon for SAP Solution Manager.

Do I need to keep SAP CVA after transitioning?

No. Once you have fully transitioned to the Cybersecurity Extension for SAP, you can remove all components of SAP CVA. This includes the SAP CVA consoles, sensors, existing users, and any related addons currently installed within your SAP systems.

Is the Cybersecurity Extension for SAP compatible with my current infrastructure?

The extension is designed for SAP Solution Manager, which is used by over 12,000 SAP customers globally. Because it is an addon for this platform, it integrates with the monitoring and diagnostics tools already in place. Usage rights for Solution Manager are included in standard SAP support.

Next: Check Managed System Configuration >>>

Share the Post: