How to Switch from SAP Code Vulnerability Analyzer to the Cybersecurity Extension for SAP, Part 7

Switching from SAP Code Vulnerability Analyzer (CVA) to the Cybersecurity Extension for SAP involves migrating vulnerability management, threat detection, and custom code security tasks to a solution built as an add-on for SAP Solution Manager. This transition requires removing existing CVA consoles and sensors while ensuring your SAP Solution Manager platform is properly configured for the new extension.

Executive Summary

The Cybersecurity Extension for SAP, developed by Layer Seven Security, serves as a direct alternative to SAP CVA. Unlike SAP CVA, which operates as a standalone analyzer, the Cybersecurity Extension for SAP functions as an add-on for SAP Solution Manager. Because over 12,000 SAP customers already utilize Solution Manager for application lifecycle management, this transition integrates security directly into an existing, widely used platform.

The transition process focuses on two primary areas: decommissioning legacy SAP CVA components and preparing the SAP Solution Manager environment. Organizations must remove SAP CVA consoles, sensors, users, and addons from their SAP landscape. Simultaneously, they must verify that their Solution Manager setup is complete to support the new extension. This guide outlines the essential steps to review your current configuration and prepare the platform for a smooth migration, ensuring that your vulnerability management and threat detection capabilities remain uninterrupted during the switch.

Key Takeaways

  • The Cybersecurity Extension for SAP is a dedicated alternative to SAP CVA for vulnerability and threat management.
  • The extension is designed as an add-on for SAP Solution Manager, leveraging existing application lifecycle management infrastructure.
  • Transitioning requires removing legacy SAP CVA consoles, sensors, and users.
  • Successful implementation depends on a standard, fully configured setup of SAP Solution Manager.

What is the difference between SAP CVA and the Cybersecurity Extension for SAP?

The Cybersecurity Extension for SAP differs from SAP CVA primarily in its architectural integration and platform requirements. While SAP CVA operates as a distinct analyzer, the Cybersecurity Extension for SAP is built specifically as an add-on for SAP Solution Manager.

FeatureSAP CVACybersecurity Extension for SAP
ArchitectureStandalone AnalyzerSAP Solution Manager Add-on
PurposeVulnerability ManagementVulnerability & Threat Detection
PlatformIndependentSAP Solution Manager

How do I prepare SAP Solution Manager for the transition?

The Cybersecurity Extension for SAP requires a standard, fully functional setup of SAP Solution Manager. You must confirm that your system monitoring is operational before proceeding with the extension installation.

To verify your configuration, execute transaction SOLMAN_SETUP or navigate to the “SAP Solution Manager Configuration” work center. Within this menu, select “System Monitoring” located under “Application Operations.” Ensure that the status of all steps in the System Monitoring process is marked as green (completed). If any steps are red or yellow, follow the provided guided procedures to resolve those issues before continuing.

What steps are involved in the transition process?

Transitioning away from SAP CVA involves both the removal of legacy components and the setup of the new extension. After you have transitioned, you can remove the SAP CVA consoles and sensors from your SAP landscape. Additionally, you should remove any SAP CVA users and addons within your SAP systems.

For further details on the technical requirements, see the Check target system software versions >>> guide.

Frequently Asked Questions

What is the Cybersecurity Extension for SAP?
The Cybersecurity Extension for SAP is a vulnerability management and threat detection tool developed by Layer Seven Security. It serves as an alternative to SAP Code Vulnerability Analyzer (CVA) and is designed to run as an add-on within SAP Solution Manager.

Do I need to keep SAP CVA after installing the extension?
No. Once you have successfully transitioned to the Cybersecurity Extension for SAP, you can remove all SAP CVA components from your landscape, including the consoles, sensors, users, and addons.

What is the role of SAP Solution Manager in this transition?
SAP Solution Manager acts as the host platform for the Cybersecurity Extension for SAP. Because it is a widely used application lifecycle management platform, it provides the necessary infrastructure for the extension to manage security and vulnerability detection across your SAP systems.

Next: Check target system software versions >>>

Share the Post: