Switching from SAP Code Vulnerability Analyzer (CVA) to the Cybersecurity Extension for SAP requires a structured transition plan. Organizations must remove existing SAP CVA consoles, sensors, users, and addons from the landscape, then configure the Cybersecurity Extension as an addon within the SAP Solution Manager platform to maintain vulnerability management and threat detection.
Executive Summary
The transition from SAP Code Vulnerability Analyzer (CVA) to the Cybersecurity Extension for SAP is a strategic move for organizations looking to modernize their vulnerability management and custom code security. Developed by Layer Seven Security, the Cybersecurity Extension acts as an addon for SAP Solution Manager, the industry-standard application lifecycle management platform. By leveraging Solution Manager—which is already used by over 12,000 SAP customers and included in standard SAP support—organizations can streamline their security infrastructure.
The transition process involves decommissioning SAP CVA components, including consoles, sensors, and legacy addons, while ensuring the target SAP environment meets specific software version requirements. This guide outlines the essential steps for planning this migration, ensuring that security coverage remains continuous and that the new solution is correctly integrated into the existing SAP landscape. By following these steps, security teams can effectively replace legacy CVA tools with a fully integrated, supported solution within their existing SAP management environment.
Key Takeaways
- The Cybersecurity Extension for SAP serves as an alternative to SAP CVA for threat detection and custom code security.
- Transitioning requires removing all SAP CVA consoles, sensors, users, and addons from the SAP landscape.
- The extension is an addon for SAP Solution Manager, leveraging existing platform usage rights.
- Target systems must meet specific software version requirements for ABAP, HANA, and Java environments.
What is the Cybersecurity Extension for SAP?
The Cybersecurity Extension for SAP is an alternative to SAP Code Vulnerability Analyzer (CVA) designed for SAP vulnerability management, threat detection, and custom code security. Developed by Layer Seven Security, this solution functions as an addon for SAP Solution Manager. Solution Manager is a monitoring and diagnostics platform widely used for application lifecycle management, with over 12,000 SAP customers worldwide. Importantly, usage rights for Solution Manager are already included in SAP support.
How do I prepare for the SAP CVA to Cybersecurity Extension transition?
To ensure a smooth transition, you must decommission your existing SAP CVA environment. Once you have successfully transitioned to the new extension, you can remove the SAP CVA consoles and sensors from your SAP landscape. Additionally, you should remove all SAP CVA users and addons from your SAP systems. You must also review your standard SAP Solution Manager setup to ensure the platform is prepared for the new extension.
What are the system requirements for the Cybersecurity Extension for SAP?
The Cybersecurity Extension for SAP supports monitoring for ABAP, HANA, and Java systems, as well as the SAProuter and Web Dispatcher. Before beginning, confirm your target systems meet these minimum requirements:
- ABAP: SAP Basis 7.00, SP00
- HANA: Version 1.0, SP08
- Java: SAP NetWeaver 7.0 Enhancement Package 1 (7.01)
- SAProuter and Web Dispatcher: All versions supported
Next: Check central system >>>
Frequently Asked Questions
What is the role of SAP Solution Manager in this transition?
The Cybersecurity Extension for SAP is an addon for SAP Solution Manager. Because Solution Manager is a standard platform for monitoring and diagnostics in SAP landscapes, using it for this extension allows organizations to leverage their existing usage rights included in SAP support.
What components must be removed when switching from SAP CVA?
After transitioning to the Cybersecurity Extension for SAP, you should remove all legacy SAP CVA consoles and sensors from your SAP landscape. You must also remove the SAP CVA users and any associated addons from your SAP systems.
Does the Cybersecurity Extension for SAP support different system types?
Yes, it supports monitoring for ABAP, HANA, and Java systems. It also provides monitoring capabilities for the SAProuter and Web Dispatcher, with support for all versions of these components.